Google sun ƙaddamar da shirin Sandbox na Sirri, a ciki samar da API da yawa don aiwatarwa a cikin masu bincike hakan yana ba da damar sasantawa tsakanin buƙatar masu amfani don kiyaye sirri da sha'awar hanyoyin sadarwar talla da kuma rukunin yanar gizo don bin diddigin abubuwan da baƙi ke so.
Kwarewa ya nuna cewa yin arangama yana ta da yanayin ne kawai. Misali, gabatarwar toshe kukis da ake amfani dashi don bin diddigin kukis ya haifar da ƙarin amfani da wasu hanyoyin dabaru.
Kamar su hanyoyin yatsan burauzar, ƙoƙarin rarrabe mai amfani daga babban taro, gwargwadon takamaiman saitunan da aka yi amfani da su (rubutun da aka sanya, nau'ikan MIME, hanyoyin ɓoyewa da sauransu) da halaye na kwamfuta (ƙudurin allo, takamaiman kayan tarihi yayin ma'ana, da sauransu).
Game da Sirrin Sandbox
Fuskanci wannan matsala ta Google Sirrin Sandbox ad inda babban abin da ta fi mayar da hankali shi ne samar da API daban-daban ga hanyoyin sadarwar talla, amma kare mai amfani (ta wata hanya).
Mun bayyana hangen nesan mu ga wani shiri da nufin bunkasa yanar gizo tare da gine-ginen da ke inganta sirrin mutum, tare da ci gaba da tallafawa budadden yanayi da kyauta. Don aiki zuwa ga wannan hangen nesan, mun fara wallafa jerin masu bayani waɗanda ake son a raba su kuma a daidaita su cikin al'umma.
Google yayi don samar da API Floc, wanda zai ba da damar hanyoyin sadarwar talla don ƙayyade rukunin sha'awar mai amfani, amma ba zai bada izinin tantancewar mutum ba.
Da farko, bari mu gano yadda ake amfani da bayanin mai amfani a halin yanzu a cikin tsarin halittu na talla don mu sami damar gano ci gaban APIs na tsare sirri don Sandbox na Sirri.
API zai yi aiki tare da ƙungiyoyi masu sha'awa ɗaya ya ƙunshi ɗumbin masu amfani da ba a san su ba (misali 'masoyan kiɗan gargajiya'), amma ba zai bada izinin magudi ba a matakin tarihi ziyarar takamaiman shafuka.
Muna bincika yadda za mu yi amfani da tallace-tallace ga manyan kungiyoyin mutane masu kamanceceniya ba tare da barin bayanan da za a iya tantancewa daban-daban su bar burauzarku ba, muna amfani da dabaru na Sirri na Banbancin da muke amfani da shi a cikin Chrome kusan shekaru 5.
A gefe guda, Google Hakanan yana bayar da wani zaɓi wanda aka yi amfani dashi don auna tasirin talla da kimanta jujjuya akafin, API na jujjuyawar juyi an haɓaka, wanda ke ba da damar samun cikakken bayani game da ayyukan masu amfani a shafin bayan danna tallan.
Dukansu Google da Apple sun riga sun buga matakan farko don tantance yadda mutum zai magance wasu daga cikin waɗannan maganganun amfani. Waɗannan shawarwarin mataki ne na farko a cikin binciken yadda za a magance buƙatun auna mai talla ba tare da barin mai tallata ya bi takamaiman mai amfani a duk shafuka ba.
Don rarrabe yawan aikin da ake yi daga masu zamba da masu tsegumi (alal misali, yaudarar dannawa ko yin ma'amala ta karya don yaudarar masu talla da masu shafin), Trust Token API an shirya ta ne bisa amfani da yarjejeniya ta Bayanin Tsare Sirri, wanda CloudFlare ya riga yayi amfani dashi don rarraba masu amfani da Tor.
Masu buga littattafai na yau galibi suna buƙatar ganowa da hana halayen yaudara, misali, ma'amala ta jabu ko yunƙurin ɓoye ayyukan talla don satar kuɗi daga masu talla da masu bugawa.
API ɗin yana bawa masu amfani damar rarraba zuwa amintacce da rashin amana, ba tare da amfani da masu gano abubuwan giciye ba.
Kamfanoni da yawa, gami da Google, suna aiki don ganowa da hana yaudara, kuma hakan gaskiya ne ga kamfanonin talla da yaudarar talla.
Wasu daga cikin kayan aikin da ake amfani dasu don halatta yaudara a yau suna amfani da fasahohin da zasu iya amfanuwa da amfani da ingantattun hanyoyin tsare sirri.
Don kaucewa ganewa kai tsaye, ana tsara dabarun kasafin kuɗi na sirri. Jigon hanyar ita ce, burauzar tana ba da bayanan da za a iya amfani da su don ganowa, kawai a cikin wani adadi.
Idan iyaka akan yawan kiran API ya wuce kuma bayar da ƙarin bayani na iya haifar da ƙeta suna, to an toshe ƙarin hanyoyin zuwa wasu APIs.
Source: https://blog.chromium.org