Apple Safe Browsing Explained – Why Apple sends your data to Google and Tencent and how to turn it off

If you use Safari on certain versions of io, then your IP cover is being sent to Google or Tencent by default option. Tencent is the taiwanese equivalent of Facebook, who owns the democratic WeChat fluid app. Tencent besides works closely with the chinese politics. It is possible to stop your data from being sent to these companies. Devices send data to Tencent if the region code is set to mainland China. All early devices send data to Google .image-59Notification on iPhone that your data will be sent to Google and Tencent. here is what an Apple spokesperson said about this feature in a statement to The register :

Apple protects user privacy and safeguards your data with Safari Fraudulent Website Warning, a security feature that flags websites known to be malicious in nature.

When the feature is enabled, Safari checks the website URL against lists of known websites and displays a warning if the URL the user is visiting is suspected of fraudulent conduct like phishing. To accomplish this task, Safari receives a list of websites known to be malicious from Google, and for devices with their region code set to mainland China, it receives a list from Tencent.

The actual URL of a website you visit is never shared with a safe browsing provider and the feature can be turned off.

While the actual URL you visit is not shared, your IP address is shared. Your IP address can reveal your general localization and other details about you. It is shared in order to determine if the web site you are visiting is a deceitful locate.

This data is being shared automatically by a lot of people. Safari has a U.S. commercialize share of over 50 % since it is the default option browser on io devices. besides, even if you use a third-party browser on your io device, your data may be placid sent to Google and Tencent. When you view a web page from inside an app, the pages open inside a version of the Safari browser. Since many apps open Safari from within the app, it is about impossible to avoid Safari. To stop your IP address from being sent to Google and Tencent, you must disable the “ Fraudulent Website Warning ”. Keep in thinker that disabling this feature can make you more vulnerable to accessing deceitful websites. hera is how to disable the “ Fraudulent Website Warning ” in io :

  1. In iOS settings, select “Safari”.
  2. Scroll down a bit and toggle “Fraudulent Website Warning” to the off position.

image-60How to disable sending data to Google and Tencent.

What is “Safe Browsing”?

The “ Fraudulent Website Warning ” service uses Google Safe Browsing and Tencent Safe Browsing. This is a overhaul in the first place developed by Google. Users sometimes come across malicious sites and phishing pages. Google has a big list of these sites and created “ safe browse ” to help notify users when the site they are accessing could be malicious. here is how Google provides this serve, called the “ Update API ”, according to cryptanalysis research worker Matthew Green :

1. Google first computes the SHA256 hash of each unsafe URL in its database, and truncates each hash down to a 32-bit prefix to save space.

2. Google sends the database of truncated hashes down to your browser.

3. Each time you visit a URL, your browser hashes it and checks if its 32-bit prefix is contained in your local database.

4. If the prefix is found in the browser’s local copy, your browser now sends the prefix to Google’s servers, which ship back a list of all full 256-bit hashes of the matching URLs, so your browser can check for an exact match.

presumably, the same method acting is used by Tencent in China. But alternatively of the hash prefix being sent to Google, it is sent to Tencent.

This process should be batten since the actual URLs you visit are not sent over, precisely a hash version of the URL. however, some security researchers have pointed out that by analyzing the hundreds of hash URLs sent to this military service by a individual exploiter, it could be possible to de-anonymize that user. Safari is n’t the only browser using Google Safe Browsing. The Google Chrome, Firefox, Vivaldi, and GNOME Web browsers use the Google Safe Browsing service. so if you do n’t want your data sent to Google, choose a browser not on that list or disable the service within the browser settings. many people believe that it is worth sharing their information science addresses with Google and/or Tencent to get more protection from malicious sites. You have to decide for yourself if it is worth the gamble .

Leave a Reply

Your email address will not be published.