Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Adds 'Do Not Track' Option For IE9

Posted by CmdrTaco on from the and-who-will-listen dept.

devbox writes "Microsoft says it will offer a privacy setting in the next version of Internet Explorer that will make it easy for users to keep their browsing habits from being tracked by advertising networks and other third-party websites. 'By designing these sorts of enhancements with privacy in mind at the design phase, we're able to deliver a functionality that provides consumers additional levels of control over what they want to engage in and how they choose to do so,' Microsoft Chief Privacy Strategist Peter Cullen blogged. Previously, Mozilla stopped working on a similar feature for Firefox after pressure from advertisers and other OSS projects as it would hurt their revenue sources from advertisers."

34 of 179 comments (clear)

  1. You forgot the parenthetic on that... by retech · · Score: 4, Funny

    (except for us)

    1. Re:You forgot the parenthetic on that... by Anonymous Coward · · Score: 4, Insightful

      There should be a mod category for posts that play on popular opinion while distorting facts.
      It may not have been distortion, but if so please provide source.

    2. Re:You forgot the parenthetic on that... by davester666 · · Score: 2

      First thing blocked: google analytics

      --
      Sleep your way to a whiter smile...date a dentist!
    3. Re:You forgot the parenthetic on that... by RobertM1968 · · Score: 4, Informative

      Odd, when every malformed URL has went to MS since time immemorial. And odd, that if you read their privacy statement, TOS, and EULA, you will find they claim to have the right to do exactly these things.

      Do you suspect they actually dont do those things, but just like mentioning (errr... burying) them in their various docs about their products and services?

      --
      StarTrekPhase2 - The Five Year Mission Continues!
    4. Re:You forgot the parenthetic on that... by h4rm0ny · · Score: 4, Interesting

      I'll use the browser if it does that. Microsoft make their main money from selling software. Firefox and Chrome make their money from Google which makes its money from tracking what you do and selling the information. We're more likely to see a privacy-respecting browser from MS than from Google, as unlike with Google, it doesn't contradict their core business model.

      --

      Aide-toi, le Ciel t'aidera - Jeanne D'Arc.
  2. Wow, pretty impressed. by nametaken · · Score: 4, Insightful

    I'm a more than a little impressed that MS is going ahead with this. Hopefully this is all the excuse they need over at Mozilla to reconsider their decision.

    1. Re:Wow, pretty impressed. by SuricouRaven · · Score: 3, Insightful

      Perhaps the other way around? Microsoft realised how dependant OSS projects are on advertising, and tried to find a good way to hurt them? Though rather pointless, as the people who visit sites like Slashdot arn't going to be running IE anyway.

    2. Re:Wow, pretty impressed. by amicusNYCL · · Score: 5, Insightful

      I'm a more than a little impressed that MS is going ahead with this. Hopefully this is all the excuse they need over at Mozilla to reconsider their decision.

      While I like this move, I don't think MS is being truly altruistic about this. They're looking at their bottom line. MS is not an advertiser, and they don't operate open source projects that are dependent on advertising. So, they have very little to lose by implementing this. On the other side, their rivals have a lot to lose. Look at their main rivals - open source in general (in the form of OpenOffice, Linux, Firefox, and MySQL to name a few), Google (an advertiser), and Apple. Allowing their browser to block advertising directly affects the viability of open source projects and affects the bottom line of Google. It doesn't hurt Apple, but they'll just need to find another way to stick it to Apple when they can.

      I just find it a little bit ironic that open source communities are advocating for advertising while mega-corp Microsoft is now in favor of allowing users to block it. It seems a little weird on the surface, but it makes financial sense. I doubt Mozilla will reconsider because they rely more on advertising revenue than Microsoft does. I could see Opera or Apple implementing this though, for the same reasons. I highly doubt Mozilla or Google would add this into their browsers, although the presence of AdBlock makes the point sort of moot for Mozilla. I would be pretty shocked if a version of Chrome showed up with this feature though.

      --
      "Our two-party system is like a bowl of shit looking at itself in a mirror." - Lewis Black
    3. Re:Wow, pretty impressed. by alvinrod · · Score: 4, Insightful

      MS isn't being altruistic about this at all. It's a direct shot at Google, most specifically targeting how Google generates revenue. If they really wanted to turn the heat up, they could ship the browser with an ad blocker as well. Microsoft has finally realized that it's not going to unseat Google. If they can't have that money, why not deprive Google of it as well?

      If the strategy worked ideally, it would demolish Google's revenues because they're unable to collect information about users and their ads aren't being seen by as many eyeballs. That's Google's bread and butter business right there. The reason for the existence of both Android and Chrome OS is to prevent this kind of lockout from happening. Android isn't completely under Google's control so it is possible to lock them out (See the Android phone that uses Bing for search and stories about Verizon possibly considering replacing the Android Marketplace with their own store.) if various third parties wanted to, but Chrome OS seems to be under Google's control to a larger extent at this point.

      Google is smart and they realize that their position is open to attack, which is part of the reason they've been expanding into so many other areas and will continue to look for new ways to expose customers to their ads or gather information about users that can be used for targeted advertisements.

    4. Re:Wow, pretty impressed. by cbhacking · · Score: 2

      Um... Microsoft is actually an advertiser (well, ad provider). They're much less famous for it than Google, but they nonetheless have search-related and context-related ads on web pages.

      There's a feature in IE8 (and IE9 beta) called "InPrivate Filtering" (It's under the "Safety" icon/menu). IPF causes the browser to block third-party content that shows up on more than a few websites - such as scripts that track you by cookies, or advertisers where the client pulls data from a third-party server. It's disabled by default and gimped in various ways, though, because (as I heard it; no citation at hand) the IE team was told that enabling this would make it too hard for their online services (seartch, etc.) division to make money.

      However, you can manually enable it and tweak it. I block everything from Google Analytics to Facebook. The neat thing about the latter is that Facebook.com still works, because there it's first-party. Sotes other than Facebook.com can't even tell that I'm signed in, though.

      --
      There's no place I could be, since I've found Serenity...
    5. Re:Wow, pretty impressed. by guyfawkes-11-5 · · Score: 2

      I think they may have done this to knock Google down a peg, Google is much more dependent on advertising and analytics than Microsoft.

    6. Re:Wow, pretty impressed. by Boogaroo · · Score: 2

      Not everyone is all or nothing about ads.
      I see a checkbox to disable ads on this site, but I don't click it.

      On common sites I visit that I feel are worth visiting, I don't block their ads either.

      All random sites, ads blocked unless I find them to be unobtrusive or worthy of my support.

      I'm OK with advertising. It has to overcome a few barriers but it's not something that is altogether horrible everywhere. What really matters is whether I am in control or not.

    7. Re:Wow, pretty impressed. by amicusNYCL · · Score: 2

      Um... Microsoft is actually an advertiser (well, ad provider).

      I understand that, but it's not their bread and butter. This is the Microsoft breakdown for 2010, in revenue, in billions, by division. Advertising is included in online services:

      Windows/Windows Live - 18.4
      Server/Tools - 14.8
      Online Services - 2.1
      Business - 18.6
      Devices/Entertainment - 8.0

      Out of the 2.1 billion made from online services, 1.9 billion of that was from advertising. So, out of Microsoft's 2010 revenue of 62.4 billion, 1.9 billion, or 3%, came from advertising. Compare that with Google's income from advertising to see why I identified Google, and not Microsoft, as an advertiser. Microsoft sells software, and Google is an advertiser. It doesn't matter that Microsoft does a little advertising and Google sells a little software, I'm talking about core business.

      http://www.microsoft.com/investor/reports/ar10/10k_fr_dis.html

      --
      "Our two-party system is like a bowl of shit looking at itself in a mirror." - Lewis Black
  3. That's a position? by Monkeedude1212 · · Score: 3, Funny

    How many companies even HAVE a Chief Privacy Strategist? Where do you go to school for that? I can only imagine a Computer Science Degree with a high focus on networking and security - but even those don't always focus on the issues of PRIVACY on the internet.

    Can I get a job at Apple as their Chief Privacy Strategist? I know I could totally just point the Safari team at HTTPS Everywhere, tell them to get crackin', get a better "Secure viewing" mode in that browser. Then walk away with my 6 figure paycheck and get a mention on Slashdot!

  4. MS Stands Up For Users?! by SaidinUnleashed · · Score: 4, Informative

    Also, this just in, there are predictions for snowfall in Hell, this evening...

    In all seriousness, IT'S ABOUT GODDAMN TIME. Someone needs to stand up to the constant intrusion into our personal habits, and if Microsoft is going to be the first to do so, more power to them. If they do as good of a job on IE9 as they have on Windows 7, it will end up being an awesome browser, anyway.

    5 years ago, I would have never believed that those words would have come out of my mouth. Of course, back then, WinXP was their offering, and I was a student intern writing Linux kernel code for credit. Everything changes...

    --
    Shiny. Let's be bad guys.
    1. Re:MS Stands Up For Users?! by nametaken · · Score: 2

      A little humility can go a long way... even for huge corporations.

      They didn't have any real competition back then. Now they have to TRY to keep people, instead of having them by default. We can thank Google and Mozilla for that (among others).

    2. Re:MS Stands Up For Users?! by Stregano · · Score: 2

      I promise you that many people are surprised. I was an XP user after ME, then Vista, then I just said screw it. Your browser sucks and you can't make a decent OS. My opinion changed with W7 and what M$ is trying to do with IE. They have always been a giant, but as somebody stated earlier, that competition is helping them avoid travesties like ie6. At least they are making better progress now

      --
      The world is how you make it
    3. Re:MS Stands Up For Users?! by Anonymous Coward · · Score: 2, Interesting

      What was wrong with IE6 exactly? The only thing wrong with IE6 is that it was ahead of it's time and it was the best internet browser for quite some time (with usage of more than 90%). It's almost 10 years old and people are still using it.

      Sure you can complain about IE6 not meeting the HTML and CSS standards, but you'd be wrong. Because there were no standards, MS tried to push web into new era (and succeeded! - think AJAX), but W3C was slow to publish standards.

    4. Re:MS Stands Up For Users?! by foniksonik · · Score: 2

      IE6 was fine when it was released. Nothing wrong with it now except that it is based on 10 year old tech and standards. MS did not update it. That's the real problem. They had a lot of opportunity. Even when they did update it they did all the wrong things and for all this time the Windows default browser has been holding back the web in all kinds of ways and still is.

      Go here: http://www.caniuse.com/

      Scroll down and see how IE stacks up. Then think about the installed base of IE 6/7/8 users.

      It will be another 3-5 years before we can implement many of those methods because IE is so far behind.

      --
      A fool throws a stone into a well and a thousand sages can not remove it.
  5. Re:server-side tracking by Bucky24 · · Score: 5, Informative

    Tracking done on the server side relies on environment variables that the server gets by querying the browser. If the browser refuses to give those variables, tracking can't be done.

    --
    All the world's a CPU, and all the men and women merely AI agents
  6. More Theater by SirAstral · · Score: 2, Insightful

    This is pointless for systems designed to collect fingerprints of your systems in ways that "iesnare" does. Each time you visit a site your computer gets "processed" and that information is stored on a remote server and shared to all in network servers. There is zero need to store it on your computer because your computers fingerprint will remain static enough to track you anyways. There are so many ways to track and catalog machines its not even funny. This is PURE THEATER designed to do nothing more than make people feel better without actually doing anything to secure their identities or habits!

  7. This doesn't address the problem by Distan · · Score: 2

    This proposal seems to be all about cookies. This doesn't address the real problems of computer fingerprinting and flash objects.

    Ideally, it would be impossible for a web server to leave any persistent data on your machine, and impossible to determine anything about your machine other than your IP address and possibly your browser version.

  8. FireFox has a Do Not Track Addon by muphin · · Score: 5, Insightful

    I use Ghostery and Adblock Plus to stop all my tracking and doesnt slow me down one bit, in fact not having to load all those ads speeds up your browsing.
    If websites wanted to make money from advertising DO IT FROM YOUR OWN SITE and dont take the cheap way out, and people relying on generic advertising for an income better get some business sense and stop complaining your not making any money.

    --
    It's not a typo if you understood the meaning!
    1. Re:FireFox has a Do Not Track Addon by countSudoku() · · Score: 2

      Thanks for the tip on Ghostery! I'll add that the Anonymizer Nevercookie addon is now in the Mozilla addon directory, version 0.1 mind you.

      https://addons.mozilla.org/en-US/firefox/addon/260205/

      Do not want; ads. I can find a product just fine. Make more noise, and I avoid your product. Pretty simple. Advertising is a waste of time and money, but not people. The people in advertising are just a waste of air and should be sewn together to make a protective CME shield for the Earth. Thank you.

      --
      This is the NSA, we're gonna geet U h@x0r5! Also, what is a h@x0r5?
  9. Re:server-side tracking by Monkeedude1212 · · Score: 4, Interesting

    I don't think you quite understand how it works - the idea is not only to keep them from reading stuff off your machine but also some level of anonymization on the net.

    Right now the big practice is to put tracking cookies on your computer. Seriously, let your parents browse the web unfiltered and unrestricted for about a month, then do a good Antivirus scan and if you come back with any less than 100 tracking cookies I'll be surprised.

    So thats one issue they are trying to tackle. The other one is as you said, what happens when my information is being tracked on the server? That's where anonymizing protocols come in handy. You are never the same person twice when visiting the web site, you always appear to be a new client. As such, they'll never have previous records on your computer.

    Couple that with an increase usage of HTTPS possibly built into the browser, and no third party adserver can "snoop" what goes on between you and the server. Brilliant.

  10. Re:server-side tracking by devbox · · Score: 5, Insightful

    Sure, but that's far fetched from the ability that cookies and the likes of Google Analytics offer for marketers. It's stupid to say "this won't end it all" and think it's better to do nothing. Every bit helps, and this is huge step forward. Especially for normal and clueless users.

    Beside, while maybe not relevant for the whole world, I'm currently living in Asia and every country I've been has heavy proxies for surfing. Squid everywhere, you basically cannot get your own ip. And because Asia as a region has billions of users and so few ip's, tracking by ip just doesn't work on individual basis.

  11. Re:Microsoft doesn't need ads by TheRaven64 · · Score: 4, Insightful

    For the same reason that they started investing in IE in the first place. Netscape made a big deal of how 'browser apps' were going to turn the PC into a thin client and make the desktop OS interchangeable. Now, FireFox, Safari and Chrome, are going on about how 'web apps' are going to make the browser more important than the OS for the software that it can run.

    IE9 isn't there as a browser, it's there to sell Windows. Microsoft doesn't mind if you run FireFox on Windows, except that doing so means that it's much easier for you to switch to Mac, *NIX, or whatever. If all of your apps are web apps, then there is no lock in. This is why the IE team is suddenly enthusiastic about HTML5 - if people are going to write HTML5-based web apps (which, it seems, they are), then Microsoft wants to ensure that they run best on Windows (with or without IE, it doesn't matter to them).

    It's the same reason that MS invests so much effort in developer tools. They don't make a profit, but they make it more likely that people will have some compelling reason to buy Windows.

    --
    I am TheRaven on Soylent News
  12. Re:server-side tracking by Anonymous Coward · · Score: 2

    Antivirus scanners look at browser cookies? No wonder nobody uses that stuff anymore.

  13. Re:server-side tracking by micheas · · Score: 5, Insightful

    The question is do people really want the lack of personalization that anonymity implies.

    Turn on anonymity and get google in a random language, based on the country of the proxy server you are connecting to google from, or get search results that are skewed based on what you have searched for and to a lesser extent, what has been searched for from your ipaddress. If a slashdot searches on google for boa, one of the top results is an IDE for python. I suspect that for a user that spends most of their time searching for the interests of seven year olds they could get a harry potter link in the top ten.

    For a website that makes no personalization, and is just looking to scrape data to sell to advertisers, sure, there is basically no reason not to use anonymization software.

    The reason that google gets so much information is that their services work better if you give them a fair amount of information, The fact that they do this quietly without you having to click a million checkboxes is viewed as a good thing by people that are stressed for time.

    The viability of anonymization is very dependent on what the user is doing, and which sites they are using. The problems for people promoting anonymity also include: anonymizing tends to be slower than regular browsing (tor, for example); Anonymization tends to be work; Most people, most of the time, don't care about their surfing habits.

    Another problem is the lack of awareness that the net is not all love and happiness. For example, most reporters, including several linux focused reporters, first reported that the solution to firesheep was to use WEP, without understanding that as soon as the packet goes out on the net it is at least as vulnerable as an unprotected wireless lan, and possibly more so, as wireless networks are somewhat more unstable due to electrical interference an dpor signal quality on a lot of wireless networks.

    I just don't see how anonymous browsing gets traction, unless there is civil unrest NATO countries, or some other compelling external event to make people care about their privacy.

    I don't mean to be a downer, but I have watched a lot of not too difficult things never catch on. (https on all authenticated connections, pgp, tor, personalized certificates, and more)

    --
    Work bio at MMWD
  14. Re:whatever... by Velorium · · Score: 2

    Actually, you're wrong. http://marketshare.hitslink.com/browser-market-share.aspx?qprid=2 Nice try though.

  15. Re:server-side tracking by devbox · · Score: 2, Insightful

    You quoted what I said but you clearly did not understand it. I know about Flash cookies, user agent fingerprinting and all of those. The point is, it's a major victory for privacy if the most used browser on the planet will enable this. Yes, you can still use all kinds of trickery, but that's not the point.

    You can go on and on about it, but what you're saying is like fire department is completely useless because they can only stop 99% of fires.

  16. HTTP header by Todd+Knarr · · Score: 3, Interesting

    How about we just have an HTTP header that, if present in the request, states exactly which tracking the user consents to? No ambiguity, easy to implement on both the browser and the server side. End of problem. At least for users, and since it's our data I don't see where any other party should be getting a say in how it's used.

  17. Playing Devil's Advocate, and I do mean Devil. by FatLittleMonkey · · Score: 3, Interesting

    Actually, it's in Microsoft's interest for something like this to work, and work well.

    I've mentioned before that I believe this is the best way for MS to fight Google. (Since MS is a software company, Google is an ad company. Why try to fight them with a search engine, it misses the point.)

    Add an ad-blocker to IE, built in, on by default (in addition to this bug-blocker.) Single button on the toolbar to turn ads back on, with options for finer-grained settings.

    Microsoft can then go further. Allow an opt-in user-requested ad feature, where the ads are served by the browser for participating websites. Users can set what type of ads they want (no anim, no sound, for example), white- or black-list products or companies, and list areas of interest. Advertisers will hate the user control, but because people have asked for the ads, and are thus more likely to trust the network, that increases both click-through and sales, so advertisers would generally pay more. That also means more money per-ad for websites, increasing their participation. etc etc. Users win, websites win, advertisers win.

    Meanwhile, if most Firefox users use ABP, and all IE-default-setting users have ads blocked, that leaves only Chrome users to give Google their ad-revenue. Less money means less research, less innovation, more rivals, fragmented market. Microsoft wins.

    --
    Science is all about firing a drunk pig out of a cannon just to see what happens.
  18. Re:server-side tracking by SuricouRaven · · Score: 2

    Those squid proxies include the originating IP in an HTTP header on outgoing connections. Do you think the ISP would take the legal risk of providing some type of real anonyminity for it's users, and be unable to respond to subpoenas (Or their Asian equvilents, I don't know anything of the legal system there)?