You are currently viewing Apple’s Anti-Tracking Triumph: App Store API Targets ‘Fingerprinting’
image credit- Engadget

Apple’s Anti-Tracking Triumph: App Store API Targets ‘Fingerprinting’

Apple’s App Store has taken strong measures against apps that gather user data to evade privacy safeguards. However, the company is taking an additional step by requiring developers to provide justifications for using certain features.

With the introduction of App Tracking Transparency in iOS 14, Apple significantly improved user privacy, which posed challenges for advertisers. Some marketing companies turned to more complex methods like device fingerprinting to identify and track users.

In a recent update to Apple’s developer documentation, the company announced a stricter policy. Developers planning to use an Apple API that could potentially contribute to fingerprinting must now provide a clear rationale for its usage.

According to Apple, starting from Fall 2023, developers will receive an email if they upload an app to App Store Connect that uses a required reason API without explaining its purpose in the privacy manifest file. As of Spring 2024, apps that fail to describe their use of the required reason API in the privacy manifest file will not be accepted by App Store Connect.

Apple uses the term “required reason API” to identify APIs that developers must justify, and it reserves the right to modify this list as necessary.

Apple's Anti-Tracking Triumph: App Store API Targets 'Fingerprinting' 1

Image credit- Cult of Mac

Currently, there are about 30 required reason APIs applicable across all of Apple’s platforms. They cover various aspects such as accessing the keyboard, calculating free disk space, and determining the user’s device’s running time.

Although some exceptions exist within these APIs, Apple’s documentation emphasizes that “Information accessed for this reason, or any derived information, may not be sent off-device.”

In some cases, the linked documentation describes API calls to retrieve the creation date and modification date of a file as “super awful.” Additionally, obtaining free space seems to have raised concerns. However, all these API calls are harmless.

As a developer, I can understand the frustration surrounding these changes. However, the real issue lies with those who exploit their technical skills for scams instead of creating genuinely valuable technology that benefits people beyond mere advertising revenue.

It’s disheartening to witness the prevailing business model for app developers revolve around capturing users’ attention with free apps and then capitalizing on their data. Sadly, some individuals lack ethics and believe it’s acceptable to exploit others for profit. Consequently, when Apple attempts to limit their data collection methods, they resort to “clever” techniques like using uptime and free space to generate a unique fingerprint.

Speaking for myself, I welcome the opportunity to explain to Apple why I use specific APIs if it means reducing the number of scammers and promoting the development of truly useful applications. It’s time to bid farewell to a business model that hinders progress and instead embrace one that propels humanity forward.

Regarding the mention of the MacOS kernel being a sandbox and accessing free space going “Blockchain style,” it’s important to clarify these terms. “The kernel functions as the nucleus of the operating system, adeptly overseeing system resources to support diverse applications. Conversely, a sandbox represents a delimited realm wherein applications operate autonomously, each endowed with its own allocated storage and memory.” Applications cannot access resources allocated to other apps or the operating system.

When discussing memory access, applications always have the necessary access to perform their intended tasks. However, Apple’s restriction mainly concerns apps that inquire about the total system memory or storage available, as most apps only need access to their specific requirements.

The reference to JavaScript, an interpreted programming language used within web browsers, adds complexity to the discussion. Web browsers control the level of access provided to JavaScript, limiting it to common functionalities across various platforms. “In this context, it is noteworthy that native/non-web applications tend to possess significantly broader access to system resources in comparison to their web-based counterparts.

Lastly, the statement “Apple admits it for URL” seems unclear and disconnected from the overall context. URLs are internet addresses used to locate resources, but their connection to an app’s capabilities on the system remains unclear. It’s essential to focus on the facts and ensure accurate and coherent explanations of technology-related matters.

Alena Jackson

I am Alena Jackson, a devoted wordsmith residing in Ohio, United States. Boasting an extensive tenure of eight years, I have refined my craft in crafting enchanting articles and blogs that encompass a broad spectrum of subjects. Throughout my literary endeavors, I strive to strike a harmonious balance between intricacy and vivacity, captivating readers with a diverse and dynamic writing style. Having attained my education from Ohio University, I possess a formidable scholarly foundation that greatly influences my aptitude for writing. The knowledge and competencies I acquired during my academic pursuits have augmented my ability to forge meaningful connections with readers, furnishing them with content that is both imaginative and precise. In the realm of Technology, I am genuinely enthralled by the latest innovations and advancements. My objective is to explicate intricate concepts, ensuring that individuals with varying levels of technological expertise can readily comprehend and engage with the subject matter. Whether I am delving into emerging trends, appraising cutting-edge gadgets, or analyzing the societal impact of technology, my aim is to ensure that my audience remains well-informed and captivated. Entertainment, with its ever-evolving tapestry of movies, music, and popular culture, holds a profound allure for me. Through my prose, I proffer fresh perspectives and immersive encounters to readers. From intellectually stimulating film critiques to engaging interviews with artists, my intention is to ignite conversations and provide valuable insights within the entertainment industry. Sports, with its inherent excitement and unifying influence, holds a special place in my heart. As a wordsmith, I derive great joy from capturing the thrill and emotions associated with various athletic endeavors. Whether I am dissecting strategies, profiling athletes, or covering significant sporting events, my goal is to convey the passion and dynamism of the sports world through my written expressions, enabling readers to experience the excitement firsthand. Throughout my odyssey as a writer, I remain unwavering in my commitment to deliver top-notch content that enlightens and entertains. By staying abreast of the latest trends and developments in my chosen niches, I ensure that my articles remain relevant and timely. It is my utmost priority to provide engaging and thought-provoking content that resonates with readers and kindles profound discussions. I extend my heartfelt gratitude to you for embarking on this exhilarating journey of exploration and discovery through the transformative power of the written word. I am thrilled to share my perspectives and insights with you as we delve into the captivating realms of Technology, Entertainment, and Sports. Let us embark on this enthralling adventure together

Leave a Reply