Google Introduces Safari-like Script Blocking in Chrome Incognito Mode on Windows 11 for Enhanced Private Browsing

Google Introduces Safari-like Script Blocking in Chrome Incognito Mode on Windows 11 for Enhanced Private Browsing

Google is currently piloting an innovative feature named “Script Blocking in Incognito” within its Chrome browser, particularly for Windows users. As shared by various sources, this enhancement aims to bolster privacy during incognito sessions by preventing third-party scripts from employing known fingerprinting techniques to track users across websites.

When browsing in incognito mode, users are typically greeted with a disclaimer indicating that while this mode offers a degree of privacy, it is not entirely secure. Websites can still gather some data, including browser details. The addition of script blocking could offer a more robust shield against these tracking methods.

Chrome incognito

Understanding Google’s Script Blocking Mechanism

As per a document reported by Windows Latest, Google aims to curtail the exploitative use of web APIs that gather extensive information about users’ devices and browsing behavior.

Currently, the implementation focuses on tracking only those domains that appear on the Marked Domain List (MDL).These domains will be tagged as “Impacted by Script Blocking” if they attempt to execute third-party scripts that gather data beyond their intended scope.

To effectively obstruct these intrusive scripts, Google proposes a minor modification to the Fetch specification, creating a standardized method for browsers to block or modify requests after standard security checks, such as Content Security Policy (CSP) assessments. In essence, Google seeks to recognize and halt potential misuse of web API standards aimed at invasive tracking.

In evaluations conducted by Windows Latest, Google’s strategy becomes evident—it focuses on third-party scripts leveraging APIs like canvas, WebGL, fonts, and audio to potentially re-identify users. Consider a scenario where a benign website about local dining features a third-party script that uses these techniques to generate a unique identifier. This ID could later be matched to target users with advertisements, circumventing cookie-based tracking.

The introduction of Google’s Script Blocking in Incognito effectively prevents such scripts from executing, thereby thwarting the formation of these tracking identifiers.

Comparative Efforts by Other Browsers

Google is not alone in its commitment to enhancing user privacy. Competing browsers have implemented their own measures. For instance, Safari employs Intelligent Tracking Prevention (ITP), designed to block third-party cookies that act as trackers. Similarly, Firefox offers Enhanced Tracking Protection (ETP) to safeguard users against tracking.

Moreover, Microsoft Edge features its own Tracking Prevention capability.

Microsoft Edge Tracking prevention feature

While Firefox and Safari adopt a more aggressive stance by outright blocking scripts designed for tracking, Chrome’s approach remains more nuanced, as it is confined to a list-based system, applicable solely in Incognito mode.

Google has confirmed that the Script Blocking feature will be exclusive to Chrome’s incognito mode and will not extend to the overall Chromium ecosystem. Users engaged in protected browsing will observe an “eye” icon in the address bar signaling script restrictions. Furthermore, individuals have the option to disable script protection for specific top-level sites or turn off the feature altogether if certain sites do not function correctly with blocked scripts.

Source & Images

Leave a Reply

Your email address will not be published. Required fields are marked *