this post was submitted on 28 Sep 2024
618 points (97.4% liked)

Firefox

17937 readers
41 users here now

A place to discuss the news and latest developments on the open-source browser Firefox

founded 4 years ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] Blisterexe 96 points 1 month ago* (last edited 1 month ago) (1 children)

Yes and no, total cookie protection prevents cookies from loading from other sites, CHIPS is a new standard that makes it so that that is impossible* to begin with. (simpifying here but thats the idea)

*unless the browser allows it

[–] [email protected] 12 points 1 month ago (2 children)

my impression was that it was impossible already, because there was effectively a different cookie storage for every site

[–] [email protected] 26 points 1 month ago (1 children)

oh

https://developer.mozilla.org/en-US/docs/Web/Privacy/Privacy_sandbox/Partitioned_cookies

CHIPS is similar to the state partitioning mechanism implemented by Firefox. The difference is that state partitioning partitions cookie storage and retrieval into separate cookie jars for each top-level site, without a mechanism to allow opt-in to third-party cookies if desired. As browsers start to phase out third-party cookie usage, there are still valid, non-tracking uses of third-party cookies that need to be permitted while developers begin to handle this change.

so this adds a setting to allow a site access to shared 3rd party cookies, when the site supports the feature?

[–] [email protected] 4 points 1 month ago

Based on Mozilla's documentation, it looks like CHIPS only applies to "cross site" cookies that are just accessible on different subdomains of the same site. A third party cookie could share data between a.site.example and b.site.example if it asked nicely, but not on site2.example.

If this isn't about it subdomains exclusively, it's not apparent to me. But it's all pretty confusing, and CHIPS appears to be just one minor thing that Google introduced when they were creating Privacy Sandbox back in 2022. (You know, to facilitate the total removal of third-party cookies, something they eventually backtracked on anyway.)

[–] Blisterexe 7 points 1 month ago

You can embed bits of a website in other websites, that's how 3rd party cookies exist