Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Would be a request of 'dailyUpdateUrl' credentialed by a browser? #336

Closed
Aleksei-Gorbushin-at-Walmart opened this issue Aug 11, 2022 · 3 comments
Closed

Would be a request of 'dailyUpdateUrl' credentialed by a browser? #336

Aleksei-Gorbushin-at-Walmart opened this issue Aug 11, 2022 · 3 comments

Comments

@Aleksei-Gorbushin-at-Walmart
Copy link

According to 1.2 Interest Group Attributes section

The dailyUpdateUrl provides a mechanism for the group's owner to periodically update the attributes of the interest group.

Does it mean a browser includes first-party cookies making a such call daily?

If it does not and this request is uncredentialed (cookieless), how could the group's owner know which values should be set to userBiddingSignals for example?
@Aleksei-Gorbushin-at-Walmart
Copy link
Author

@michaelkleber,
Do you mean this "daily update mechanism" in your comment on #269?

@michaelkleber
Copy link
Collaborator

michaelkleber commented Aug 12, 2022
edited

The interest group updates are uncredentialed (do not include cookies). As you point out, this means they are probably not useful for setting userBiddingSignals. But they would be an excellent way for the womens-running-shoes interest group to start showing you an ad about a relevant sale, even if the sale wasn't announced yet when you were added to the group.

(And yes, this is the mechanism I referred to in #269)

@michaelkleber
Copy link
Collaborator

Note that idea (b) in #333 would essentially allow credentialed updates (by removing the k-anonymity thresholding). But, as that issue points out, this could only happen if the updates were handled by yet another instance of Trusted Server infrastructure.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@michaelkleber @Aleksei-Gorbushin-at-Walmart