Security experts are up in arms about an update to Google’s Chrome browser that they say undermines users’ privacy.
The issue is complex, but it revolves around how and when people choose to log in to the Chrome browser (which is different than logging in to Google services like Gmail). In past versions of the browser, this was a voluntary step. Doing so means users can sync information like bookmarks, passwords, and browsing history between devices, a feature Google calls “Chrome Sync.” It also means that their user data is stored on Google’s servers — something that some people are understandably unhappy about.
My teammates made this change to prevent surprises in a shared device scenario. In the past, people would sometimes sign out of the content area and think that meant they were no longer signed into Chrome, which could cause problems on a shared device. 3/
— Adrienne Porter Felt (@__apf__) September 24, 2018
Felt outlined a scenario in which someone using a shared computer signs out of a Google service like Gmail and believes they’ve also signed out of Chrome. If they haven’t actually done so, then the next user might have access to their data stored in the browser.
Felt also notes that automatically logging a user into Chrome doesn’t mean their personal data is automatically shared with Google. For this to happen, Chrome Sync has to be enabled separately.
But critics say this isn’t good enough. Matthew Green, a cryptographer and professor at Johns Hopkins University, was one of the first to outline the problem in a blog post this weekend. Green says that despite the fact that Chrome Sync isn’t automatically turned on, the end effect is still to nudge users into sharing more data.
“This change has enormous implications for user privacy and trust, and Google seems unable to grapple with this,” writes Green.
I’m also annoyed at the people who say “it’s just all your browsing data so what’s the big deal?” It’s my *browsing data* that’s exactly why it’s a big deal!!!
— Matthew Green (@matthew_d_green) September 22, 2018
This, says Green, is because the option to turn on Chrome Sync is a “dark pattern” — a term for the user interface tricks used by websites and apps to nudge people towards certain actions. By logging users into Chrome automatically, Google has removed some of the friction for sharing their data.
You can see the new Chrome Sync UI in Green’s blog post, but as he describes it: “Google has transformed the question of consenting to data upload from somethingaffirmativethat I actually had to put effort into — entering my Google credentials and signing into Chrome — into something I can now do with a single accidental click. This is a dark pattern.”
To some people, these complaints may seem small-fry or obvious. (“Well,of courseGoogle wants to collect more of your data. It’s Google!”) But as Green and others have noted, it’s part of a wider pattern of changes to Chrome that’s turning off its core user base.
When Google first introduced its browser, it shook up the entire market. It broke Microsoft’s dominance, promoted open-source standards, and pushed the industry as a whole to up its game. Changes like this one, though, are fodder for critics who say Google is slowly converting Chrome from a neutral platform into something designed to push people toward Google services and the Google way of doing things.
Others may disagree or just accept that Chrome is Google’s browser and, ultimately, the company can do what it wants with it. There are ways to disable the auto log-in process, and for those, like Green, who have had enough, there are always other options.