Private Aggregation API #189
Description
WebKittens
No response
Title of the spec
Private Aggregation API
URL to the spec
https://patcg-individual-drafts.github.io/private-aggregation-api/
URL to the spec's repository
https://github.com/patcg-individual-drafts/private-aggregation-api
Issue Tracker URL
No response
Explainer URL
No response
TAG Design Review URL
Mozilla standards-positions issue URL
mozilla/standards-positions#805
WebKit Bugzilla URL
No response
Radar URL
No response
Description
This proposal introduces a generic mechanism for measuring aggregate, cross-site data in a privacy preserving manner. This general-purpose API can be called from isolated contexts that have access to cross-site data, i.e. a Shared Storage worklet or Protected Audience (formerly FLEDGE) script runner. Within these contexts, potentially identifying data is encapsulated into "aggregatable reports". To prevent leakage, the cross-site data in these reports is encrypted to ensure it can only be processed by the aggregation service. During processing, this service adds noise and imposes limits on how many queries can be performed.
Note also the earlier request for a position on Shared Storage and request for a position on Protected Audience (then FLEDGE).