From lukaszolejnik.com
Biggest Privacy Erosion in 10 Years? On Google’s Policy Change Towards Fingerprinting
2 4
While I once hoped 2017 would be the year of privacy, 2024 closes on a troubling note, a likely decrease in privacy standards across the web. I was surprised by the recent Information Commissioner’s Office post, which criticized Google’s decision to introduce device fingerprinting for...
on Fri, 7PM
From lukaszolejnik.com
Privacy, security, and exfiltration via web browser Background Sync API
0 0
The Background Sync API (alternatively, periodic) enables web apps to defer tasks until the user has a stable connection. It may be useful for apps processing data offline. It introduces curious capabilities in web platforms, so it's important to understand the security and privacy footprint....
on Dec 4
From lukaszolejnik.com
0 0
Vibrating devices are a familiar thing. From the era of flip-phones, to vibrations induced by mobile apps. Or websites. [Edit 15/11/19: Firefox is limiting access to Vibration API] Vibration API The mechanism allowing websites to utilize device's vibration motor is called Vibration API....
on Oct 23
From lukaszolejnik.com
ICRC report on cyberoperations
0 0
The just-published report of International Committee of the Red Cross (ICRC) on humanitarian consequences of cyber operations brings the much-needed, currently lacking expert insight and context in the debate around cyber warfare. I am also happy because I had an opportunity to co-author this...
on Oct 8
From lukaszolejnik.com
My books and how can you support me and my works!
0 0
My 2nd book is out. That was a long and eventful journey. In short, lots of work. Get it from any store of your choice, like Amazon or Routledge (but be sure to understand that the ebook format from this place is specific). Thanks for reading Lukasz Olejnik on Cyber,
on Oct 4
From lukaszolejnik.com
PROPAGANDA. My book on information security
0 0
We live in the information age. We are subjected to stimuli or informational influences in various forms. It can be text, sound, images, videos. Posts in social media, articles, news. Made by a wide variety of creators, authors, institutions, organisations, manufacturers, services operating...
on Sep 24
From lukaszolejnik.com
Phasing out third-party cookies, user privacy and regulatory games - enough with the theatre
0 0
The big day arrived. The UK Competition and Markets Authority (CMA) finally agreed for Google to phase out third-party cookies. That's terrific because it improves user welfare. Furthermore, no grace period was requested. Google could do it even today. The catch? Only on iOS, Apple's operating...
on Aug 9
From lukaszolejnik.com
Initial data protection assessment of quantum computing
0 0
Quantum computers benefit from special effects like the quantum superposition and quantum interference to perform computation outside the reach to to classical computers, and attaining a speed advantage over classical computers for selected problems. What matters is quantum computers may allow...
on Aug 6
From lukaszolejnik.com
Chrome removing third-party cookies or not?
0 0
Google announced that they are... Not phasing out third-party cookies? And after 4+ years of development, this is a striking change. I explain what to make out of it. Fast-forward: unclear for at least 1-2 months. It is a response to part of industry criticism, but also regulatory oversight. At
on Jul 23
From lukaszolejnik.com
Large-scale Analysis of DNS-based Tracking Evasion - broad data leaks included?
0 0
User tracking technologies are ubiquitous on the web. In recent times web browsers try to fight abuses. This led to an arms race where new tracking and anti-tracking measures are being developed. The use of one of such evasion techniques, the CNAME cloaking technique is recently quickly gaining...
on Jul 16
From lukaszolejnik.com
Digital Markets Act, Google, Chrome extensions - case study
0 0
The Digital Markets Act is one of the least understood EU technology laws, yet it has tangible impacts—both positive and negative—on the technology landscape. We’ll use the opportunity to study an interesting and real-world case. It concerns the practice of Chrome preloading its web browser extension so
on Jul 10
From lukaszolejnik.com
TLS Session Tickets and data protection - GDPR - ePrivacy.
0 0
TLS is the fundamental protocol facilitating secure web browsing. Simply speaking it identifies the server identity and establishes an encrypted connection. That’s how we may securely use banking, do shopping, and do other things we take for granted. Establishing such a connection comes with a...
on May 22
From lukaszolejnik.com
Privacy Sandbox governance submission to the CMA
0 0
I track the Privacy Sandbox migration process since it's day 1 announcement. Having written some notes about architectural aspects, initial assessments, including identification of data leaks, When analysing the proposals and imagining the future system, I realised that there's a need to...
on May 8
From lukaszolejnik.com
Cyber Escalation Ladder model based on international law
0 0
This post about cybersecurity, cyberwarfare and international law is exploring the cross sections between technology, law, and policy. Previously I analysed some strategic documents of various States (e.g. 1, 2, 3, 4, 5, 6). So to speak: I know this landscape quite well. In 2023 the landscape is mature
on May 3
From lukaszolejnik.com
Shockwaves in security community, but post-quantum cryptography not broken after all
0 0
This April, cryptography and security community have been stirred by a new research from Yilei Chen. If the claimed result held it could potentially impact the security of applied cryptography, especially in the era of quantum computing. This work was very difficult to immediately understand due...
on Apr 30
From lukaszolejnik.com
Designing technologies with Values? Possibility - Necessity - and European story.
0 0
Should technology be based on some set of moral values? Actually, technology is always based on some set of values. There is no denying that this or another way, technology is a vehicle for some kind of values. Whether these are capitalist, ordoliberal, digital Leninism, some form of digital...
on Apr 25
From lukaszolejnik.com
Analysis of European Union election interference guidelines (2024)
0 0
There’s no question that disinformation, propaganda, and manipulation threaten the election process. The increased transition of societies to online interactions induces those vulnerabilities. Technical developments like generative AI content and the ability to reach wide audiences only help in...
on Mar 27
From lukaszolejnik.com
Websites Ask for Permissions and Attack Forgiveness
0 0
Users increasingly encounter moments when a website asks for permission to gather some personal data or access to their device hardware: "Can we access your GPS position? Your microphone or camera? Your Bluetooth? Can we send you push notifications about breaking news or premium chocolate...
on Mar 8
From lukaszolejnik.com
Censorship-resilient apps with Progressive Web Applications
0 0
Developments of the web introduce new ways of using technology. Sometimes the evolution brings positive changes that are not obvious initially. But some events highlight the significance. Like for example the periodic controversy about the removal of certain mobile apps from certain managed...
on Mar 6
From lukaszolejnik.com
Technological soft influence on elections
0 0
Update (April 2019) It was brought to my attention that Brennan center has used some of the research described in the article to fill an amicus curiae (legal opinion to the appeal court) in a case touching election protection from disinformation operations and political advertisement...
on Mar 2
From lukaszolejnik.com
Web browsing histories are private personal data - now what
0 0
The user’s Web browsing history is usually defined as a list of websites the user has visited, such as “google.com, facebook.com, reddit.com, bbc.co.uk, random-site.org, etcetc.org.uk”. On its own, it may seem innocuous. It turns out browsing history can be processed to
on Mar 1
From lukaszolejnik.com
Ambient Light Sensor Privacy Constraints, GDPR Data Protection by Design, GDPR state-of-the-art
0 0
Privacy of ambient light sensor revisited
on Jan 23
From lukaszolejnik.com
AI, LLMs, GDPR complaint, and human dignity
0 0
Data protection (GDPR) complaint against unlawful data processing by OpenAI's GPT. Infringement of data protection principles and data protection by design.
on Jan 8
From lukaszolejnik.com
Data Protection assessment of Privacy Sandbox's Protected Audience API
0 0
Data protection assessment of Privacy Sandbox's Protected Audience API. It can be deployed and designed in compliance with GDPR.
on Jan 2
From lukaszolejnik.com
Competition aspects of Privacy Sandbox's Protected Audience API
0 0
This is an accompanying post about the contents of my LL.M. dissertation devoted to Protected Audience API. The initial post, considering privacy and data protection, is here. This post is devoted to aspects of competition, an important element of the debate around the phasing out of third-party...
on Jan 2
From lukaszolejnik.com
0 0
2023 began unexpectedly difficult due to a serious health condition (and surgery), but now it’s fine - I just need to keep track of regular monitoring/tests. The first month resonated with the rest of this year. However, I managed to do quite a lot of stuff this year.
on Dec 28
From lukaszolejnik.com
Invisible disability in the world of technology
0 0
I'm sharing my story and experiences to help others who might be struggling with similar difficulties; I hope it can be helpful for at least one person struggling with difficulties such as disability, lack of self-esteem, or uncertainty about the future.
on Nov 20, 2023
From lukaszolejnik.com
Privacy architectural changes in the web are coming
0 0
In 2019 I argued and explained that we are in the midst of a perfect storm that the privacy debate has caused. I predicted the impact on the web architecture, and the web platform. The thing that billions of people use every day, that is. These very basic building fabrics
on Nov 8, 2023
From lukaszolejnik.com
LL.M. degree at University of Edinburgh Law School
0 0
In 2023 (nearly 10 years after my PhD graduation) I was awarded the title of Master of Law (LL.M.; with distinction). The topic of my dissertation is very current and I will make it public soon. Here I write a few words about the studies. For starters, it aligns
on Nov 6, 2023
From lukaszolejnik.com
Privacy analysis of European eID Regulation proposal
0 0
Privacy and data protection assessment of the eID Regulation. This assessment is prepared in response to a request by the LIBE Secretariat in the name of the MEP Cristian Terhes (rapporteur of eID file; requested on 19.01.2022). The focus of this assessment is data protection and privacy. Although
on Nov 3, 2023