WiP: Brainstorming of topics to cover.

EU perspective

• Detection of cookie notices: EasyCookie list, z-index, NLP, heuristics
• Interaction with notices:
  • Consent-O-Matic and forks: Autoconsent by Mozilla, DuckDuckGo, and Brave
    • Provides possibility to set concrete consent mode (accept specific processing purposes)
    • But it is limited to only set of CMPs
  • I (still) don't care about cookies
    • Some notices are consented (typically accept all), some are just removed
  • ML classification of consent choices: Khandewal et al. [1Khandelwal, Rishabh; Nayak, Asmit; Harkous, Hamza; Fawaz, Kassem (2023): "Automated Cookie Notice Analysis and Enforcement", in: 32nd USENIX Security Symposium (USENIX Security 23), pp. 1109-1126. USENIX Association, Anaheim, CA. (Link)] and Bouhoula et al. [2Bouhoula, Ahmed; Kubicek, Karel; Zac, Amit; Cotrini, Carlos; Basin, David (2024): "Automated Large-Scale Analysis of Cookie Notice Compliance", in: 33rd USENIX Security Symposium (USENIX Security 24), pp. 1723-1739. USENIX Association, Philadelphia, PA. (Link)]

US/global perspective

• Global Privacy Control (GPC) signal
• Do-Not-Track (DNT)
• Classifying opt-out links: https://dl.acm.org/doi/abs/10.1145/3366423.3380262

[1]

Khandelwal, Rishabh; Nayak, Asmit; Harkous, Hamza; Fawaz, Kassem (2023): "Automated Cookie Notice Analysis and Enforcement", in: 32nd USENIX Security Symposium (USENIX Security 23), pp. 1109-1126. USENIX Association, Anaheim, CA. (Link)

[2]

Bouhoula, Ahmed; Kubicek, Karel; Zac, Amit; Cotrini, Carlos; Basin, David (2024): "Automated Large-Scale Analysis of Cookie Notice Compliance", in: 33rd USENIX Security Symposium (USENIX Security 24), pp. 1723-1739. USENIX Association, Philadelphia, PA. (Link)