Google changes sign-in and Cookie policy in Chrome 70

[German]After Chrome developers implemented a ‘mandatory sign-in’ in Google Chrome 69, the received a slash back from media. Now Google pulls back and announced some changes in upcoming Google Chrome 70.


Advertising


I became aware via twitter on that topic. Matthew Green postet the following message on twitter.

More details has been published within the blog post Chrome is a Google Service that happens to include a Browser Engine. Matthew Green then released the blog post Why I’m done with Chrome, where he explains, what’s wrong with Google’s approach.

And there was also another ‘thing’, as users at reddit.com found out: When you clear your cookies/data, Chrome deletes everything EXCEPT Google cookies.

Google announced corrections in Chrome 70

The outcry in the media regarding the forced login to the Google account in Google Chrome has led to a reaction from the developers. In the Google blog postProduct updates based on your feedback, Chrome Product Manager Zach Koch explained some deatils, why they have choosen this implementation.


Advertising

We recently made a change to simplify the way Chrome handles sign-in. Now, when you sign into any Google website, you’re also signed into Chrome with the same account. You’ll see your Google Account picture right in the Chrome UI, so you can easily see your sign-in status. When you sign out, either directly from Chrome or from any Google website, you’re completely signed out of your Google Account

Chrome Kontenanmeldung
(Source: Google)

Zach Koch made clear that this change to sign-in does not mean Chrome sync gets turned on. Users who want data like their browsing history, passwords, and bookmarks available on other devices must take additional action, such as turning on sync.

But Google has heard — and appreciate—the feedback. They are going to make a few updates in the next release of Chrome (Version 70, released mid-October) to better communicate the changes and offer more control over the experience.

Chrome Einstellungen
(Source: Google)

They are adding a control that allows users to turn off linking web-based sign-in with browser-based sign-in—that way users have more control over their experience. For users that disable this feature, signing into a Google website will not sign them into Chrome.

Zach Koch announced also, that they are also going to change the way, Chrome 70 handle the clearing of auth cookies. In the current version of Chrome, the browser keep the Google auth cookies to allow you to stay signed in after cookies are cleared. Google will change this behavior in Chrom 70 that so all cookies are deleted and the user will be signed out. Details may be found within this article.


Advertising


This entry was posted in browser, Security and tagged , . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *