google hdr+

Earlier this year, Google started a project to review third-party developer access to Google accounts through the use of APIs. It found a security breach surrounding Google+, and is now shutting the service down, at least for consumers.

今年年初，谷歌啟動(dòng)了一個(gè)項(xiàng)目，以審查第三方開發(fā)人員通過(guò)使用API??對(duì)Google帳戶的訪問(wèn)權(quán)限。 它發(fā)現(xiàn)了圍繞Google+的安全漏洞，并且目前正在關(guān)閉該服務(wù)，至少對(duì)于消費(fèi)者而言。

The long and short of the issue is that there was a security hole that allowed third-party developers to access Google+ users’ account data, including name, email address, occupation, gender, and age—even if the account was set as private.. This isn’t?particularly?sensitive data, but regardless, a breach is a breach.

問(wèn)題的根源在于，存在一個(gè)安全漏洞，允許第三方開發(fā)人員訪問(wèn)Google+用戶的帳戶數(shù)據(jù)，包括姓名，電子郵件地址，職業(yè)，性別和年齡，即使該帳戶設(shè)置為私人帳戶也是如此。這不是特別敏感的數(shù)據(jù)，但是無(wú)論如何，違規(guī)就是違規(guī)。

The bug was discovered in March of 2018, but was presumed to have been open since sometime in 2015. To make matters slightly more troubling, Google only keeps this particular API’s data log for two weeks…so the company has no way of knowing which users were affected. Presumably, however, some 500,000 users were on the list.

該錯(cuò)誤于2018年3月被發(fā)現(xiàn)，但據(jù)推測(cè)自2015年某個(gè)時(shí)候就已經(jīng)打開。為了使問(wèn)題更加麻煩，Google僅將該特定API的數(shù)據(jù)日志保留了兩周……因此該公司無(wú)法知道哪些用戶受了影響。 但是，大概有500,000個(gè)用戶在列表中。

As a bit of a bright side, however, there was no evidence that any developer was even aware this bug existed, despite 438 applications using the API. Similarly, there was no evidence that any profile data was stolen, sold, or otherwise misused. That’s good, I guess.

但是，盡管有438個(gè)應(yīng)用程序使用該API，但有一點(diǎn)光明的一面是，沒(méi)有證據(jù)表明任何開發(fā)人員甚至都知道存在此錯(cuò)誤。 同樣，也沒(méi)有證據(jù)表明任何個(gè)人資料數(shù)據(jù)被盜，出售或以其他方式濫用。 我猜那很好。

The bug was patched two weeks after it was initially discovered (Google took two weeks to analyze the data before patching the hole), but has now decided to shut down Google+ as a consumer service. In a blog post by the company highlighting its findings, it’s stated that 90 percent of all Google+ visits last fewer than five seconds. Ouch.

該漏洞是在最初被發(fā)現(xiàn)的兩周后被修補(bǔ)的(Google在修補(bǔ)漏洞之前花了兩周的時(shí)間來(lái)分析數(shù)據(jù))，但是現(xiàn)在決定關(guān)閉Google+作為消費(fèi)者服務(wù)。 該公司在一篇博客文章中強(qiáng)調(diào)了這一發(fā)現(xiàn)，指出90％的Google+訪問(wèn)持續(xù)時(shí)間不到5秒。 哎喲。

So, instead of investing time, energy, and money into a clearly dead network, the company is just going to put it out of its misery. The consumers side will be completely closed by August of 2019. From that point forward, G+ will continue on as an enterprise product, where many companies seem to use it heavily.

因此，該公司不會(huì)將時(shí)間，精力和金錢投入到顯然已死的網(wǎng)絡(luò)中，而只是將其從痛苦中解脫出來(lái)。 到2019年8月，消費(fèi)者方面將完全關(guān)閉。從那時(shí)起，G +將繼續(xù)作為企業(yè)產(chǎn)品使用，許多公司似乎都在大量使用它。

As another upside, more granular account permissions are going to be available on Google accounts. That means instead of just allowing access to your account with one simple “Allow” button, you’ll get to choose which permissions apps are allowed access to each particular service.

另一個(gè)好處是，可以在Google帳戶上使用更精細(xì)的帳戶權(quán)限。 這意味著您不僅可以通過(guò)一個(gè)簡(jiǎn)單的“允許”按鈕來(lái)允許訪問(wèn)您的帳戶，還可以選擇允許哪些權(quán)限的應(yīng)用訪問(wèn)每個(gè)特定服務(wù)。

So, for example, if you’re using your Google account to sign into a new service and it requests access to your Calendar and Drive, you’ll be able to grant or deny that permission on a per-service basis. Think of it like Android’s permission control, just for your Google account. They’re also limiting app’s access to your Gmail account moving forward, so only apps that “directly enhance” email functionality (like email clients and backup services) will be able to access your Gmail messages.

因此，例如，如果您正在使用Google帳戶登錄新服務(wù)，并請(qǐng)求訪問(wèn)日歷和云端硬盤，則可以基于每個(gè)服務(wù)授予或拒絕該權(quán)限。 僅將其視為Google帳戶的Android權(quán)限控制。 它們還限制了應(yīng)用程序?qū)δ腉mail帳戶的訪問(wèn)權(quán)限，因此，只有“直接增強(qiáng)”電子郵件功能的應(yīng)用程序(如電子郵件客戶端和備份服務(wù))才能訪問(wèn)您的Gmail郵件。

Finally, app access to Call Logs and SMS on Android are going to be limited moving forward. Google Play will limit the types of apps that are allowed to request these permissions—only your default app for the given situation will be able to access this info. So, for example, your default messaging app will have access to SMS permissions, and the default dialer can access Call Logs. But other apps won’t be able to.

最后，今后對(duì)Android上的呼叫記錄和SMS的應(yīng)用訪問(wèn)將受到限制。 Google Play將限制允許請(qǐng)求這些權(quán)限的應(yīng)用程序的類型-只有在給定情況下的默認(rèn)應(yīng)用程序才能訪問(wèn)此信息。 因此，例如，您的默認(rèn)消息收發(fā)應(yīng)用程序?qū)⒂袡?quán)訪問(wèn)SMS權(quán)限，而默認(rèn)撥號(hào)程序可以訪問(wèn)呼叫日志。 但是其他應(yīng)用程序?qū)o(wú)法執(zhí)行。

All these changes are happening in the coming months, giving users more control over their own data. Google will also work with developers to give them time to adjust the required permissions for apps and services that will be affected by the changes.

所有這些更改都將在未來(lái)幾個(gè)月內(nèi)發(fā)生，從而使用戶可以更好地控制自己的數(shù)據(jù)。 Google還將與開發(fā)人員合作，讓他們有時(shí)間調(diào)整受更改影響的應(yīng)用和服務(wù)所需的權(quán)限。

Source: Google

資料來(lái)源：谷歌

翻譯自: https://www.howtogeek.com/fyi/google-is-dead-survived-by-better-privacy-controls/

google hdr+

總結(jié)

以上是生活随笔為你收集整理的google hdr+_更好的隐私权控制使Google+死了的全部?jī)?nèi)容，希望文章能夠幫你解決所遇到的問(wèn)題。

如果覺得生活随笔網(wǎng)站內(nèi)容還不錯(cuò)，歡迎將生活随笔推薦給好友。