Google Safe Browsing
This article contains content that is written like an advertisement. (October 2019)
|Operating system||Android, Chrome OS, Windows, macOS, iOS, Web browsers|
Google Safe Browsing is a blacklist service provided by Google that provides lists of URLs for web resources that contain malware or phishing content. The Google Chrome, Safari, Firefox, Vivaldi, and GNOME Web browsers use the lists from the Google Safe Browsing service for checking pages against potential threats. Google also provides a public API for the service.
- Web browsers: Google Chrome, Safari, Firefox, Vivaldi, and GNOME Web.
- Android: Google Play Protect, Verify Apps API
- Google Search
- Google AdSense
Google maintains the Safe Browsing Lookup API, which has a privacy drawback: "The URLs to be looked up are not hashed so the server knows which URLs the API users have looked up". The Safe Browsing Update API, on the other hand, compares 32-bit hash prefixes of the URL to preserve privacy. The Chrome, Firefox and Safari browsers use the latter.
Google Safe Browsing "conducts client-side checks. If a website looks suspicious, it sends a subset of likely phishing and social engineering terms found on the page to Google to obtain additional information available from Google's servers on whether the website should be considered malicious". Logs, "including an IP address and one or more cookies" are kept for two weeks. They are "tied to the other Safe Browsing requests made from the same device."
Websites not containing malware have been blacklisted by Google Safe Browsing due to the presence of infected ads. Requesting removal from the blacklist requires the webmaster to create a Google Webmaster's Tool account and wait several days for removal to be in effect. There have also been concerns that Google Safe Browsing may be used for censorious purposes in the future, however this has not occurred.
- Schwartz, Barry (May 23, 2008). "Google's Safe Browsing Diagnostic Tool". Search Engine Land. Retrieved 2012-09-01.
- Constantin, Lucian (Dec 2, 2011). "Google Safe Browsing Alerts Network Admins About Malware Distribution Domains". PCWorld.com. Retrieved 2012-09-01.
- "Firefox Phishing and Malware Protection". Mozilla Foundation. Retrieved 2012-09-01.
- "Phishing and malware detection". Google Inc. Retrieved 2012-09-01.
- "Safe Browsing API". Google Inc. Retrieved 2012-09-01.
- "Safe Browsing: Protecting more than 3 billion devices worldwide, automatically". The Google Blog. September 2017.
- "How safe browsing fails to protect user privacy". Trail of Bits Blog.
- Gerbet, Thomas; Kumar, Amrit; Lauradoux, Cedric (June 2016). "A Privacy Analysis of Google and Yandex Safe Browsing" (PDF). 2016 46th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN). Toulouse, France: IEEE: 347–358. doi:10.1109/DSN.2016.39. ISBN 978-1-4673-8891-7. S2CID 17276613.
- "Developer's Guide (v3)". Google Developers. 18 March 2015.
- "Safe Browsing API - Google Developers". Google Developers. 18 March 2015.
- Bott, Ed. "Did Google withhold malware protection details from partners?". ZDNet.
- "Cookies from Nowhere". Ashkan Soltani.
- "Google Chrome Privacy Whitepaper". google.com.
- "Google Safe Browsing Makes the Innocent Look Guilty". PCWorld. Retrieved 2018-07-29.
- "The New Censorship". 22 June 2016.