TU Darmstadt / ULB / TUbiblio

Disguised Chromium Browser: Robust browser, Flash and Canvas Fingerprinting Protection

Baumann, Peter and Katzenbeisser, Stefan and Stopczynski, Martin and Tews, Erik (2016):
Disguised Chromium Browser: Robust browser, Flash and Canvas Fingerprinting Protection.
In: WPES '16 Proceedings of the 2016 ACM on Workshop on Privacy in the Electronic Society, ACM, Vienna, Austria, ISBN 978-1-4503-4569-9,
DOI: 10.1145/2994620.2994621,
[Conference or Workshop Item]

Abstract

Browser fingerprinting is a widely used technique to uniquely identify web users and to track their online behavior. Until now, different tools have been proposed to protect the user against browser fingerprinting. However, these tools have usability restrictions as they deactivate browser features and plug-ins (like Flash) or the HTML5 canvas element. In addition, all of them only provide limited protection, as they randomize browser settings with unrealistic parameters or have methodical flaws, making them detectable for trackers. In this work we demonstrate the first anti-fingerprinting strategy, which protects against Flash fingerprinting without deactivating it, provides robust and undetectable anti-canvas fingerprinting, and uses a large set of real word data to hide the actual system and browser properties without losing usability. We discuss the methods and weaknesses of existing anti-fingerprinting tools in detail and compare them to our enhanced strategies. Our evaluation against real world fingerprinting tools shows a successful fingerprinting protection in over 99% of 70.000 browser sessions.

Item Type: Conference or Workshop Item
Erschienen: 2016
Creators: Baumann, Peter and Katzenbeisser, Stefan and Stopczynski, Martin and Tews, Erik
Title: Disguised Chromium Browser: Robust browser, Flash and Canvas Fingerprinting Protection
Language: German
Abstract:

Browser fingerprinting is a widely used technique to uniquely identify web users and to track their online behavior. Until now, different tools have been proposed to protect the user against browser fingerprinting. However, these tools have usability restrictions as they deactivate browser features and plug-ins (like Flash) or the HTML5 canvas element. In addition, all of them only provide limited protection, as they randomize browser settings with unrealistic parameters or have methodical flaws, making them detectable for trackers. In this work we demonstrate the first anti-fingerprinting strategy, which protects against Flash fingerprinting without deactivating it, provides robust and undetectable anti-canvas fingerprinting, and uses a large set of real word data to hide the actual system and browser properties without losing usability. We discuss the methods and weaknesses of existing anti-fingerprinting tools in detail and compare them to our enhanced strategies. Our evaluation against real world fingerprinting tools shows a successful fingerprinting protection in over 99% of 70.000 browser sessions.

Title of Book: WPES '16 Proceedings of the 2016 ACM on Workshop on Privacy in the Electronic Society
Publisher: ACM
ISBN: 978-1-4503-4569-9
Uncontrolled Keywords: Browser, Fingerprinting, Canvas, Flash, Privacy, Tracking
Divisions: Profile Areas
Profile Areas > Cybersecurity (CYSEC)
Event Location: Vienna, Austria
Date Deposited: 14 Aug 2017 12:58
DOI: 10.1145/2994620.2994621
Identification Number: TUD-CS-2016-14773
Export:
Suche nach Titel in: TUfind oder in Google

Optionen (nur für Redakteure)

View Item View Item