Web Tracking: Attack and Defense

主讲:Yinzhi Cao 美国里海大学助理教授

Web tracking is a technique to remember and recognize past website visitors. Up to now, web tracking has evolved into three generations that co-exist in today’s web. The first-generation tracking adopts stateful, server-set identifiers like cookies to track web users. After that, browser fingerprinting—defined as the second-generation tracking—emerges, moving from stateful identifiers to stateless. Nowadays people are developing third-generation, cross-device tracking.In this talk, I will present our group’s research on web tracking and anti-tracking. In the first half of the talk, I will present a novel 2.5-generation tracking, which can track users across different browsers on the same machine. Then, in the second half of the talk, I will discuss an anti-tracking technique, which can defend against timing-based browser fingerprinting as well as other timing attacks.

Part 1 Background:Web Tracking



Web Tracking: Attack and Defense 



var _hmt = _hmt || []; (function() { var hm = document.createElement("script"); hm.src = "http://hm.baidu.com/hm.js?b841bd73360946ada23db9fa82c9c6ae"; var s = document.getElementsByTagName("script")[0]; s.parentNode.insertBefore(hm, s); })();