Eric Chan-Tin
ABSTRACT
Privacy is getting eroded as more surveillance is happening. The history of web privacy will be discussed along with a vision for the future. This talk will discuss how web users are tracked, what can be done about it, the impact of web surveillance on society, and privacy regulations. Web privacy has evolved significantly in the past two decades. There was no application-level encryption and snooping on what users were doing was trivial. As encryption, proxies, and other anonymity schemes start getting used, web surveillance has switched to using metadata [1]. At the moment, achieving web privacy is similar to the arms race of virus/anti-virus. New methods to break web users' privacy are found as current vectors are patched or mitigated. Web surveillance or invading web users' privacy can have both useful and harmful consequences. The methods can be used to identify illegal activity and ensure that users are who they say they are. However, these methods can also be used to perform censorship and track what users are doing on the web without their knowledge. The latter could be used for targeted advertising - on one hand, this means more useful advertisements, but on the other, it could mean targeted pricing. Many people might say they have nothing to hide; this talk will show how this is such a misleading myth. The evolution and future of webbrowser fingerprinting [2] and website fingerprinting [3] will be discussed, along with other societal and human impacts of web privacy on the future.
- Panopticlick, https://panopticlick.eff.org/Google Scholar
- Franziska Roesner, Tadayoshi Kohno, and David Wetherall. "Detecting and defending against third-party tracking on the web," Presented as part of the 9th USENIX Symposium on Networked Systems Design and Implementation (NSDI). 2012.Google Scholar
- A. Hintz, "Fingerprinting websites using traffic analysis," International Workshop on Privacy Enhancing Technologies (PET), 2002.Google Scholar
Index Terms
- 2020 Vision for Web Privacy
Recommendations
Protecting browser state from web privacy attacks
WWW '06: Proceedings of the 15th international conference on World Wide WebThrough a variety of means, including a range of browser cache methods and inspecting the color of a visited hyperlink, client-side browser state can be exploited to track users against their wishes. This tracking is possible because persistent, client-...
Measuring privacy loss and the impact of privacy protection in web browsing
SOUPS '07: Proceedings of the 3rd symposium on Usable privacy and securityVarious bits of information about users accessing Web sites. some of which are private, have been gathered since the inception of the Web. Increasingly the gathering, aggregation, and processing has been outsourced to third parties. The goal of this ...
Generating a privacy footprint on the internet
IMC '06: Proceedings of the 6th ACM SIGCOMM conference on Internet measurementAs a follow up to characterizing traffic deemed as unwanted by Web clients such as advertisements, we examine how information related to individual users is aggregated as a result of browsing seemingly unrelated Web sites. We examine the privacy ...
Comments