Netinfo Security ›› 2019, Vol. 19 ›› Issue (11): 49-55.doi: 10.3969/j.issn.1671-1122.2019.11.007

Previous Articles     Next Articles

Statistics-based Browser Fingerprint Acquisition Technology

Liangfeng ZHANG1,2, Yi WANG1,2,3, Yuanyi WU2, Rui KONG4()   

  1. 1. Shanghai Institute of Microsystem and Information Technology, Shanghai 200050, China
    2. School of Information Science and Technology of Shanghai Tech University, Shanghai 201210, China
    3. University of Chinese Academy of Sciences, Beijing 100029, China
    4. National Key Laboratory of Science and Technology on Information System Security, Beijing 100101, China
  • Received:2019-02-05 Online:2019-11-10 Published:2020-05-11

Abstract:

Browser’s fingerprint is a new technology used as a unique identifier for the user,it can learn enough information about your browser to uniquely distinguish you from all the other visitors to that site. When it is used to marketing advertising and defend fraud, attackers use this technology to track users at the same time. To protect users’ privacy, researchers have proposed many solutions to avoid being tracked. One of the newest is randomizing key attributes of browser’s fingerprint to disruptive relevance between user’s different sessions. This paper proposed an attack on a recent proposal that randomizes browser features to defeat fingerprinting and demonstrated the attack’s effectiveness. With a statistics method and Side-channel attack method, this paper can restore the truth of the key attribute of browser’s fingerprint and distinguishdifferent users . The experimental results show that with our method, the accuracy of restore the browser’s fingerprint is more than 98%.

Key words: browser privacy, fingerprint, side-channel attack, randomize, hypothesis testing

CLC Number: