Web browser history detection as a real-world privacy threat

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 6345 LNCS, Issue , 2010, Pages 215-231

  Janc, Artur ^a   Olejnik, Lukasz ^a  

^a NONE

Author keywords

[No Author keywords available]

Indexed keywords

HTTP; HYPERTEXT SYSTEMS; USER PROFILE;

BROWSING HISTORY; DETECTABILITY; INTERNET USERS; PERFORMANCE; PRIVACY THREATS; REAL-WORLD; STANDARD PROTOCOLS; WEB APPLICATION; WEB APPLICATIONS; WEB USAGE PATTERNS;

WEB BROWSERS;

EID: 78049411721     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-642-15497-3_14     Document Type: Conference Paper

References (25)

1. W3C: Cascading style sheets, level 1, http://www.w3.org/TR/REC-CSS1/
2. Bugzilla: Bug 57351 - css on a: visited can load an image and/or reveal if visitor been to a site (2000), https://bugzilla.mozilla.org/show-bug. cgi?id=57531
3. Felten, E. W., Schneider, M. A.: Timing attacks on web privacy. In: CCS 2000: Proceedings of the 7th ACM Conference on Computer and Communications Security, pp. 25-32. ACM, New York (2000)
4. Jagatic, T. N., Johnson, N. A., Jakobsson, M., Menczer, F.: Social phishing. ACM Commun. 50(10), 94-100 (2007)
5. Jackson, C., Bortz, A., Boneh, D., Mitchell, J. C.: Protecting browser state from web privacy attacks. In: WWW 2006: Proceedings of the 15th International Conference on World Wide Web, pp. 737-744. ACM, New York (2006)
6. Jakobsson, M., Stamm, S.: Web camouage: Protecting your clients from browsersning attacks. IEEE Security and Privacy 5, 16-24 (2007)
7. Webcollage: Web 2.0 collage, http://www.webcollage.com/
8. Wills, C. E., Zeljkovic, M.: A personalized approach to web privacy-awareness, attitudes and actions. Technical Report WPI-CS-TR-10-07, Computer Science Department, Worcester Polytechnic Institute (2010), http://www.cs.wpi.edu/~cew/papers/whattheyknow.pdf
9. Wondracek, G., Holz, T., Kirda, E., Kruegel, C.: A practical attack to de-anonymize social network users, IEEE security and privacy. In: IEEE Security and Privacy, Oakland, CA, USA (2010)
10. Janc, A., Olejnik, L.: What the internet knows about you, http://www.wtikay.com/
11. Nielsen, J.: Change the color of visited links, http://www.useit.com/ alertbox/20040503.html
12. Bugzilla: Bug 147777-:visited support allows queries into global history (2002), https://bugzilla.mozilla.org/show-bug.cgi?id=147777
13. W3C: Cascading style sheets level 2 revision 1 (css 2.1) specication, selectors, http://www.w3.org/TR/CSS2/selector.html#link-pseudo-classes
14. Jakobsson, M., Stamm, S.: Invasive browser sniffing and countermeasures. In: WWW 2006: Proceedings of the 15th International Conference on World Wide Web, pp. 523-532. ACM, New York (2006)
15. Jackson, C., Andrew Bortz, D. B. J. M.: Stanford safehistory, http://safehistory.com/
16. Baron, L. D.: Preventing attacks on a user's history through css: visited selectors (2010), http://dbaron.org/mozilla/visited-privacy
17. Jakobsson, M., Juels, A., Ratkiewicz, J.: Privacy-preserving history mining for web browsers. In: Web 2.0 Security and Privacy (2008)
18. Zalewski, M.: Browser security handbook, part 2(2009), http://code.google.com/p/browsersec/wiki/Part2
19. Konig, F.: The art of wwwar: Web browsers as universal platforms for attacks on privacy, network security and rbitrary targets. Technical report (2008)
20. Quantcast: Quantcast, http://www.quantcast.com/
21. Anonymous: Did you watch porn, http://didyouwatchporn.com
22. Alexa: Alexa 500, http://alexa.com
23. Bloglines: Bloglines top feeds, http://www.bloglines.com/topblogs
24. Yahoo!: Yahoo! boss, http://developer.yahoo.com/search/boss/
25. Linode: Linode vps hosting, http://linode.com