Scriptless timing attacks on web browser privacy

Proceedings of the International Conference on Dependable Systems and Networks

Volumn , Issue , 2014, Pages 112-123

  Liang, Bin ^a   You, Wei ^a   Liu, Liangkun ^a   Shi, Wenchang ^a   Heiderich, Mario ^b  

^a RENMIN UNIVERSITY OF CHINA   (China)

^b RUHR UNIVERSITY BOCHUM   (Germany)

Author keywords

browsing history; scriptless attack; timing attack; Web privacy

Indexed keywords

TIMING CIRCUITS;

BLOCKING TECHNIQUE; BROWSING HISTORY; CASCADING STYLE SHEETS; DIFFERENT ATTACKS; PRIVACY LEAKAGES; RENDERING PROCESS; SCRIPTLESS ATTACK; WEB PRIVACY;

SIDE CHANNEL ATTACK;

EID: 84912133316     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/DSN.2014.93     Document Type: Conference Paper

References (32)

1. "Content Security Policy, " http://www.w3.org/TR/2011/WD-CSP-20111129/.
2. "CSS, " http://www.w3.org/Style/CSS/.
3. "CSS3, " http://www.w3.org/Style/CSS/current-work.en.html.
4. "HTML5 IFrame Sandbox, " http://www.w3.org/TR/2011/WD-html5-20110525/the-IFrame-element.html# attr-IFrame-sandbox.
5. "JavaScript Blocker for Safari, " http://javascript-blocker. toggleable.com/.
6. "McDonald's, CBS, & Microsoft Mine Data from Web Ads, Class Claims," http://www.courthousenews.com/2010/12/27/32877.htm.
7. "NotScripts for Chrome, " https://chrome.google.com/webstore/detail/notscripts/odjhifogjcknibkahlpidmdajjpkkcfn.
8. Statement by FTC Bureau of Consumer Protection Director David Vladeck Regarding Judges Approval of Google Safari Settlement," http://www.ftc.gov/opa/2012/11/google.shtm.
9. "YouPorn Sued for Sniffing Browser History, " http://news. cnet.com/8301-30685 3-20024696-264.html.
10. D. Baron, "Preventing attacks on a user's history through CSS :visited selectors, " http://dbaron.org/mozilla/visited-privacy.
11. A. Bortz and D. Boneh, "Exposing private information by timing web applications, " in WWW, 2007, pp. 621-628.
12. K. Brewster, "Patching privacy leaks, " http://kentbrewster.com/patching-privacy-leaks/.
13. S. Chen, R. Wang, X. Wang, and K. Zhang, "Side-channel leaks in web applications: A reality today, a challenge tomorrow, " in IEEE Symposium on Se curity and Privacy, 2010, pp. 191-206.
14. A. Clover, "CSS visited pages disclosure, " http://seclists.org/bugtraq/2002/Feb/271.
15. E. W. Felten and M. A. Schneider, "Timing attacks on web privacy, " in ACM Conference on Computer and Communications Security, 2000, pp. 25-32.
16. V. Gligor, "A guide to understanding covert channel analysis of trusted systems, " National Computer Security Center, Tech. Rep., 1993.
17. L. Grangeia, "DNS cache snooping or snooping the cache for fun and profit, " SideStep Seguranca Digitial, Tech. Rep., 2004.
18. M. Heiderich, M. Niemietz, F. Schuster, T. Holz, and J. Schwenk, " Scriptless attacks: stealing the pie without touching the sill," in ACM Conference on Computer and Communications Security, 2012, pp. 760-771.
19. C. Jackson,A. Bortz,D. Boneh,J. C. Mitchell Protecting browser state from web privacy attacks in WWW 2006 737-744.
20. M. Jakobsson and S. Stamm, "Invasive browser sniffing and countermeasures, " in WWW, 2006, pp. 523-532.
21. A. Janc and L. Olejnik, "Feasibility and real-world implications of web browser history detection, " in Web 2.0 security and privacy conference, 2010.
22. D. Jang, R. Jhala, S. Lerner, and H. Shacham, " An empirical study of privacy-violating information flows in javascript web applications," in ACM Conference on Computer and Communications Security, 2010, pp. 270-283.
23. S. Krishnan and F. Monrose, "DNS prefetching and its privacy implications: when good things go bad, " in USENIX Conference on Large-scale Exploits and Emergent Threats, 2010.
24. G. Maone, "NoScript for Mozilla Firefox, " https://addons. mozilla.org/de/firefox/addon/722/.
25. J. R. Mayer and J. C. Mitchell, "Third-party web tracking: Policy and technology, " in IEEE Symposium on Security and Privacy, 2012, pp. 413-427.
26. Michal, "Rapid history extraction through non-destructive cache timing, " http://lcamtuf.coredump.cx/cachetime/.
27. J. Ruderman, " CSS on a:visited can load an image and/or reveal if visitor been to a site," https://bugzilla.mozilla.org/57351.
28. S. Stamm, B. Sterne, and G. Markham, "Reining in the web with content security policy, " in WWW, 2010, pp. 921-930.
29. Z. Weinberg, E. Y. Chen, P. R. Jayaraman, and C. Jackson, " I still know what you visited last summer: Leaking browsing history via user interaction and side channel attacks," in IEEE Symposium on Security and Privacy, 2011, pp. 147-161.
30. A. Wolman, G. M. Voelker, N. Sharma, N. Cardwell, M. Brown, T. Landray, D. Pinnel, A. R. Karlin, and H. M. Levy, "Organization-based analysis of web-object sharing and caching, " in USENIX Symposium on Internet Technologies and Systems, 1999.
31. G. Wondracek, T. Holz, E. Kirda, and C. Kruegel, "A practical attack to de-anonymize social network users, " in IEEE Symposium on Security and Privacy, 2010, pp. 223-238.
32. M. Zalewski, "Postcards from the Post-XSS World, " http://lcamtuf.coredump.cx/postxss/.