Fingerprinting Information in JavaScript Implementations

To date, many attempts have been made to fingerprint users on the web. These fingerprints allow browsing sessions to be linked together and possibly even tied to a user's identity. They can be used constructively by sites to supplement traditional means of user authentication such as passwords; and they can be used destructively to counter attempts to stay anonymous online. In this paper, the authors identify two new avenues for browser fingerprinting. The new fingerprints arise from the browser's JavaScript execution characteristics, making them difficult to simulate or mitigate in practice.

Provided by: University of California Topic: Security Date Added: May 2011 Format: PDF

Find By Topic