{"id":3875,"date":"2016-06-19T09:01:06","date_gmt":"2016-06-19T14:01:06","guid":{"rendered":"http:\/\/huewhite.com\/umb\/?p=3875"},"modified":"2016-06-19T09:01:06","modified_gmt":"2016-06-19T14:01:06","slug":"reverse-fingerprinting","status":"publish","type":"post","link":"https:\/\/huewhite.com\/umb\/2016\/06\/19\/reverse-fingerprinting\/","title":{"rendered":"Reverse Fingerprinting"},"content":{"rendered":"<p>Fingerprinting, when it comes to the web, refers to the ability to recognize an otherwise anonymous user based on those facets of a visit that are not under the user\u2019s control. <em><strong>NewScientist<\/strong><\/em> (4 June 2016) <a href=\"http:\/\/www.newscientist.com\/article\/mg23030762-400-study-of-1-million-sites-shows-just-how-closely-were-watched\/\" target=\"_blank\">reports<\/a> on a <em>reverse<\/em> <em>fingerprinting<\/em> effort by scientists at Princeton \u2013 that is, recognizing the fingerprinting techniques used by the million busiest web sites based on the web site\u2019s behavior:<\/p>\n<blockquote><p>Studying a million websites is hard. To do it, <a href=\"http:\/\/randomwalker.info\/\">Arvind Narayanan<\/a> \u2013 who heads the Web Transparency and Accountability Project at Princeton University \u2013 built a tool called OpenWPM with graduate student <a href=\"http:\/\/senglehardt.com\/\">Steven Englehardt<\/a>. OpenWPM can visit and log in to websites automatically, taking more than a dozen measurements of each one. It took two weeks to crawl through the top million websites, as ranked by web traffic firm Alexa.<\/p>\n<p>Narayanan and Englehardt discovered that many trackers are sharing the information they gather with at least one other party, sometimes dozens of times. The audit also revealed several previously unknown \u201cfingerprinting\u201d techniques that sites are using. Here, the website asks the browser to perform a task that is hidden from the user. The site then fingerprints individual machines based on slight differences in their performance. Trackers used to do this by watching how the browser draws a graphic; now, they check what fonts are installed or how the browser processes audio. A couple of trackers even gathered the device\u2019s battery level.<\/p><\/blockquote>\n<p>I\u2019m disturbed that browsers permit access to those resources, even only in a monitoring mode. And, really, the battery level? How does that even apply? The scientists comment:<\/p>\n<blockquote><p>\u201cYou often don\u2019t know how much tracking is going on, who\u2019s doing the tracking, or what data they\u2019re collecting about you and what that will be used for,\u201d [Narayanan] says. \u201cThere needs to be external oversight, somebody holding companies\u2019 feet to the fire.\u201d<\/p>\n<p>Overall, they discovered more than 81,000 third-party trackers. News websites had the most, on average. Adult websites and those owned by government agencies and universities tended to have the fewest.<\/p><\/blockquote>\n<p>It would be interesting to have a pop up window which would tell you which fingerprinting technique is being used by the website. I doubt it could tell you what the data would be used for, though.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Fingerprinting, when it comes to the web, refers to the ability to recognize an otherwise anonymous user based on those facets of a visit that are not under the user\u2019s control. NewScientist (4 June 2016) reports on a reverse fingerprinting effort by scientists at Princeton \u2013 that is, recognizing the \u2026 <a class=\"continue-reading-link\" href=\"https:\/\/huewhite.com\/umb\/2016\/06\/19\/reverse-fingerprinting\/\"> Continue reading <span class=\"meta-nav\">&rarr; <\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"nf_dc_page":"","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-3875","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/posts\/3875","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/comments?post=3875"}],"version-history":[{"count":1,"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/posts\/3875\/revisions"}],"predecessor-version":[{"id":3876,"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/posts\/3875\/revisions\/3876"}],"wp:attachment":[{"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/media?parent=3875"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/categories?post=3875"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/huewhite.com\/umb\/wp-json\/wp\/v2\/tags?post=3875"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}