ABSTRACT
The exponential growth in the use of web services and applications has increased the amount of personal information registered on websites and databases worldwide. Consequently, users are more exposed to vulnerability flaws and more subject to the impact of leaking this information. This article investigates how personal information is handled by three popular browsers: Internet Explorer, Mozilla Firefox and Google Chrome, by analyzing data collected in shared research laboratories. Through the analysis of data stored by browsers on a shared computer laboratory, we found a large number of cookies with important personal information, showing that these browsers can reveal more than the users would like.
- Aggarwal, G., Bursztein, E., Jackson, C., and Boneh, D. An Analysis of Private Browsing Modes in Modern Browsers. In USENIX Security'10 Proceedings of the 19th USENIX conference on Security, USA, Washington, DC, EUA, 2010. Google ScholarDigital Library
- Backes, M., Kate, A., Maffei, M., Pecina, K. ObliviAd: Provably Secure and Practical Online Behavioral Advertising. In Security and Privacy (SP), 2012 IEEE Symposium on, São Francisco, CA, EUA, 2012. Google ScholarDigital Library
- Böttiger, A. HTTP-Only cookies -- Brought to you by Internet Explorer 6. Novembro 2011. http://bottiger.org/wrote/5-HTTP-Only-cookies-Brought-to-you-by-Internet-Explorer-6.Google Scholar
- Broenink, R. Using Browser Properties for Fingerprinting Purposes. 16th biennial Twente Student Conference on IT, Enschede, Holanda, 2012.Google Scholar
- Chaabane, A, Kaafar, M. A., and Boreli, R. Big Friend is Watching You: Analyzing Online Social Networks Tracking Capabilities. In: WOSN '12 Proceedings of the 2012 ACM Workshop on online social networks, Finlândia, 2012. Google ScholarDigital Library
- Fleischer, P. Cookies: expiring sooner to improve privacy. Novembro, 2007. http://googleblog.blogspot.com.br/2007/07/cookies-expiring-sooner-to-improve.html.Google Scholar
- Helpful. Utma, utmb, utmz cookies. Novembro, 2012. http://helpful.knobs-dials.com/index.php/Utma,_utmb,_utmz_cookies.Google Scholar
- Krishnamurthy, B., and Wills, C. E. On the Leakage of Personally Identifiable Information Via Online Social Networks. In ACM SIGCOMM Computer Communication Review, Publishing Press, p.112--117, 2009. Google ScholarDigital Library
- Lexus. Cookie Policy. Novembro, 2012. http://www.lexus.co.uk/cookie-policy.tmex#/Footer.Google Scholar
- McCallister, E., Grance, T., Scarfone, K. Guide to Protecting the Confidentiality of Personally Identifiable Information. NIST Special Publication 800--122, 2010.Google Scholar
- Mozilla. Cookies -- Português. Novembro, 2012. http://support.mozilla.org/pt-PT/kb/Cookies%20-%20Portugu%C3%AAs.Google Scholar
- Roosendaal, A. Facebook tracks and traces everyone: Like this!. In Tilburg Law School Legal Studies Research Paper Series No. 03/2011.Google Scholar
- Whoriskey, P. Every click you make. Washington Post, April, 2008. http://www.washingtonpost.com/wp-dyn/content/article/2008/04/03/AR2008040304052.html.Google Scholar
- Xu, H., Crossler, R. E., and Bélanger, F. A Value Sensitive Design Investigation of Privacy Enhancing Tools in Web Browsers. Decision Support Systems, 54(1), 424--433, 2012. Google ScholarDigital Library
Index Terms
- Vulnerability in the Information Age: What Browsers Reveal
Recommendations
Review: A survey on solutions and main free tools for privacy enhancing Web communications
Concern for privacy when users are surfing on the Web has increased recently. Nowadays, many users are aware that when they are accessing Web sites, these Web sites can track them and create profiles on the elements they access, the advertisements they ...
Browserprint: an Analysis of the Impact of Browser Features on Fingerprintability and Web Privacy
Information SecurityAbstractWeb browsers are indispensable applications in our daily lives. Millions of users use web browsers for a wide range of activities such as social media, online shopping, emails, or surfing the web. The evolution of increasingly more complicated web ...
Cookies That Give You Away: The Surveillance Implications of Web Tracking
WWW '15: Proceedings of the 24th International Conference on World Wide WebWe study the ability of a passive eavesdropper to leverage "third-party" HTTP tracking cookies for mass surveillance. If two web pages embed the same tracker which tags the browser with a unique cookie, then the adversary can link visits to those pages ...
Comments