(In-)Security of Cookies in HTTPS: Cookie Theft by Removing Cookie Flags

Kwon, Hyunsoo; Nam, Hyunjae; Lee, Sang‐Tae; Hahn, Changhee; Hur, Junbeom

doi:10.1109/tifs.2019.2938416

Cited by 7 publications

(5 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Traditional cookie-based user tracking technology has exposed more and more limitations. For example, cookies may be hijacked [70], modified [2], forged, and even injected from cookies [71]. More and more users choose to ban cookies or install privacy protection plug-ins, and even 10…”

Section: Discussionmentioning

confidence: 99%

“…Due to the powerful function of JavaScript, JavaScript code can be easily used to obtain many fingerprint information of the client's browser, such as browser version, operating system, and system architecture. Many researchers use JavaScript technology to obtain browser fingerprint [2][3][4][5]. Among them, Mowery et al also used the NoScript plug in the literature [9] to obtain its whitelist as part of the characteristic fingerprint.…”

Section: Feature Acquisitionmentioning

confidence: 99%

“…For example, many websites abuse cookies for advertising [1]. And because cookies are stored in the local end of users, it is easy to lead to user information leakage and tampering [2]. These problems have led to a growing distrust of cookies, with many people installing add-ons to clear cookies or simply using private mode.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

A Survey of Browser Fingerprint Research and Application

Zhang

et al. 2022

Wireless Communications and Mobile Computing

View full text Add to dashboard Cite

With the development of modern browsing, the convenience brought by rich browser features has also produced a large number of features, which are called browser fingerprints. This article surveys the latest research results on browser fingerprinting, hoping to provide a convenient navigation for newcomers to research or apply this technology in the future. This paper first briefly introduces the browser fingerprinting technology itself, then classifies the related research on browsers, and analyzes the development of different research directions of browser fingerprinting in detail. And through the analysis of the existing results, the problems faced by different research directions are pointed out. After that, this paper introduces the application of browser fingerprint technology in detail and discusses the application achievements and technical challenges of this technology. Next, this paper introduces the theoretical tools related to the research of browser fingerprinting technology and introduces the application of different theoretical tools and practical significance. Finally, the research achievements of browser fingerprint recognition are summarized, and the future development trend is pointed out.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Feature Acquisitionmentioning

confidence: 99%

See 1 more Smart Citation

A Survey of Browser Fingerprint Research and Application

Zhang

et al. 2022

Wireless Communications and Mobile Computing

View full text Add to dashboard Cite

show abstract

“…In this way, browser information such as operating system or browser version can be gained. Much research has utilized this approach, e.g., [3,4,9,10]. For example, Mowery et al used a plug-in known as NoScript and its whitelist for the characteristics of a fingerprint [14].…”

Section: Overview Of Browser Fingerprint Researchmentioning

confidence: 99%

“…The most widely used technology for this purpose are cookies, and in recent years, they have grown increasingly problematic due to their misuse, such as for advertising [2]. Since cookies are stored locally (on the user's computer), user information leakage or tampering can be accomplished easily [3]. This resulted in a growing mistrust of cookies.…”

Section: Introductionmentioning

confidence: 99%

Browser Fingerprinting: Overview and Open Challenges

Hölbl,

Zadorozhny,

Welzer Družovec

et al. 2024

Frontiers in Artificial Intelligence and Applications

View full text Add to dashboard Cite

The central concept of browser fingerprinting is the collection of device-specific information for identification or security purposes. This chapter provides an overview of the research conducted in the field of browser fingerprinting and presents an entry point for newcomers. Relevant literature is examined to understand the current research in the field of browser fingerprinting. Both research in the field of crafting browser fingerprints and protection against it is included. Finally, current research challenges and future research directions are presented and discussed.

show abstract