Home > DocuBase > Article

« All DocuBase Articles

 

Follow DocuTicker on Twitter Bookmark and Share   Feed

Friday, 11th April 2014

Cookies that give you away: Evaluating the surveillance implications of web tracking

Source: Center for Information Technology Policy, Princeton University

From Freedom to Tinker blog entry:

Over the past three months we’ve learnt that NSA uses third-party tracking cookies for surveillance. These cookies, provided by a third-party advertising or analytics network (e.g. doubleclick.com, scorecardresearch.com), are ubiquitous on the web, and tag users’ browsers with unique pseudonymous IDs. In a new paper, we study just how big a privacy problem this is. We quantify what an observer can learn about a user’s web traffic by purely passively eavesdropping on the network, and arrive at surprising answers.

At first sight it doesn’t seem possible that eavesdropping alone can reveal much. First the eavesdropper on the Internet backbone sees millions of HTTP requests and responses. How can he associate the third-party HTTP request containing a user’s cookie with request to the first-party web page that the browser visited, which doesn’t contain the cookie? Second, how can visits to different first parties be linked to each other? And finally, even if all the web traffic for a single user can be linked together, how can the adversary go from a set pseudonymous cookies to the user’s real-world identity?

+ Direct link to paper (PDF; 993 KB)

+ Blog entry


Category:

Source:

Views: 1522


Having begun his career in academic libraries, Adrian Janes has subsequently worked extensively in public libraries, chiefly in enquiry work as an Information Services librarian. In this role he has had particular responsibility for information from both the UK Government and the European Union. He wrote a detailed report on sources for the latter which was published by FreePint in 2007, and has contributed articles to FreePint and ResourceShelf. He is involved in training in information literacy and the use of online reference resources.

A Contributing Editor to DocuTicker, he also write reviews for Pennyblackmusic.

Adrian can be reached at adrian.janes@freepint.com

More articles by Adrian Janes »



Please note: DocuTicker's editors collect citations for full-text PDF reports freely available on the web but we do not archive these reports. When you click a link to find and/or download the report, you are leaving the DocuTicker site. DocuTicker makes no representations regarding the ongoing availability of any report or any external resource. Links were accurate as of the date of posting.

« All DocuBase Articles

 

FreePint

FreePint supports the value of information in the enterprise. Read more »


FeedLatest FreePint Content:


  • Click to view the article Product Review of Reg-Track (Sources - Content & Coverage)
    Thursday, 24th July 2014

    In the second part of his review, Chris Porter looks at content coverage in Reg-Track, a regulatory tracking service aimed at compliance professionals focused on the financial services industry. With a focus on the largest financial markets, such as those within North America, the European Union and Asia-Pacific, Reg-Track is also expanding its coverage to additional regulators.

  • Click to view the article Are We Becoming Too Scared of Security to Benefit from Big Data?
    Thursday, 24th July 2014

    Information assets are in the hands of the right people to safeguard them but the wrong people to manage their exploitation concludes an influential new study. As reports continue to emerge of apparent corporate paralysis in the face of cyber security threats, Tim Buckley Owen wonders whether the emphasis hasn't swung too far in that direction, and sees opportunities for information professionals in helping to strike a balance between security in the cloud and effective data analysis for competitive advantage.

  • Click to view the article Effective Collaboration Isn't Always About the Tools
    Thursday, 24th July 2014

    When companies begin to take their first tentative steps with collaboration a first thought is often - what tool shall we use to facilitate collaboration within our organisation? James Mullan argues that the first step should be to think about what problems the collaboration tools are going to solve and what your ultimate goal is so that you can develop a plan and a strategy for the implementation of these types of tools.

  • ... more ...

All FreePint Content »
FreePint Topics »


A FreePint Subscription delivers articles and reports that support your organisation's information practice, content and strategy.

Find out more and order a FreePint Subscription by visiting the
completing our online form: Subscription Order page.


FreePint Testimonials

"It was really useful to get so much input from customers and hear their perspective - I have come into the office this morning full of things ..."

Read more testimonials and supply yours »







 

 
 
 

Subscribe

Receive the DocuTicker Newsletter each week.

Find out more »

Article Categories

All Article Categories »

Sources

All DocuBase Sources »

Source Categories

All Source Categories »

Archive

All Archives »