Too little too late: can we control browser fingerprinting?

@article{AlFannah2020TooLT,
  title={Too little too late: can we control browser fingerprinting?},
  author={Nasser Mohammed Al-Fannah and Chris J. Mitchell},
  journal={Journal of Intellectual Capital},
  year={2020},
  volume={21},
  pages={165-180}
}
Browser fingerprinting is increasingly being used for online tracking of users, and, unlike the use of cookies, is almost impossible for users to control. This has a major negative impact on online privacy. Despite the availability of a range of fingerprinting countermeasures as well as some limited attempts by browser vendors to curb its effectiveness, it remains largely uncontrolled. The paper aims to discuss this issue.,This paper provides the first comprehensive and structured discussion of… 

Figures from this paper

A Large-scale Empirical Analysis of Browser Fingerprints Properties for Web Authentication
TLDR
This article makes the link between the digital fingerprints that distinguish browsers, and the biological fingerprint that distinguish Humans, to evaluate browser fingerprints according to properties inspired by biometric authentication factors, and concludes that their browser fingerprints carry the promise to strengthen web authentication mechanisms.
Multi-country Study of Third Party Trackers from Real Browser Histories
TLDR
This paper aims to understand how third-party ecosystems have developed in four different countries: UK, China, AU, US, and suggests that studies which rely solely on Alexa top ranked websites may be over estimating the power of third parties.

References

SHOWING 1-10 OF 44 REFERENCES
XHOUND: Quantifying the Fingerprintability of Browser Extensions
TLDR
It is shown that an extension's organic activity in a page's DOM can be used to infer its presence, and XHound, the first fully automated system for fingerprinting browser extensions is developed, is developed.
Beyond Cookie Monster Amnesia: Real World Persistent Online Tracking
TLDR
C crawled the 10,000 most popular websites to give insights into the number of websites that are using the technique, which websites are collecting fingerprinting information, and exactly what information is being retrieved.
Countering Browser Fingerprinting Techniques: Constructing a Fake Profile with Google Chrome
While Web browsers are fundamental components in the Internet nowadays, the widespread availability of several techniques that can be used to detect the individual browser connected to a server
FPRandom: Randomizing Core Browser Objects to Break Advanced Device Fingerprinting Techniques
TLDR
FPRandom is presented, a modified version of Firefox that adds randomness to mitigate the most recent fingerprinting algorithms, namely canvas fingerprinting, AudioContext fingerprinting and the unmasking of browsers through the order of JavaScript properties.
Hiding in the Crowd: an Analysis of the Effectiveness of Browser Fingerprinting at Large Scale
TLDR
The key insight is that the percentage of unique fingerprints in the dataset is much lower than what was reported in the past: only 33.6% of fingerprints are unique by opposition to over 80% in previous studies.
PriVaricator: Deceiving Fingerprinters with Little White Lies
TLDR
In PriVaricator the power of randomization is used to "break" linkability by exploring a space of parameterized randomization policies, and renders all the fingerprinters tested ineffective, while causing minimal damage on a set of 1000 Alexa sites on which they were tested.
Fp-Scanner: The Privacy Implications of Browser Fingerprint Inconsistencies
TLDR
It is demonstrated that FP-SCANNER can also reveal the original value of altered fingerprint attributes, such as the browser or the operating system, and it is believed that this result can be exploited by fingerprinters to more accurately target browsers with countermeasures.
Not All Browsers are Created Equal: Comparing Web Browser Fingerprintability
TLDR
The results reveal significant differences between browsers in terms of their fingerprinting potential, meaning that the choice of browser has significant privacy implications.
User Tracking on the Web via Cross-Browser Fingerprinting
TLDR
It is shown that a part of the IP address, the availability of a specific font set, the time zone, and the screen resolution are enough to uniquely identify most users of the five most popular web browsers, and that user agent strings are fairly effective but fragile identifiers of a browser instance.
How Unique Is Your Web Browser?
  • P. Eckersley
  • Computer Science
    Privacy Enhancing Technologies
  • 2010
TLDR
The degree to which modern web browsers are subject to "device fingerprinting" via the version and configuration information that they will transmit to websites upon request is investigated, and what countermeasures may be appropriate to prevent it is discussed.
...
...