English
Related papers

Related papers: After You, Please: Browser Extensions Order Attack…

200 papers

Revelations of large scale electronic surveillance and data mining by governments and corporations have fueled increased adoption of HTTPS. We present a traffic analysis attack against over 6000 webpages spanning the HTTPS deployments of 10…

Cryptography and Security · Computer Science 2014-03-04 Brad Miller , Ling Huang , A. D. Joseph , J. D. Tygar

Online services provide users with cookie banners to accept/reject the cookies placed on their web browsers. Despite the increased adoption of cookie banners, little has been done to ensure that cookie consent is compliant with privacy laws…

Cryptography and Security · Computer Science 2025-08-08 Brian Tang , Duc Bui , Kang G. Shin

Web developers routinely rely on third-party Java-Script libraries such as jQuery to enhance the functionality of their sites. However, if not properly maintained, such dependencies can create attack vectors allowing a site to be…

Cryptography and Security · Computer Science 2020-02-17 Tobias Lauinger , Abdelberi Chaabane , Sajjad Arshad , William Robertson , Christo Wilson , Engin Kirda

Modern web browsers have accrued an incredibly broad set of features since being invented for hypermedia dissemination in 1990. Many of these features benefit users by enabling new types of web applications. However, some features also…

Cryptography and Security · Computer Science 2017-09-06 Peter Snyder , Cynthia Taylor , Chris Kanich

In the landscape of application ecosystems, today's cloud users wish to personalize not only their browsers with various extensions or their smartphones with various applications, but also the various extensions and applications themselves.…

Cryptography and Security · Computer Science 2015-04-13 Florian Schröder , Raphael M. Reischuk , Johannes Gehrke

Privacy regulations have led to many websites showing cookie banners to their users. Usually, cookie banners present the user with the option to "accept" or "reject" cookies. Recently, a new form of paywall-like cookie banner has taken hold…

Networking and Internet Architecture · Computer Science 2023-10-03 Ali Rasaii , Devashish Gosain , Oliver Gasser

Facebook applications are one of the reasons for Facebook attractiveness. Unfortunately, numerous users are not aware of the fact that many malicious Facebook applications exist. To educate users, to raise users' awareness and to improve…

Social and Information Networks · Computer Science 2013-09-17 Dima Kagan , Michael Fire , Aviad Elyashar , Yuval Elovici

Third-party web tracking is a common, and broadly used technique on the Web. Almost every step of users' is tracked, analyzed, and later used in different use cases (e.g., online advertisement). Different defense mechanisms have emerged to…

Cryptography and Security · Computer Science 2022-02-11 Nurullah Demir , Daniel Theis , Tobias Urban , Norbert Pohlmann

Digital fingerprints have brought great convenience and benefits to many online businesses. However, they pose a significant threat to the privacy and security of ordinary users. In this paper, we investigate the effectiveness of current…

Cryptography and Security · Computer Science 2025-02-21 Kaitong Lin , Huazhu Cao , Amin Milani Fard

The FIDO2 protocol aims to strengthen or replace password authentication using public-key cryptography. FIDO2 has primarily focused on defending against attacks from afar by remote attackers that compromise a password or attempt to phish…

Cryptography and Security · Computer Science 2023-08-08 Tarun Kumar Yadav , Kent Seamons

In response to the ePrivacy Directive and the consent requirements introduced by the GDPR, websites began deploying consent banners to obtain user permission for data collection and processing. However, due to shared third-party services…

Networking and Internet Architecture · Computer Science 2025-07-21 Ali Rasaii , Ha Dao , Anja Feldmann , Mohammadmahdi Javid , Oliver Gasser , Devashish Gosain

Online tracking has become of increasing concern in recent years, however our understanding of its extent to date has been limited to snapshots from web crawls. Previous at-tempts to measure the tracking ecosystem, have been done using…

Computers and Society · Computer Science 2020-07-07 Arjaldo Karaj , Sam Macbeth , Rémi Berson , Josep M. Pujol

The recently introduced General Data Protection Regulation (GDPR) requires that when obtaining information online that could be used to identify individuals, their consents must be obtained. Among other things, this affects many common…

Cryptography and Security · Computer Science 2019-05-06 Xuehui Hu , Nishanth Sastry

This articles surveys the existing literature on the methods currently used by web services to track the user online as well as their purposes, implications, and possible user's defenses. A significant majority of reviewed articles and web…

Computers and Society · Computer Science 2015-07-29 Tomasz Bujlow , Valentín Carela-Español , Josep Solé-Pareta , Pere Barlet-Ros

Web applications are becoming truly pervasive in all kinds of business models and organizations. Today, most critical systems such as those related to health care, banking, or even emergency response, are relying on these applications. They…

Cryptography and Security · Computer Science 2009-06-01 Joaquin Garcia-Alfaro , Guillermo Navarro-Arribas

Backdoor Malware are installed by an attacker on the victim's server(s) for authorized access. A customized backdoor is weaponized to execute unauthorized system, database and application commands to access the user credentials and…

Cryptography and Security · Computer Science 2025-02-07 Anthony Cheuk Tung Lai , Vitaly Kamluk , Alan Ho , Ping Fan Ke , Byron Wai

The use of TLS proxies to intercept encrypted traffic is controversial since the same mechanism can be used for both benevolent purposes, such as protecting against malware, and for malicious purposes, such as identity theft or warrantless…

Cryptography and Security · Computer Science 2015-05-29 Mark O'Neill , Scott Ruoti , Kent Seamons , Daniel Zappala

The Web is a tangled mass of interconnected services, where websites import a range of external resources from various third-party domains. However, the latter can further load resources hosted on other domains. For each website, this…

Cryptography and Security · Computer Science 2019-02-19 Muhammad Ikram , Rahat Masood , Gareth Tyson , Mohamed Ali Kaafar , Noha Loizon , Roya Ensafi

Current best practices heavily control user permissions on network systems. This effectively mitigates many insider threats regarding the collection and exfiltration of data. Many methods of covert communication involve crafting custom…

Cryptography and Security · Computer Science 2010-04-27 Kenton Born

Online tracking is a whack-a-mole game between trackers who build and monetize behavioral user profiles through intrusive data collection, and anti-tracking mechanisms, deployed as a browser extension, built-in to the browser, or as a DNS…

Cryptography and Security · Computer Science 2021-03-08 Yana Dimova , Gunes Acar , Lukasz Olejnik , Wouter Joosen , Tom Van Goethem