English
Related papers

Related papers: Least Privilege Access for Persistent Storage Mech…

200 papers

In the standard web browser programming model, third-party scripts included in an application execute with the same privilege as the application's own code. This leaves the application's confidential data vulnerable to theft and leakage by…

Cryptography and Security · Computer Science 2023-05-09 Abhishek Bichhawat , Vineet Rajani , Jinank Jain , Deepak Garg , Christian Hammer

Cookies maintain state across related web traffic. As such, cookies are commonly used for authentication by storing a user's session ID and replacing the need to re-enter credentials in subsequent traffic. These so-called ``session…

Cryptography and Security · Computer Science 2025-07-22 Liam Tyler , Ivan De Oliveira Nunes

As third-party cookies are being phased out or restricted by major browsers, first-party cookies are increasingly repurposed for tracking. Prior work has shown that third-party scripts embedded in the main frame can access and exfiltrate…

Cryptography and Security · Computer Science 2025-10-02 Pouneh Nikkhah Bahrami , Aurore Fass , Zubair Shafiq

While much current web privacy research focuses on browser fingerprinting, the boring fact is that the majority of current third-party web tracking is conducted using traditional, persistent-state identifiers. One possible explanation for…

Cryptography and Security · Computer Science 2020-11-04 Jordan Jueckstock , Peter Snyder , Shaown Sarker , Alexandros Kapravelos , Benjamin Livshits

People are becoming increasingly concerned with their online privacy, especially with how advertising companies track them across websites (a practice called cross-site tracking), as reconstructing a user's browser history can reveal…

Cryptography and Security · Computer Science 2023-11-22 Alisha Ukani

In response to the ePrivacy Directive and the consent requirements introduced by the GDPR, websites began deploying consent banners to obtain user permission for data collection and processing. However, due to shared third-party services…

Networking and Internet Architecture · Computer Science 2025-07-21 Ali Rasaii , Ha Dao , Anja Feldmann , Mohammadmahdi Javid , Oliver Gasser , Devashish Gosain

Browser fingerprinting is a relatively new method of uniquely identifying browsers that can be used to track web users. In some ways it is more privacy-threatening than tracking via cookies, as users have no direct control over it. A number…

Cryptography and Security · Computer Science 2019-05-24 Nasser Mohammed Al-Fannah , Wanpeng Li , Chris J Mitchell

Third-party web cookies are often used for privacy-invasive behavior tracking. Partly due to privacy concerns, browser vendors have started to block all third-party cookies in recent years. To understand the effects of such third-party…

Cryptography and Security · Computer Science 2024-11-06 Maxwell Lin , Shihan Lin , Helen Wu , Karen Wang , Xiaowei Yang

Third-party web tracking is a common, and broadly used technique on the Web. Almost every step of users' is tracked, analyzed, and later used in different use cases (e.g., online advertisement). Different defense mechanisms have emerged to…

Cryptography and Security · Computer Science 2022-02-11 Nurullah Demir , Daniel Theis , Tobias Urban , Norbert Pohlmann

We present a study of how local frames (i.e., iframes loading content like "about:blank") are mishandled by a wide range of popular Web security and privacy tools. As a result, users of these tools remain vulnerable to the very attack…

Cryptography and Security · Computer Science 2025-07-03 Alisha Ukani , Hamed Haddadi , Alex C. Snoeren , Peter Snyder

As third-party cookie blocking is becoming the norm in browsers, advertisers and trackers have started to use first-party cookies for tracking. We conduct a differential measurement study on 10K websites with third-party cookies allowed and…

Cryptography and Security · Computer Science 2023-11-28 Shaoor Munir , Sandra Siby , Umar Iqbal , Steven Englehardt , Zubair Shafiq , Carmela Troncoso

Browser extensions are third party programs, tightly integrated to browsers, where they execute with elevated privileges in order to provide users with additional functionalities. Unlike web applications, extensions are not subject to the…

Cryptography and Security · Computer Science 2019-01-14 Dolière Francis Somé

The privacy implications of third-party tracking is a well-studied problem. Recent research has shown that besides data aggregators and behavioral advertisers, online social networks also act as trackers via social widgets. Existing cookie…

Cryptography and Security · Computer Science 2015-06-15 Istemi Ekin Akkus , Nicholas Weaver

Third party tracking is the practice by which third parties recognize users accross different websites as they browse the web. Recent studies show that 90% of websites contain third party content that is tracking its users across the web.…

Cryptography and Security · Computer Science 2017-03-23 Dolière Francis Somé , Nataliia Bielova , Tamara Rezk

With the success of Web applications, most of our data is now stored on various third-party servers where they are processed to deliver personalized services. Naturally we must be authenticated to access this personal information, but the…

Cryptography and Security · Computer Science 2011-08-31 Vincent Toubiana , Vincent Verdot

Browser fingerprinting is an invasive and opaque stateless tracking technique. Browser vendors, academics, and standards bodies have long struggled to provide meaningful protections against browser fingerprinting that are both accurate and…

Cryptography and Security · Computer Science 2020-08-12 Umar Iqbal , Steven Englehardt , Zubair Shafiq

Web browsers provide the security foundation for our online experiences. Significant research has been done into the security of browsers themselves, but relatively little investigation has been done into how they interact with the…

Cryptography and Security · Computer Science 2025-04-25 Dolière Francis Somé , Moaz Airan , Zakir Durumeric , Cristian-Alexandru Staicu

The recently introduced General Data Protection Regulation (GDPR) requires that when obtaining information online that could be used to identify individuals, their consents must be obtained. Among other things, this affects many common…

Cryptography and Security · Computer Science 2019-05-06 Xuehui Hu , Nishanth Sastry

The Web is a tangled mass of interconnected services, where websites import a range of external resources from various third-party domains. However, the latter can further load resources hosted on other domains. For each website, this…

Cryptography and Security · Computer Science 2019-02-19 Muhammad Ikram , Rahat Masood , Gareth Tyson , Mohamed Ali Kaafar , Noha Loizon , Roya Ensafi

A website browser cookie is a small file created by a web server upon visitation, which is placed in the user's browser directory to enhance the user's experience. However, first and third-party cookies have become a significant threat to…

Computers and Society · Computer Science 2022-11-15 Matthew Wheeler , Suleiman Saka , Sanchari Das
‹ Prev 1 2 3 10 Next ›