Tracking Users on the Internet with Behavioral Patterns: Evaluation of Its Practical Feasibility

Abstract : Traditionally, service providers, who want to track the activities of Internet users, rely on explicit tracking techniques like HTTP cookies. From a privacy perspective behavior-based tracking is even more dangerous, because it allows service providers to track users passively, i. e., without cookies. In this case multiple sessions of a user are linked by exploiting characteristic patterns mined from network traffic.In this paper we study the feasibility of behavior-based tracking in a real-world setting, which is unknown so far. In principle, behavior-based tracking can be carried out by any attacker that can observe the activities of users on the Internet. We design and implement a behavior-based tracking technique that consists of a Naive Bayes classifier supported by a cosine similarity decision engine. We evaluate our technique using a large-scale dataset that contains all queries received by a DNS resolver that is used by more than 2100 concurrent users on average per day. Our technique is able to correctly link 88.2 % of the surfing sessions on a day-to-day basis. We also discuss various countermeasures that reduce the effectiveness of our technique.
Document type :
Conference papers
Dimitris Gritzalis; Steven Furnell; Marianthi Theoharidou. 27th Information Security and Privacy Conference (SEC), Jun 2012, Heraklion, Crete, Greece. Springer, IFIP Advances in Information and Communication Technology, AICT-376, pp.235-248, 2012, Information Security and Privacy Research. 〈10.1007/978-3-642-30436-1_20〉
Liste complète des métadonnées

Cited literature [29 references]  Display  Hide  Download

https://hal.inria.fr/hal-01518230
Contributor : Hal Ifip <>
Submitted on : Thursday, May 4, 2017 - 1:45:26 PM
Last modification on : Thursday, May 4, 2017 - 2:53:54 PM
Document(s) archivé(s) le : Saturday, August 5, 2017 - 1:20:55 PM

File

978-3-642-30436-1_20_Chapter.p...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Christian Banse, Dominik Herrmann, Hannes Federrath. Tracking Users on the Internet with Behavioral Patterns: Evaluation of Its Practical Feasibility. Dimitris Gritzalis; Steven Furnell; Marianthi Theoharidou. 27th Information Security and Privacy Conference (SEC), Jun 2012, Heraklion, Crete, Greece. Springer, IFIP Advances in Information and Communication Technology, AICT-376, pp.235-248, 2012, Information Security and Privacy Research. 〈10.1007/978-3-642-30436-1_20〉. 〈hal-01518230〉

Share

Metrics

Record views

75

Document downloads

23