• DocumentCode
    3409961
  • Title

    Zombie-cookies: Case studies and mitigation

  • Author

    Sorensen, Ove

  • Author_Institution
    Dept. of Comput. Sci., Christian-Albrechts-Univ. zu Kiel, Kiel, Germany
  • fYear
    2013
  • fDate
    9-12 Dec. 2013
  • Firstpage
    321
  • Lastpage
    326
  • Abstract
    Putting the user in charge of their online identity is a necessary precondition for privacy on the web. This requires the ability to manage identifying information that remote parties store in data repositories on the user´s device. We performed a crawl of thousands of popular websites with the intention of assessing the prevalence of various problematic patterns of clientside data storage. The focus of this paper is on techniques that make use of the browser cache, especially when they impede active identity management by the user. From these results, we derive a novel privacy-enhancing policy for client-side data storage - self-destructing identifiers - improving the current defacto standard. This policy has already seen some adoption in practice in the form of a Firefox add-on that we developed as a proof of concept.
  • Keywords
    Web sites; data privacy; Firefox add-on; active identity management; browser cache; clientside data storage; data repositories; novel privacy-enhancing policy; online identity; popular Websites; self-destructing identifiers; zombie-cookies; Uniform resource locators; Cache; Cookies; Privacy; Tracking;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Internet Technology and Secured Transactions (ICITST), 2013 8th International Conference for
  • Conference_Location
    London
  • Type

    conf

  • DOI
    10.1109/ICITST.2013.6750214
  • Filename
    6750214
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3409961