Presentation is loading. Please wait.

Presentation is loading. Please wait.

I STILL KNOW WHAT YOU VISITED LAST SUMMER User Interaction And Side Channel Attacks On Browser History Zachary Weinberg Eric Y. Chen Pavithra Ramesh Jayaraman.

Published byShanon Stevens Modified over 9 years ago

Similar presentations

Presentation on theme: "I STILL KNOW WHAT YOU VISITED LAST SUMMER User Interaction And Side Channel Attacks On Browser History Zachary Weinberg Eric Y. Chen Pavithra Ramesh Jayaraman."— Presentation transcript:

1 I STILL KNOW WHAT YOU VISITED LAST SUMMER User Interaction And Side Channel Attacks On Browser History Zachary Weinberg Eric Y. Chen Pavithra Ramesh Jayaraman Collin Jackson IEEE Symposium on Security and Privacy, May 2011

2 Introduction : History Sniffing  Unintended consequence of combination of three independently desirable features  Visited-link indication to the user  CSS control of all aspects of page appearance  JavaScript monitoring of page rendering

3 How can history sniffing be used?  Benign:  Websites could use history sniffing to determine whether their users have visited known phishing sites.  Websites could seed visitors’ history with URLs made up for the purpose, and use the URLs to re-identify their visitors.  Malicious:  Track visitors across sites for advertising purpose, determining whether they also visit a site’s competitors.  Attackers can construct more targeted phishing pages, by impersonating only sites that a particular victim is known to visit

4 Automated attacks

5 Direct Sniffing  Javascript checks link colour through Document Object Model (DOM)  DOM uses “computed style” of HTML element to collect CSS properties  Malicious site can create hyperlinks for some sites and can then check if those links have indeed been visited by user

6 Indirect Sniffing  Make visited and unvisited links take different amounts of space, which causes unrelated elements on the page to move; inspect the positions of those other elements.  Make visited and unvisited links cause different images to load.

7 Side Channel Attacks  Timing attacks  Attacker can make the page take longer to lay out if a link is visited than if it is unvisited

8 Defense against History Sniffing  L. David Baron, 2010  Make getComputedStyle act as though all links are unvisited  Request all images mentioned in CSS at once  Limit the CSS properties that can be used to style visited links to color, background-color, border- color, outline-color, column-rule-color, fill, and stroke

9 Interactive Attacks

10 Word CAPTCHA  Each word is a hyperlink to an URL that the attacker wishes to probe  If unvisited, it is drawn in the same color as the background

11 Character CAPTCHA  Seven-segment LCD symbols  Every letter represents 3 URLs

12 Chessboard Puzzle  Each square contains a URL  Only the pawns corresponding to visited sites are made visible

13 Pattern Matching Puzzle

14 Success Rate

15 Conclusion  Automated history sniffing attacks have successfully been blocked by Baron’s solution  Interactive attacks cannot be blocked

16 References  L. D. Baron. (2002) :visited support allows queries into global history. Mozilla bug 147777.  D. Jang, R. Jhala, S. Lerner, and H. Shacham, “An Empirical Study of Privacy-Violating Information Flows in JavaScript Web Applications,” in ACM Conference on Computer and Communications Security (CCS), 2010

Download ppt "I STILL KNOW WHAT YOU VISITED LAST SUMMER User Interaction And Side Channel Attacks On Browser History Zachary Weinberg Eric Y. Chen Pavithra Ramesh Jayaraman."

Similar presentations

Protecting Browser State from Web Privacy Attacks Collin Jackson, Andrew Bortz, Dan Boneh, John Mitchell Stanford University.

Protecting Browser State from Web Privacy Attacks Collin Jackson, Andrew Bortz, Dan Boneh, John Mitchell Stanford University.
In this lecture, you will learn: ❑ How to link between pages of your site ❑ How to link to other sites ❑ How to structure the folders on your web site.

In this lecture, you will learn: ❑ How to link between pages of your site ❑ How to link to other sites ❑ How to structure the folders on your web site.
CSS cont. October 5, Unit 4. Padding We can add borders around the elements of our pages To increase the space between the content and the border, use.

CSS cont. October 5, Unit 4. Padding We can add borders around the elements of our pages To increase the space between the content and the border, use.
CSS BASICS. CSS Rules Components of a CSS Rule  Selector: Part of the rule that targets an element to be styled  Declaration: Two or more parts: a.

CSS BASICS. CSS Rules Components of a CSS Rule  Selector: Part of the rule that targets an element to be styled  Declaration: Two or more parts: a.
Lesson 12- Unit L Programming Web Pages with JavaScript.

Lesson 12- Unit L Programming Web Pages with JavaScript.
17 th ACM CCS (October, 2010).  Introduction  Threat Model  Cross-Origin CSS Attacks  Example Attacks  Defenses  Experiment  Related Work 2 A Presentation.

17 th ACM CCS (October, 2010).  Introduction  Threat Model  Cross-Origin CSS Attacks  Example Attacks  Defenses  Experiment  Related Work 2 A Presentation.
By Philipp Vogt, Florian Nentwich, Nenad Jovanovic, Engin Kirda, Christopher Kruegel, and Giovanni Vigna Network and Distributed System Security(NDSS ‘07)

By Philipp Vogt, Florian Nentwich, Nenad Jovanovic, Engin Kirda, Christopher Kruegel, and Giovanni Vigna Network and Distributed System Security(NDSS ‘07)
Zachary Weinberg Eric Y. Chen Pavithra Ramesh Jayaraman Collin Jackson Carnegie Mellon University I Still Know What You Visited Last Summer I Still Know.

Zachary Weinberg Eric Y. Chen Pavithra Ramesh Jayaraman Collin Jackson Carnegie Mellon University I Still Know What You Visited Last Summer I Still Know.
Context-Aware Phishing Attacks and Client-Side Defenses Collin Jackson Stanford University.

Context-Aware Phishing Attacks and Client-Side Defenses Collin Jackson Stanford University.
Web Accessibility Tests Using the Firefox Browser ACCESS to Postsecondary Education through Universal Design for Learning.

Web Accessibility Tests Using the Firefox Browser ACCESS to Postsecondary Education through Universal Design for Learning.
Web Privacy Topics Andy Zeigler Senior Program Manager, Internet Explorer Microsoft.

Web Privacy Topics Andy Zeigler Senior Program Manager, Internet Explorer Microsoft.
Chapter 9 Introduction to the Document Object Model (DOM) JavaScript, Third Edition.

Chapter 9 Introduction to the Document Object Model (DOM) JavaScript, Third Edition.
Chapter 2 Introduction to HTML5 Internet & World Wide Web How to Program, 5/e Copyright © Pearson, Inc. 2013. All Rights Reserved.

Chapter 2 Introduction to HTML5 Internet & World Wide Web How to Program, 5/e Copyright © Pearson, Inc All Rights Reserved.
Web Design Basic Concepts.

Web Design Basic Concepts.
IMAGES Controlling size of images in CSS Aligning images in CSS Adding background images.

IMAGES Controlling size of images in CSS Aligning images in CSS Adding background images.
© 2011 Delmar, Cengage Learning Chapter 2 Developing a Web Page.

© 2011 Delmar, Cengage Learning Chapter 2 Developing a Web Page.
INTRODUCTION TO DHTML. TOPICS TO BE DISCUSSED……….  Introduction Introduction  UsesUses  ComponentsComponents  Difference between HTML and DHTMLDifference.

INTRODUCTION TO DHTML. TOPICS TO BE DISCUSSED……….  Introduction Introduction  UsesUses  ComponentsComponents  Difference between HTML and DHTMLDifference.
Introduction to Interactive Media 06: Text: Static Interactive Media Component.

Introduction to Interactive Media 06: Text: Static Interactive Media Component.
Prevent Cross-Site Scripting (XSS) attack

Prevent Cross-Site Scripting (XSS) attack
Dynamic Web Pages (Flash, JavaScript)

Dynamic Web Pages (Flash, JavaScript)

Similar presentations

Ads by Google