Abstract
We describe a novel user tracking technique that is based on assigning statistically unique DNS records per user. This new tracking technique is unique in being able to distinguish between machines that have identical hardware and software, and track users even if they use “privacy mode” browsing, or use multiple browsers (on the same machine). The technique overcomes issues related to the caching of DNS answers in resolvers, and utilizes per-device caching of DNS answers at the client. We experimentally demonstrate that it covers the technologies used by a very large fraction of Internet users (in terms of browsers, operating systems, and DNS resolution platforms). Our technique can track users for up to a day (typically), and therefore works best when combined with other, narrower yet longer-lived techniques such as regular cookies - we briefly explain how to combine such techniques. We suggest mitigations to this tracking technique but note that it is not easily mitigated. There are possible workarounds, yet these are not without setup overhead, performance overhead or convenience overhead. A complete mitigation requires software modifications in both browsers and resolver software.
Original language | English |
---|---|
Title of host publication | 26th Annual Network and Distributed System Security Symposium, NDSS 2019 |
Publisher | The Internet Society |
ISBN (Electronic) | 189156255X, 9781891562556 |
DOIs | |
State | Published - 2019 |
Externally published | Yes |
Event | 26th Annual Network and Distributed System Security Symposium, NDSS 2019 - San Diego, United States Duration: 24 Feb 2019 → 27 Feb 2019 |
Publication series
Name | 26th Annual Network and Distributed System Security Symposium, NDSS 2019 |
---|
Conference
Conference | 26th Annual Network and Distributed System Security Symposium, NDSS 2019 |
---|---|
Country/Territory | United States |
City | San Diego |
Period | 24/02/19 → 27/02/19 |
Bibliographical note
Publisher Copyright:© NDSS 2019.All rights reserved.