Get 20M+ Full-Text Papers For Less Than $1.50/day. Start a 14-Day Trial for You or Your Team.

Learn More →

Every Move You Make: Exploring Practical Issues in Smartphone Motion Sensor Fingerprinting and Countermeasures

Every Move You Make: Exploring Practical Issues in Smartphone Motion Sensor Fingerprinting and... AbstractThe ability to track users’ activities across different websites and visits is a key tool in advertising and surveillance. The HTML5 DeviceMotion interface creates a new opportunity for such tracking via fingerprinting of smartphone motion sensors. We study the feasibility of carrying out such fingerprinting under real-world constraints and on a large scale. In particular, we collect measurements from several hundred users under realistic scenarios and show that the state-of-the-art techniques provide very low accuracy in these settings. We then improve fingerprinting accuracy by changing the classifier as well as incorporating auxiliary information. We also show how to perform fingerprinting in an open-world scenario where one must distinguish between known and previously unseen users.We next consider the problem of developing fingerprinting countermeasures; we evaluate the usability of a previously proposed obfuscation technique and a newly developed quantization technique via a large-scale user study. We find that both techniques are able to drastically reduce fingerprinting accuracy without significantly impacting the utility of the sensors in web applications. http://www.deepdyve.com/assets/images/DeepDyve-Logo-lg.png Proceedings on Privacy Enhancing Technologies de Gruyter

Every Move You Make: Exploring Practical Issues in Smartphone Motion Sensor Fingerprinting and Countermeasures

Download PDF
21 pages

Loading next page...
 
/lp/de-gruyter/every-move-you-make-exploring-practical-issues-in-smartphone-motion-cVDLptHYfR
Publisher
de Gruyter
Copyright
© 2018 Anupam Das et al., published by De Gruyter Open
ISSN
2299-0984
eISSN
2299-0984
DOI
10.1515/popets-2018-0005
Publisher site
See Article on Publisher Site

Abstract

AbstractThe ability to track users’ activities across different websites and visits is a key tool in advertising and surveillance. The HTML5 DeviceMotion interface creates a new opportunity for such tracking via fingerprinting of smartphone motion sensors. We study the feasibility of carrying out such fingerprinting under real-world constraints and on a large scale. In particular, we collect measurements from several hundred users under realistic scenarios and show that the state-of-the-art techniques provide very low accuracy in these settings. We then improve fingerprinting accuracy by changing the classifier as well as incorporating auxiliary information. We also show how to perform fingerprinting in an open-world scenario where one must distinguish between known and previously unseen users.We next consider the problem of developing fingerprinting countermeasures; we evaluate the usability of a previously proposed obfuscation technique and a newly developed quantization technique via a large-scale user study. We find that both techniques are able to drastically reduce fingerprinting accuracy without significantly impacting the utility of the sensors in web applications.

Journal

Proceedings on Privacy Enhancing Technologiesde Gruyter

Published: Jan 1, 2018

References

  • Cellular better but foes still lurk
    Riezenman
  • Beauty and the Beast : Diverting modern web browsers to build unique browser fingerprints InProceedings of the th on Privacy pages
    Pierre Laperdrix
  • a free network mapping and security scanning tool http nmap org
    Gordon Lyon
  • and Sicker Passive Data Layer Wireless Device Fingerprinting InProceedings of the th Conference on
    Jason Franklin
  • Das Nikita Tracking Mobile Web Users Through Motion Attacks Defenses InProceedings of the rd Annual Network and Distributed System
    Anupam
  • Fingerprinting Mobile Devices Using Personalized Proceedings on
    Andreas Kurtz
  • Conditional likelihood maximisation unifying framework for information theoretic feature selection The
    Brown
  • We Spend More Time On Smartphones Than Traditional PCs http www ibtimes com we spend more time smartphones traditional pcs nielsen
    Nielsen
  • Apple places kill date on apps that use UDID device identifiers http www zdnet com article apple places killdate on apps that use udid device identifiers
  • Why Johnny Can t Browse in On the Uniqueness of Web Browsing Patterns In th Workshop on Hot Topics in Privacy
    Lukasz Olejnik
  • Tin Kam Jonathan Decision combination in multiple classifier systems transactions on pattern analysis and machine intelligence
    Ho
  • Davide Marc Thorsten and Giorgio Giacinto On the Robustness of Mobile Device Fingerprinting : Can Mobile Users Escape Modern Web - Tracking Mechanisms ? InProceedings of the st Computer Security Applications Conference pages
    Thomas Hupperich
  • sklearn ensemble VotingClassifier http scikit learn org stable modules generated sklearn ensemble VotingClassifier html
  • project http ofirarkin wordpress com xprobe
    Fyodor Yarochkin
  • We Spend More Time On Smartphones Than Traditional PCs http www ibtimes com we spend more time smartphones traditional pcs nielsen
    Nielsen
  • Remote Physical Device Fingerprinting Transaction on Dependable Secure
    Tadayoshi Kohno
  • Cellular better but foes still lurk
    Riezenman
  • Android TelephonyManager http developer android com reference android telephony TelephonyManager html getDeviceId
  • Davide Marc Thorsten and Giorgio Giacinto On the Robustness of Mobile Device Fingerprinting : Can Mobile Users Escape Modern Web - Tracking Mechanisms ? InProceedings of the st Computer Security Applications Conference pages
    Thomas Hupperich
  • Claudia The leaking battery privacy analysis of the HTML Battery Status API Cryptology ePrint Archive Report http eprint iacr org
    Lukasz Olejnik
  • Mobil Report http www ella net pdfs comScore US Mobile App Report pdf
  • Fingerprinting Mobile Devices Using Personalized Proceedings on
    Andreas Kurtz
  • Amazon Mechanical https www mturk com mturk welcome
    Turk
  • Mobile apps overtake PC Internet usage in http money cnn com technology mobile mobileapps internet
  • Claudia The Web never forgets : Persistent tracking mechanisms in the wild InProceedings of the st Conference on Computer and Communications pages
    Gunes Acar
  • Giovanni You are what you include : large - scale evaluation of remote javascript inclusions InProceedings of the th SIGSAC conference on Computer and Communications pages
    Nick Nikiforakis
  • de sur les élections au scrutin de l académie royale des
    Jean Charles
  • Apple places kill date on apps that use UDID device identifiers http www zdnet com article apple places killdate on apps that use udid device identifiers
  • Acoustic Fingerprinting Revisited : Generate Stable Device ID Stealthily with Inaudible Sound InProceedings of the st Conference on Computer and Communications pages
    Zhou
  • Estimation and removal of clock skew from network delay measurements InProceedings of the th International Conference on pages
    Moon
  • a free network mapping and security scanning tool http nmap org
    Gordon Lyon
  • project http ofirarkin wordpress com xprobe
    Fyodor Yarochkin
  • Amazon Mechanical https www mturk com mturk welcome
    Turk
  • Remote Physical Device Fingerprinting Transaction on Dependable Secure
    Tadayoshi Kohno
  • Giovanni You are what you include : large - scale evaluation of remote javascript inclusions InProceedings of the th SIGSAC conference on Computer and Communications pages
    Nick Nikiforakis
  • Deceiving with Little Lies of the th International Conference on WWW pages
    Nick Nikiforakis
  • Deceiving with Little Lies of the th International Conference on WWW pages
    Nick Nikiforakis
  • The theory of committees and elections
    Duncan Black
  • Estimation and removal of clock skew from network delay measurements InProceedings of the th International Conference on pages
    Moon
  • Percentage of all global web pages served to mobile phones from to http www statista com statistics global mobile phone website traffic share
  • Rob and Securing Wireless Systems via Lower Layer InProceedings of the th ACM Workshop on Wireless pages
    Zang Li
  • The theory of committees and elections
    Duncan Black
  • Rob and Securing Wireless Systems via Lower Layer InProceedings of the th ACM Workshop on Wireless pages
    Zang Li
  • Mobile Device Identification via Sensor Fingerprinting abs urlhttp arxiv org abs
    Hristo Bojinov
  • Das Nikita Exploring Ways To Mitigate Sensor - Based Smartphone Fingerprinting
    Anupam
  • Imperfections of Accelerometers Make Smartphones of the st Annual Network and Distributed System
    Sanorita Dey
  • Mobil Report http www ella net pdfs comScore US Mobile App Report pdf
  • and Sicker Passive Data Layer Wireless Device Fingerprinting InProceedings of the th Conference on
    Jason Franklin
  • Das Nikita Do You Hear What Hear Fingerprinting Smart Devices Through Embedded Acoustic Components InProceedings of the st SIGSAC Conference on Computer and Communications pages
    Anupam
  • de sur les élections au scrutin de l académie royale des
    Jean Charles
  • Android TelephonyManager http developer android com reference android telephony TelephonyManager html getDeviceId
  • Das Nikita Tracking Mobile Web Users Through Motion Attacks Defenses InProceedings of the rd Annual Network and Distributed System
    Anupam
  • Claudia The leaking battery privacy analysis of the HTML Battery Status API Cryptology ePrint Archive Report http eprint iacr org
    Lukasz Olejnik
  • sklearn ensemble VotingClassifier http scikit learn org stable modules generated sklearn ensemble VotingClassifier html
  • Percentage of all global web pages served to mobile phones from to http www statista com statistics global mobile phone website traffic share
  • Acoustic Fingerprinting Revisited : Generate Stable Device ID Stealthily with Inaudible Sound InProceedings of the st Conference on Computer and Communications pages
    Zhou
  • Beauty and the Beast : Diverting modern web browsers to build unique browser fingerprints InProceedings of the th on Privacy pages
    Pierre Laperdrix
  • Tin Kam Jonathan Decision combination in multiple classifier systems transactions on pattern analysis and machine intelligence
    Ho
  • Claudia The Web never forgets : Persistent tracking mechanisms in the wild InProceedings of the st Conference on Computer and Communications pages
    Gunes Acar
  • Robust Location Distinction Using Temporal Link Signatures InProceedings of the th Annual ACM International Conference on Mobile pages
    Neal Patwari
  • Mobile Device Identification via Sensor Fingerprinting abs urlhttp arxiv org abs
    Hristo Bojinov
  • Robust Location Distinction Using Temporal Link Signatures InProceedings of the th Annual ACM International Conference on Mobile pages
    Neal Patwari
  • Why Johnny Can t Browse in On the Uniqueness of Web Browsing Patterns In th Workshop on Hot Topics in Privacy
    Lukasz Olejnik
  • Imperfections of Accelerometers Make Smartphones of the st Annual Network and Distributed System
    Sanorita Dey
  • Das Nikita Exploring Ways To Mitigate Sensor - Based Smartphone Fingerprinting
    Anupam
  • Conditional likelihood maximisation unifying framework for information theoretic feature selection The
    Brown
  • Mobile apps overtake PC Internet usage in http money cnn com technology mobile mobileapps internet
  • Das Nikita Do You Hear What Hear Fingerprinting Smart Devices Through Embedded Acoustic Components InProceedings of the st SIGSAC Conference on Computer and Communications pages
    Anupam