between ad exchanges
play

Between Ad Exchanges Using Retargeted Ads Muhammad Ahmad Bashir , - PowerPoint PPT Presentation

Mar 17, 2023 •301 likes •906 views

Tracing Information Flows Between Ad Exchanges Using Retargeted Ads Muhammad Ahmad Bashir , Sajjad Arshad, William Robertson, Christo Wilson Northeastern University Your Privacy Footprint 2 Your Privacy Footprint 2 Your Privacy Footprint 2

  1. Tracing Information Flows Between Ad Exchanges Using Retargeted Ads Muhammad Ahmad Bashir , Sajjad Arshad, William Robertson, Christo Wilson Northeastern University

  2. Your Privacy Footprint 2

  3. Your Privacy Footprint 2

  4. Your Privacy Footprint 2

  5. Your Privacy Footprint 2

  6. Your Privacy Footprint 2

  7. Your Privacy Footprint 2

  8. Real Time Bidding • RTB brings more flexibility in the ad ecosystem. • Ad request managed by an Ad Exchange which holds an auction. • Advertisers bid on each ad impression. Cookie matching is a prerequisite. Advertiser Exchange • RTB spending to cross $20B by 2017 [1] . • 49% annual growth. • Will account for 80% of US Display Ad spending by 2022. [1] http://www.prnewswire.com/news-releases/new-idc-study-shows-real-time-bidding-rtb-display-ad- 3 spend-to-grow-worldwide-to-208-billion-by-2017-228061051.html

  9. Real Time Bidding (RTB) Advertisers User Ad Exchange Publisher GET, CNN’s Cookie GET, DoubleClick’s Cookie Solicit bids, DoubleClick’s Cookie Bid 4

  10. Real Time Bidding (RTB) Advertisers User Ad Exchange Publisher GET, CNN’s Cookie GET, DoubleClick’s Cookie Solicit bids, DoubleClick’s Cookie Bid GET, RightMedia’s Cookie Advertisement 4

  11. Real Time Bidding (RTB) Advertisers User Ad Exchange Publisher GET, CNN’s Cookie Advertisers cannot read their cookie! GET, DoubleClick’s Cookie Solicit bids, DoubleClick’s Cookie Bid GET, RightMedia’s Cookie Advertisement 4

  12. Cookie Matching Key problem: Advertisers cannot read their cookies in the RTB auction • How can they submit reasonable bids if they cannot identify the user? Solution: cookie matching • Also known as cookie synching • Process of linking the identifiers used by two ad exchanges GET, Cookie=12345 301 Redirect, Location=http://criteo.com/?dblclk_id=12345 GET ?dblclk_id=12345, Cookie=ABCDE 5

  13. Cookie Matching Key problem: Advertisers cannot read their cookies in the RTB auction • How can they submit reasonable bids if they cannot identify the user? Solution: cookie matching • Also known as cookie synching • Process of linking the identifiers used by two ad exchanges GET, Cookie=12345 301 Redirect, Location=http://criteo.com/?dblclk_id=12345 GET ?dblclk_id=12345, Cookie=ABCDE 5

  14. Prior Work • Several studies have examined cookie matching • Acar et al. found hundreds of domains passing identifiers to each other • Olejnik et al. found 125 exchanges matching cookies • Falahrastegar et al. analyzed clusters of exchanges that share the exact same cookies • These studies rely on studying HTTP requests/responses. 6

  15. Challenge 1: Server Side Matching Criteo observes the user. (IP: 207.91.160.7) 1) RightMedia observes the user. (IP: 207.91.160.7) 2) Behind the scene, RightMedia and Criteo sync up. (IP: 207.91.160.7) 7

  16. Challenge 2: Obfuscation amazon.com dbclk.js GET %^$ck#&93#&, Cookie=XYZYX 8

  17. Challenge 2: Obfuscation amazon.com dbclk.js GET %^$ck#&93#&, Cookie=XYZYX 8

  18. Challenge 2: Obfuscation amazon.com dbclk.js GET %^$ck#&93#&, Cookie=XYZYX 8

  19. Goal Develop a method to identify information flows (cookie matching) between ad exchanges • Mechanism agnostic: resilient to obfuscation • Platform agnostic: detect sharing on the client- and server-side ? 9

  20. Key Insight: Use Retargeted Ads Retargeted ads are the most highly targeted form of online ads $15.99 Key insight: because retargets are so specific, they can be used to conduct controlled experiments • Information must be shared between ad exchanges to serve retargeted ads 10

  21. Contributions 1. Novel methodology for identifying information flows between ad exchanges 2. Demonstrate the impact of ad network obfuscation in practice • 31% of cookie matching partners cannot be identified using heuristics 3. Develop a method to categorize information sharing relationships 4. Use graph analysis to infer the roles of actors in the ad ecosystem 11

  22. Contributions 1. Novel methodology for identifying information flows between ad exchanges 2. Demonstrate the impact of ad network obfuscation in practice • 31% of cookie matching partners cannot be identified using heuristics 3. Develop a method to categorize information sharing relationships 4. Use graph analysis to infer the roles of actors in the ad ecosystem 11

  23. Data Collection Classifying Ad Network Flows Results 12

  24. Using Retargets as an Experimental Tool Key observation: retargets are only served under very specific circumstances Advertiser observes the user at a shop 1) Advertiser and the exchange must have matched cookies 2) This implies a causal flow of information from Exchange  Advertiser 13

  25. Data Collection Overview Visit Persona Visit Publishers Single Persona 150 Publishers 10 websites/persona 15 pages/publisher 10 products/website Store Images, Inclusion Chains, HTTP requests/ responses 571,636 Images 14

  26. Data Collection Overview 90 Personas { Visit Persona Visit Publishers Single Persona 150 Publishers 10 websites/persona 15 pages/publisher 10 products/website Store Images, Inclusion Chains, HTTP requests/ responses Ad Detection Potential Targeted Ads Filter Images 31,850 571,636 which appeared Images in > 1 persona 14

  27. Data Collection Overview 90 Personas { Visit Persona Visit Publishers Single Persona 150 Publishers 10 websites/persona 15 pages/publisher 10 products/website Store Images, Inclusion Chains, HTTP requests/ responses Ad Detection Crowd Sourcing Potential Targeted Isolated Ads Retargeted Ads Filter Images 31,850 571,636 which appeared Images in > 1 persona 14

  28. Crowd Sourcing We used Amazon Mechanical Turk (AMT) to label 31,850 ads. • Total 1,142 Tasks. • 30 ads / Task. • 27 unlabeled. • 3 labeled by us. • 2 workers per ad. • $415 spent. 15

  29. Crowd Sourcing We used Amazon Mechanical Turk (AMT) to label 31,850 ads. • Total 1,142 Tasks. • 30 ads / Task. • 27 unlabeled. • 3 labeled by us. • 2 workers per ad. • $415 spent. 15

  30. Crowd Sourcing We used Amazon Mechanical Turk (AMT) to label 31,850 ads. • Total 1,142 Tasks. • 30 ads / Task. • 27 unlabeled. • 3 labeled by us. • 2 workers per ad. • $415 spent. 15

  31. Crowd Sourcing We used Amazon Mechanical Turk (AMT) to label 31,850 ads. • Total 1,142 Tasks. • 30 ads / Task. • 27 unlabeled. • 3 labeled by us. • 2 workers per ad. • $415 spent. 15

  32. Final Dataset 5,102 unique retargeted ads • From 281 distinct online retailers 35,448 publisher-side chains that served the retargets • We observed some retargets multiple times 16

  33. Data Collection Classifying Ad Network Flows Results 17

  34. A look at Publisher Chains Shopper-side chain Publisher-side chain Example • How does Criteo know to serve ad on BBC? • In this case it is pretty trivial. • Criteo observed us on the shopper. • Can we classify all such publisher-side chains? 18

  35. What is a Chain? 19

  36. What is a Chain? e a e a 19

  37. What is a Chain? e a e a a$ e .* ^pub 19

  38. Four Classifications Four possible ways for a retargeted ad to be served 1. Direct (Trivial) Matching 2. Cookie Matching 3. Indirect Matching 4. Latent (Server-side) Matching 20

  39. Four Classifications Four possible ways for a retargeted ad to be served 1. Direct (Trivial) Matching 2. Cookie Matching 3. Indirect Matching 4. Latent (Server-side) Matching 20

  40. 1) Direct (Trivial) Matching Shopper-side Publisher-side Example Rule ^shop .* a .*$ ^pub a$ a is the advertiser that serves the retarget 21

  41. 1) Direct (Trivial) Matching Shopper-side Publisher-side Example Rule ^shop .* a .*$ ^pub a$ a is the a must appear … but other advertiser that on the shopper- trackers may serves the side… also appear retarget 21

  42. 2) Cookie Matching Shopper-side Publisher-side Example Rule ^pub .* e a$ ^shop .* a .*$ e precedes a, which implies an RTB auction 22

  43. 2) Cookie Matching Shopper-side Publisher-side Example Rule ^pub .* e a$ ^shop .* a .*$ a must appear e precedes a, on the which implies an shopper-side RTB auction 22

  44. 2) Cookie Matching Shopper-side Anywhere Publisher-side Example Rule ^pub .* e a$ ^shop .* a .*$ ^* .* e a .*$ a must appear e precedes a, Transition e  a is where on the which implies an cookie match occurs shopper-side RTB auction 22

  45. 3) Latent (Server-side) Matching Shopper-side Publisher-side Example Rule ^shop ^pub .* e a$ [^ea]$ Neither e nor a appears on the shopper-side 23

  46. 3) Latent (Server-side) Matching Shopper-side Publisher-side Example Rule ^shop ^pub .* e a$ [^ea]$ Neither e nor a a must receive information from appears on the some shopper-side tracker shopper-side 23

  47. 3) Latent (Server-side) Matching Shopper-side Publisher-side Example Rule ^shop ^pub .* e a$ [^ea]$ Neither e nor a a must receive information from appears on the some shopper-side tracker shopper-side We find latent matches in practice! 23

  48. Data Collection Classifying Ad Network Flows Results 24

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

1031 Exchanges & Qualified Opportunity Zones Drew Emmert Colleen R. Fausz Ryan M.

1031 Exchanges & Qualified Opportunity Zones Drew Emmert Colleen R. Fausz Ryan M.

1031 Exchanges & Qualified Opportunity Zones Drew Emmert Colleen R. Fausz Ryan M. Whitaker Part 1: 1031 Exchanges Roadmap Overview of 1031 Exchanges History of 1031 Exchanges Benefits of 1031 Exchanges 1031 Exchange

775 views • 41 slides
1031 Like Kind Exchanges: Pursuing 1031 Like Kind Exchanges: Pursuing Opportunities in a

1031 Like Kind Exchanges: Pursuing 1031 Like Kind Exchanges: Pursuing Opportunities in a

Presenting a live 90 minute webinar with interactive Q&A 1031 Like Kind Exchanges: Pursuing 1031 Like Kind Exchanges: Pursuing Opportunities in a Rebounding Market Mastering Complex Tax Rules and Leveraging the New Net Investment Income

947 views • 78 slides
Healthcare Exchanges in Healthcare Exchanges in the Sky with Diamonds Lyman Sornberger Chief

Healthcare Exchanges in Healthcare Exchanges in the Sky with Diamonds Lyman Sornberger Chief

6/9/2014 Healthcare Exchanges in Healthcare Exchanges in the Sky with Diamonds Lyman Sornberger Chief Healthcare Strategy Officer New Jersey HFMA June 10, 2014 Agenda Affordable Care Act (ACA) Highlights Enrollment Assistance

195 views • 17 slides
United Nations Conference on Trade and Development (UNCTAD) 45 Partner Exchanges Listing over

United Nations Conference on Trade and Development (UNCTAD) 45 Partner Exchanges Listing over

Dr. Anthony Miller Co-coordinator, Sustainable Stock Exchanges Initiative Investment & Enterprise Division United Nations Conference on Trade and Development (UNCTAD) 45 Partner Exchanges Listing over 22,500 companies Named by Forbes US $40+

240 views • 19 slides
Possible Governance Framework for Open LightPath Exchanges (GOLEs) Open LightPath Exchanges

Possible Governance Framework for Open LightPath Exchanges (GOLEs) Open LightPath Exchanges

Possible Governance Framework for Open LightPath Exchanges (GOLEs) Open LightPath Exchanges (GOLEs) and Connecting Networks Bill.St.Arnaud@gmail.com February 9, 2011 February 9, 2011 Background Background Number of Open LightPath Exchange

497 views • 7 slides
Returns Optimization 101 Episode 5: Shifting away from Refunds Desire to Push Exchanges A lot

Returns Optimization 101 Episode 5: Shifting away from Refunds Desire to Push Exchanges A lot

Returns Optimization 101 Episode 5: Shifting away from Refunds Desire to Push Exchanges A lot of ecommerce retailers want less refunds and more exchanges Keeps cash in the company Potential for an up-sell Shopper still ends up with a

338 views • 15 slides
MProve: A Proof of Reserves Protocol for Monero Exchanges Arijit Dutta, Saravanan Vijayakumaran

MProve: A Proof of Reserves Protocol for Monero Exchanges Arijit Dutta, Saravanan Vijayakumaran

MProve: A Proof of Reserves Protocol for Monero Exchanges Arijit Dutta, Saravanan Vijayakumaran Department of Electrical Engineering Indian Institute of Technology Bombay IEEE S&B, Stockholm June 20, 2019 1 / 12 Cryptocurrency Exchanges

395 views • 12 slides
INTERNATIONAL EXCHANGES FOR STUDENTS Sarah Ward and Marion McLaren (International and Student

INTERNATIONAL EXCHANGES FOR STUDENTS Sarah Ward and Marion McLaren (International and Student

INTERNATIONAL EXCHANGES FOR STUDENTS Sarah Ward and Marion McLaren (International and Student Experience team) Academic Administration and Support Professor Jeffrey Sharkey Singapore international@rcs.ac.uk INTERNATIONAL EXCHANGES

577 views • 15 slides
Roger Schwartz rschwartz@nachc.org ACA established State Exchanges ACA established State

Roger Schwartz rschwartz@nachc.org ACA established State Exchanges ACA established State

Roger Schwartz rschwartz@nachc.org ACA established State Exchanges ACA established State Exchanges Functions Functions: Provide individuals and small business employees with access to enrollment in Qualified Health Plans

263 views • 15 slides
Interxion and Internet Exchanges Mike Hollands, Director Connectivity Segment October 14 th 2015

Interxion and Internet Exchanges Mike Hollands, Director Connectivity Segment October 14 th 2015

Interxion and Internet Exchanges Mike Hollands, Director Connectivity Segment October 14 th 2015 History 1994 1995 1996 1997 1998 1999 2000 2001 2002 2003 2004 2005 2006 2007 2008 2009 2 Internet Exchanges at Interxion

241 views • 12 slides
Netnod Spring Meeting Change of Role for Internet exchanges Caroline Puygrenier Director

Netnod Spring Meeting Change of Role for Internet exchanges Caroline Puygrenier Director

Netnod Spring Meeting Change of Role for Internet exchanges Caroline Puygrenier Director connectivity segment 16 th March 16 Content Change of roles of the Internet Exchanges Where Interxion see the trend going Public vs. Private peering

391 views • 7 slides
Verifiable Auctions for Online Ad Exchanges Sebastian Angel and Michael Walfish The University of

Verifiable Auctions for Online Ad Exchanges Sebastian Angel and Michael Walfish The University of

Verifiable Auctions for Online Ad Exchanges Sebastian Angel and Michael Walfish The University of Texas at Austin Tuesday, August 13, 13 Ad Exchanges allow real time selling and buying of ad space How did this ad get here? Tuesday, August 13,

696 views • 68 slides
Ab c The following is the text of an announcement released to the other stock exchanges on which

Ab c The following is the text of an announcement released to the other stock exchanges on which

Hong Kong Exchanges and Clearing Limited and The Stock Exchange of Hong Kong Limited take no responsibility for the contents of this document, make no representation as to its accuracy or completeness and expressly disclaim any liability

330 views • 8 slides
Ab c The following is the text of an announcement released to the other stock exchanges on which

Ab c The following is the text of an announcement released to the other stock exchanges on which

Hong Kong Exchanges and Clearing Limited and The Stock Exchange of Hong Kong Limited take no responsibility for the contents of this document, make no representation as to its accuracy or completeness and expressly disclaim any liability

355 views • 6 slides
A Brief History of Internet Exchanges Version 2.1 July, 2004 Bill Woodcock Packet Clearing

A Brief History of Internet Exchanges Version 2.1 July, 2004 Bill Woodcock Packet Clearing

A Brief History of Internet Exchanges Version 2.1 July, 2004 Bill Woodcock Packet Clearing House First Exchanges Metropolitan Access Experiment Metropolitan Area Ethernet Metropolitan Area Exchange WorldCom MAE-East Washington, D.C.

231 views • 12 slides
Common Knowledge in Email Exchanges Krzysztof R. Apt CWI, Amsterdam, the Netherlands ,

Common Knowledge in Email Exchanges Krzysztof R. Apt CWI, Amsterdam, the Netherlands ,

Common Knowledge in Email Exchanges Krzysztof R. Apt CWI, Amsterdam, the Netherlands , University of Amsterdam based on joint work with Floor Sietsma, CWI Common Knowledge in Email Exchanges p. 1/2 History: Common, Knowledge COMMON,

794 views • 41 slides
Q1 2020 Financial Results Investor Presentation April/May 2020 Safe harbor statement This

Q1 2020 Financial Results Investor Presentation April/May 2020 Safe harbor statement This

Q1 2020 Financial Results Investor Presentation April/May 2020 Safe harbor statement This presentation contains forward - looking statements that are based on our managements beliefs and assumptions and on information currently

559 views • 43 slides
Time skew analysis using web cookies Bj orgvin Ragnarsson 07-03-2013 Time skew analysis using

Time skew analysis using web cookies Bj orgvin Ragnarsson 07-03-2013 Time skew analysis using

Time skew analysis using web cookies Bj orgvin Ragnarsson 07-03-2013 Time skew analysis using web cookies 1 / 17 The problem Timestamps are important for forensics... ...but the timekeeper is unreliable How far off was the

445 views • 17 slides
Service Units Total Slots Used % Used 546 Troops

Service Units Total Slots Used % Used 546 Troops

Service Units Total Slots Used % Used 546 Troops Other 4 4 100.00 Stanly 180 126 70.00 5.5 average number booth per troop Cab 2 181 121 66.85 Pacesetters 192 121

581 views • 30 slides
Tiffany Morris Matthew Bradwisch Carly Alm Samples Chips Ahoy! Brand Great Value Brand

Tiffany Morris Matthew Bradwisch Carly Alm Samples Chips Ahoy! Brand Great Value Brand

Tiffany Morris Matthew Bradwisch Carly Alm Samples Chips Ahoy! Brand Great Value Brand Chewy Chewy Crunchy Crunchy Hypotheses Chips Ahoy! would be the preferred brand Normally preferred type would be the same

806 views • 29 slides
Kicking Down the Cross Domain Door Techniques for Cross Domain Exploitation Billy K Rios (BK) and

Kicking Down the Cross Domain Door Techniques for Cross Domain Exploitation Billy K Rios (BK) and

Kicking Down the Cross Domain Door Techniques for Cross Domain Exploitation Billy K Rios (BK) and Raghav Dube Tabbed Browsing Rich Content Mash-ups Cookies JSON Ajax Implication of Cross Domain Attacks Implication of Cross Domain Attacks

580 views • 31 slides
#WARM COOKIES: CIVIC ENGAGEMENT CAN BE FUN!!! PRESENTED BY Heidi Aggeler, Managing Director Evan

#WARM COOKIES: CIVIC ENGAGEMENT CAN BE FUN!!! PRESENTED BY Heidi Aggeler, Managing Director Evan

RMLUI #WHAT DO WE WANT? #WARM COOKIES: CIVIC ENGAGEMENT CAN BE FUN!!! PRESENTED BY Heidi Aggeler, Managing Director Evan Weissman, Founding Executive Director Jen Garner, Senior Consultant 1999 Broadway 1999 Broadway Suite 2200 Suite 2200

273 views • 25 slides
Access or re-use of PSI? A cookie if you get it right! Katleen Janssen ICRI K.U.Leuven

Access or re-use of PSI? A cookie if you get it right! Katleen Janssen ICRI K.U.Leuven

Access or re-use of PSI? A cookie if you get it right! Katleen Janssen ICRI K.U.Leuven IBBT Joep Crompvoets Public Management Institute, K.U.Leuven Back in the day... Freedom of information Sweden 1766, UN Assembly 1946, USA

476 views • 6 slides
Welcome to Manning Oaks University!!! Ava Sheffield Curriculum Support 1 Reading/Language Arts

Welcome to Manning Oaks University!!! Ava Sheffield Curriculum Support 1 Reading/Language Arts

Welcome to Manning Oaks University!!! Ava Sheffield Curriculum Support 1 Reading/Language Arts & Math CCGPS the standards define what all students are expected to know and be able Science & Social Studies - GPS to do, not how

876 views • 43 slides

More recommend