picasso light weight device class fingerprinting for web
play

Picasso: Light-weight device class fingerprinting for web clients - PowerPoint PPT Presentation

Aug 29, 2022 •312 likes •641 views

Picasso: Light-weight device class fingerprinting for web clients Elie Bursztein , Artem Malyshev, Tadek Pietraszek, Kurt Thomas Title Interesting story here Subpoint g.co/research/protect Keeping online interactions meaningful

  1. Picasso: Light-weight device class fingerprinting for web clients Elie Bursztein , Artem Malyshev, Tadek Pietraszek, Kurt Thomas

  2. Title Interesting story here Subpoint g.co/research/protect

  3. Keeping online interactions meaningful g.co/research/protect

  4. Different interaction requires distinct level of trust Bank transfer Account recovery Interaction Impact Content creation Content like Content consumption Trust required g.co/research/protect

  5. Verification methods trade-off Phone call Human interaction SMS Hard captcha No captcha Picasso Trust g.co/research/protect

  6. Goals Remote device class attestation Allow to enforce quotas and help anomaly detection Proof of work Enforce that attacker will expend 20ms of iOS time per request g.co/research/protect

  7. Requirements Cross-platform and cross-language Any platform (Android, iOS) and any language (Javascript, SWIFT) Accurate browsers and OS discrimination Chrome OSX vs Safari OSX, Chrome Windows vs Chrome OSX Emulators detection Safari on iPhone vs Safari on an emulator g.co/research/protect

  8. Constraints No device modification Must run on off-the-shelf devices Fast and lightweight Can be downloaded/executed often even on low-end devices Tamper proof Code to be shipped to clients and potentially executed offline g.co/research/protect

  9. Mission Impossible? g.co/research/protect

  10. System overview

  11. Use the graphical stack as a physically unclonable function g.co/research/protect

  12. Principle Graphical instruction Graphical instruction Graphic Challenge id rendering Graphical instruction Image unique to device type Graphical instruction g.co/research/protect

  13. Graphical primitives used Quadratic curve Bezier curve Circle F Font g.co/research/protect

  14. Telling apart bots from devices g.co/research/protect

  15. Why Picasso? g.co/research/protect

  16. Evaluation

  17. Demo

  19. Is the graphical stack really a PUF? g.co/research/protect

  20. Browser difference heatmap Chrome vs Firefox Chrome vs Safari Firefox vs Safari g.co/research/protect

  21. Safari on iPhone vs Safari on an emulator Red imply pixels are differents g.co/research/protect

  22. Evaluation metrics Uniqueness Fraction of challenge response which are unique to a given device class Stability Number of distinct challenges response generated by a given class of device g.co/research/protect

  23. Stability illustrated Picasso Stability g.co/research/protect

  24. Uniqueness illustrated Picasso Uniqueness g.co/research/protect

  25. Uniqueness confusion matrix g.co/research/protect

  26. Chrome uniqueness confusion matrix g.co/research/protect

  27. Windows uniqueness confusion matrix g.co/research/protect

  28. Stability g.co/research/protect

  29. War story

  30. Brute-force attempts from EC2 via proxies g.co/research/protect

  31. Proxies geo-distribution g.co/research/protect

  32. Thanks g.co/research/protect

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

product presentation MENTOR 6 Light Less weight, zero limits At home in the B class and

product presentation MENTOR 6 Light Less weight, zero limits At home in the B class and

product presentation MENTOR 6 Light Less weight, zero limits At home in the B class and travelling the world the MENTOR 6 Light in size S is a hefty 850 grams lighter than its big brother, but offers the same ingenious new developments

508 views • 19 slides
Clock Around the Clock Time-Based Device Fingerprinting Iskander Sanchez-Rola, Igor Santos,

Clock Around the Clock Time-Based Device Fingerprinting Iskander Sanchez-Rola, Igor Santos,

Clock Around the Clock Time-Based Device Fingerprinting Iskander Sanchez-Rola, Igor Santos, Davide Balzarotti Device Fingerprinting Exploits different features to uniquely identify a machine. The entity interested in computing the fingerprint is

2.42k views • 62 slides
Picasso Sculpture Slide Commentary Slide 1: Biography Photo of Picasso Pablo Picasso is

Picasso Sculpture Slide Commentary Slide 1: Biography Photo of Picasso Pablo Picasso is

Picasso Sculpture Slide Commentary Slide 1: Biography Photo of Picasso Pablo Picasso is considered to be one of the greatest and most influential artists of the 20 th century. He is best known for his work as a painter, but he experimented

233 views • 4 slides
QuickGene-Mini480 1.Small and light-weight compact device 2.Processing 1 to 48 samples at the

QuickGene-Mini480 1.Small and light-weight compact device 2.Processing 1 to 48 samples at the

2019-nCoV RNA Extraction Product Solution QuickGene-Mini480 1.Small and light-weight compact device 2.Processing 1 to 48 samples at the same time 3. Easy isolation from various samples 4.Reasonably price 1 2019-nCoV RNA Extraction Product

467 views • 8 slides
Results from the PICASSO experiment Berta Beltran, University of Alberta (for the PICASSO

Results from the PICASSO experiment Berta Beltran, University of Alberta (for the PICASSO

Results from the PICASSO experiment Berta Beltran, University of Alberta (for the PICASSO collaboration) Outline PICASSO principle of detection. Experimental setup & Data taking. Data analysis and Results. Summary.

369 views • 22 slides
Social Fingerprinting Browser Id Proxy Piercing Device Id

Social Fingerprinting Browser Id Proxy Piercing Device Id

Email Verification Mobile Location Deep Location Site Velocity & Behaviour Social Fingerprinting Browser Id Proxy Piercing Device Id Domain Lookup VLR/HLR Lookup IP

511 views • 13 slides
Light Weight Deflectometer, Principles and Versability Content: 1. Introduction 2. Dynatest

Light Weight Deflectometer, Principles and Versability Content: 1. Introduction 2. Dynatest

1 Light Weight Deflectometer, Principles and Versability Content: 1. Introduction 2. Dynatest 3031 LWD 3. Field measurements 4. Conclusions NVF/BRA Symposium Oslo Feb. 13 and 14, 2008: Helge Mork, Light weight deflectometer (LWD) 2

893 views • 29 slides
Light- -weight Contour Tracking in weight Contour Tracking in Light Wireless Sensor Networks

Light- -weight Contour Tracking in weight Contour Tracking in Light Wireless Sensor Networks

Light- -weight Contour Tracking in weight Contour Tracking in Light Wireless Sensor Networks Wireless Sensor Networks Xianjin Zhu Rik Sarkar Jie Gao Joseph S. B. Mitchell INFOCOM 08 1 Motivation Motivation Sensor network: sense

417 views • 38 slides
Whos In Control of Your Control System? Device Fingerprinting for Cyber-Physical Systems David

Whos In Control of Your Control System? Device Fingerprinting for Cyber-Physical Systems David

Whos In Control of Your Control System? Device Fingerprinting for Cyber-Physical Systems David Formby , Preethi Srinivasan, Andrew Leonard, Jonathan Rogers, Raheem Beyah NDSS 2016 Presented by: Yi Zhang October 18 th , 2016 Cyber Physical

481 views • 20 slides
FPRandom: Randomizing core browser objects to break advanced device fingerprinting techniques

FPRandom: Randomizing core browser objects to break advanced device fingerprinting techniques

FPRandom: Randomizing core browser objects to break advanced device fingerprinting techniques Pierre Laperdrix, Benoit Baudry, Vikas Mishra Outline 1) What is fingerprint-based tracking? 2) Randomizing core browser objects a. Generating

245 views • 22 slides
Light Emitting Diodes (LEDs) Semiconductor device that very efficiently produces light as a

Light Emitting Diodes (LEDs) Semiconductor device that very efficiently produces light as a

Light Emitting Diodes (LEDs) Semiconductor device that very efficiently produces light as a line source Output of 3 LEDs With bandwidths of About 25 nm LED Packages Older Communications LED Fiber optic pig tail LED Radiation Patterns

660 views • 40 slides
LIGHT-TPS Super Light-Weight thermal protection system for space application FP7-SPACE-2013-1

LIGHT-TPS Super Light-Weight thermal protection system for space application FP7-SPACE-2013-1

LIGHT-TPS Super Light-Weight thermal protection system for space application FP7-SPACE-2013-1 GA N 607182 Kick-off Meeting 28-29 May 2014 Project Coordinator: Mara Parco TECNALIA Project Overview Duration: 01/12/2011 30/11/2014

417 views • 10 slides
Pablo Picasso according to wikipedia ... fauvism complimentary colours bold simplified

Pablo Picasso according to wikipedia ... fauvism complimentary colours bold simplified

The Fauvist Works of Pablo Picasso according to wikipedia ... fauvism complimentary colours bold simplified strong heavy abstracted textured brush strokes wide visible paintings of Marie-Thrse Walter by Pablo Picasso circa 1932

420 views • 19 slides
SUSTAINABILITY at the University of Miami In the Offices LIGHT-WEIGHT NO STYROFOAM NO USED

SUSTAINABILITY at the University of Miami In the Offices LIGHT-WEIGHT NO STYROFOAM NO USED

SUSTAINABILITY at the University of Miami In the Offices LIGHT-WEIGHT NO STYROFOAM NO USED TOWELS Apply now Empty your recycling desk bin into miami.edu/greenu the tall blue containers Waste that goes into Red Bags? In the Use RED

551 views • 3 slides
THE INFLUENCE OF MODERN ART Cubism Pablo Picasso started cubism through a series of

THE INFLUENCE OF MODERN ART Cubism Pablo Picasso started cubism through a series of

THE INFLUENCE OF MODERN ART Cubism Pablo Picasso started cubism through a series of explorations using elements of ancient Iberian and African tribal art. Pablo Picasso and Georges Braque shared an interest in geometry and simultaneous

642 views • 34 slides
SUSTAINABILITY at U Health In the Office LIGHT-WEIGHT NO STYROFOAM NO USED TOWELS Empty your

SUSTAINABILITY at U Health In the Office LIGHT-WEIGHT NO STYROFOAM NO USED TOWELS Empty your

SUSTAINABILITY at U Health In the Office LIGHT-WEIGHT NO STYROFOAM NO USED TOWELS Empty your recycling desk bin into the tall blue containers Waste that goes into Red Bags? In the Clinical Items dripping with or saturated with blood

61 views • 4 slides
Automatic Fingerprinting Of Vulnerable BLE IoT Devices With Static UUIDs From Mobile Apps Chaoshun

Automatic Fingerprinting Of Vulnerable BLE IoT Devices With Static UUIDs From Mobile Apps Chaoshun

Computer Security Laboratory Automatic Fingerprinting Of Vulnerable BLE IoT Devices With Static UUIDs From Mobile Apps Chaoshun Zuo, Haohuang Wen , Zhiqiang Lin, and Yinqian Zhang Department of Computer Science and Engineering The Ohio State

1.19k views • 73 slides
Fingerprinting Requirements for Increased Controls Licensees Chris Einberg, Senior Project

Fingerprinting Requirements for Increased Controls Licensees Chris Einberg, Senior Project

United States Nuclear Regulatory Commission Fingerprinting Requirements for Increased Controls Licensees Chris Einberg, Senior Project Manager Office of Federal and State Materials and Environmental Management Programs Tim Harris, Team Leader

729 views • 45 slides
Visualization for Biometric Evaluation Romain Giot <romain.giot@u-bordeaux.fr> Romain

Visualization for Biometric Evaluation Romain Giot <romain.giot@u-bordeaux.fr> Romain

Visualization for Biometric Evaluation Romain Giot <romain.giot@u-bordeaux.fr> Romain Giot <romain.giot@u-bordeaux.fr> Introduction Who am I ? Work place University of Bordeaux IUT Bordeaux Computer Science

910 views • 63 slides
Feature Selection in Website Fingerprinting Junhua Yan Advisor: Prof. Jasleen Kaur July 24,

Feature Selection in Website Fingerprinting Junhua Yan Advisor: Prof. Jasleen Kaur July 24,

Feature Selection in Website Fingerprinting Junhua Yan Advisor: Prof. Jasleen Kaur July 24, 2019 1/23 Website Fingerprinting Goal: determine the visited website by inspecting network traffic on client side client web Figure: Attacker

831 views • 59 slides
BIAS BIAS Biometric Identity Assurance Services 6 March 2009 Catherine Tilton W3C Workshop on

BIAS BIAS Biometric Identity Assurance Services 6 March 2009 Catherine Tilton W3C Workshop on

BIAS BIAS Biometric Identity Assurance Services 6 March 2009 Catherine Tilton W3C Workshop on SIV Biometric services Whats missing? Biometric Applications Biometric Resources ? ANSI/NIST-ITL 1-2000/6 ? BioAPI/BIP ? Other ?

257 views • 13 slides
Fingerprinting the datacenter: automated classification of performance crises Peter Bodk 1,3 ,

Fingerprinting the datacenter: automated classification of performance crises Peter Bodk 1,3 ,

Fingerprinting the datacenter: automated classification of performance crises Peter Bodk 1,3 , Moises Goldszmidt 3 , Armando Fox 1 , Dawn Woodard 4 , Hans Andersen 2 1 RAD Lab, UC Berkeley 2 Microsoft 3 Research 4 Cornell University Crisis

664 views • 19 slides
Need for Classification Classification required To isolate traffic of interest

Need for Classification Classification required To isolate traffic of interest

Need for Classification Classification required To isolate traffic of interest Classification of Internet Traffic To treat special types of traffic in a different manner Some types of classification already seen in Alok

371 views • 9 slides
with GPU in Hybrid Storage Systems Prince Hamandawana, Awais Khan, Changgyu Lee , Sungyong Park,

with GPU in Hybrid Storage Systems Prince Hamandawana, Awais Khan, Changgyu Lee , Sungyong Park,

Accelerating the Data Deduplication Performance with GPU in Hybrid Storage Systems Prince Hamandawana, Awais Khan, Changgyu Lee , Sungyong Park, Youngjae Kim Department of Computer Science and Engineering Sogang University, Seoul, Republic of

441 views • 15 slides

More recommend