TowardsPrivacyFriendly OnlineAdver5sing JulienFreudiger - - PowerPoint PPT Presentation

towards privacy friendly online adver5sing
SMART_READER_LITE
LIVE PREVIEW

TowardsPrivacyFriendly OnlineAdver5sing JulienFreudiger - - PowerPoint PPT Presentation

Aug 18, 2023 134 likes •427 views

TowardsPrivacyFriendly OnlineAdver5sing JulienFreudiger ,NevenaVratonjic,andJeanPierreHubaux May2009,W2SP InternetEconomy

slide-1
SLIDE 1

Towards
Privacy‐Friendly

 Online
Adver5sing


Julien
Freudiger,
Nevena
Vratonjic,
and
Jean‐Pierre
Hubaux


May
2009,
W2SP


slide-2
SLIDE 2

Online
adver5sing
is
at
center
of
Internet
economy


– Immediate
and
personalized
 – Enables
Behavioral
targe5ng


Internet
Economy


2


Source:
Interac5ve
Adver5sing
Bureau
Internet
Adver5sing
revenue
report,
2008


slide-3
SLIDE 3

Benefits


  • For
users


– Relevance
of
ads
 – Sponsored
services


  • For
websites



– Generate
profit
from
ads
 – New
business
models


3


slide-4
SLIDE 4
  • Track
user
ac5vi5es
online


– Interests
(visited
websites,
search
terms)
 – Conversa5ons
(email)
 – Friends
(social
networks)


  • Privacy
footprint
(Krishnamurthy
and
Wills)


– 72%
of
web
servers
share
at
least
one
adver5ser
 – 3
third‐party
domains
contacted
on
average
per
 accessed
web
site


Privacy
Concerns


4


slide-5
SLIDE 5

Privacy/traceability
Trade‐off


5


Traceability
 Privacy
 0
 1
 1
 Trade‐off
 Allow
all
 Block
all


Provide
a
way
to
control
amount
of
informa8on
shared



slide-6
SLIDE 6

Outline


  • 1. Online
Adver5sing


– Privacy
Implica5ons
 – Exis5ng
Solu5ons


  • 2. Proposed
Solu5on


– Privacy
friendly
Cookie
management
 – User
centric


  • 3. Preliminary
Evalua5on


– Firefox
Extension


6


slide-7
SLIDE 7

Online
Adver5sing


7


u
 s1
 s2
 d1


Hidden
servers
 D
 Users
 U
 Visible
servers
 S


Associated

 web
sites


u
‐>
s1:
 
www.ny5mes.com
 u
‐>
s2:
 
www.google.com
 s1‐>
u:
 
index.html
 u
‐>
d1:
 
ads.com,
TP‐cookie
 d1‐>
u: 
ads
 s1‐>
u
:
 
index.html
 u
‐>
d1:
 
ads.com,
TP‐cookie
 d1‐>
u:
 
ads


B.
Krishnamurthy

and
C.
E.
Wills.
Genera5ng
a
privacy
footprint
on
the
Internet.
IMC
2006


slide-8
SLIDE 8

Traceability


  • TP‐Cookies
enable


– Spa8al
tracking:
Track
over
different
domains
 – Temporal
tracking:
Iden5fy
subsequent
visits


  • Referrer
reveals
visited
website

  • Example
of
data
collected
by
adver5sers:


– 10h00:
www.ny5mes.com,
cookie
 – 10h02:
www.ny5mes.com,
cookie
 – 11h00:
www.facebook.com/friends,
cookie


8


slide-9
SLIDE 9

Exis5ng
Solu5ons


  • All
or
nothing


– Block
requests
to
adver5sers
 – Block
TP‐cookies
 – Allow
all


  • Same
origin
policy


– “Only
the
server
that
sets
a
cookie
can
access
it”
 – Prevents
loss
of
data
confiden5ality
or
integrity
 – But
too
permissive
with
respect
to
online
tracking


9


slide-10
SLIDE 10

Outline


  • 1. Online
Adver5sing


– Privacy
Implica5ons
 – Exis5ng
Solu5ons


  • 2. Proposed
Solu5on


– Privacy
friendly
Cookie
management
 – User
centric


  • 3. Preliminary
Evalua5on


– Firefox
Extension


10


slide-11
SLIDE 11

Proposed
Solu5on


  • Trade‐off
privacy
and
traceability


– Limit
spa5al
and
temporal
tracking
 – User‐centric
solu5on


  • Define
policies
for
use
of
cookies


– User
privacy
preferences
 – User
adver5sement
preferences
 – Visited
web
site


11


slide-12
SLIDE 12

Key
Idea


  • Maintain
a
collec5on
of
cookies
in
parallel


– Sent
cookie
depends
on
the
visited
web
site
and
 adver5ser


12


Domain
 Cookie
 ads.com
 c1
 Domain
 Website
 Cookie
 ads.com
 ny5mes.com
 c1
 ads.com
 google.com
 c2


slide-13
SLIDE 13

Key
Technique


  • To
obtain
a
new
cookie


– Do
not
send
exis5ng
cookies
in
HTML
header
 – Server
assigns
a
new
cookie


  • Privacy‐Friendly
cookie
management


– Alternate
among
cookies
in
collec5on


13


slide-14
SLIDE 14

Approach
1


14


u
 s1
 s2
 d1
 u‐>
d1:
 
ads.com,
www.ny5mes.com,
c1
 u‐>
d1:
 
ads.com,
www.ny5mes.com/technology,
c1
 u‐>
d1:
 
ads.com,
www.google.com
,
c2


Limit
use
of
TP‐cookies
per
domain
 Use
for
a
limited
number
of
8mes


because
ny5mes
!=
google


slide-15
SLIDE 15

Approach
2


15


Limit
use
of
TP‐cookies
per
web
site
category
and
within
categories
 Use
for
a
limited
number
of
8mes


  • Categories
define
type
of
web
site


– ny5mes.com
=>
news
 – Readily
available
(e.g.,
Alexa)


  • Spa5al
tracking
threshold
Ls


– Limits
spa5al
tracking
across
web
sites
within
categories 



slide-16
SLIDE 16

Approach
2


16


u
 s1
 s2
 d1
 u‐>
d1:
 
ads.com,
www.swissinfo.ch,
c1
 u‐>
d1:
 
ads.com,
www.ny5mes.com,
c1
 u‐>
d1:
 
ads.com,
www.google.com
,
c3
 u‐>
d1:
 
ads.com,
mail.google.com
,
c4
 u‐>
d1:
 
ads.com,
www.l.com,
c2
 s3
 s4


Category


News
 News
 News
 Search
 Email
 Because
3
>
LS
 Because
search
!=
news
 Because
email
!=
search
and

 







email
!=
news


Ls
=
2


slide-17
SLIDE 17

Approach
3


17


Limit
use
of
TP‐cookies
based
on
URLs
and
user
preferences
 Use
for
a
limited
number
of
8mes


  • URLs


– Leak
informa5on
through
referrer
 – google.com/search?q=julien


  • Preferences
on
web
site
categories


– Privacy:
What
users
do
not
want
to
share
 – Adver5sing:
What
users
want
to
get


slide-18
SLIDE 18

Senng
up
Preferences


18


Rely
on
online
social
communi5es
 Google
Ad
preference
manager


slide-19
SLIDE 19

Approach
3


19


u‐>
d1:
 
ads.com,
www.google.com,
c1
 u‐>
d1:
 
ads.com,
www.google.com/search?q=computers,
c1
 u‐>
d1:
 
ads.com,
www.facebook.com/search?q=nevena
,
c2
 u‐>
d1:
 
ads.com,
www.facebook.com,
c1


URLs
 (w1)
 User
Privacy
 Pref.
(w2)
 0.1
 0
 0.9
 0
 0.1
 1
 1
 1


  • bi∈H(B)

w1(bi) · w2(bi) < Ls

Because
0.1
+
1
>
Ls




Ls
=
1


slide-20
SLIDE 20

Outline


  • 1. Online
Adver5sing


– Privacy
Implica5ons
 – Exis5ng
Solu5ons


  • 2. Proposed
Solu5on


– Privacy
friendly
Cookie
management
 – User
centric


  • 3. Preliminary
Evalua5on


– Firefox
Extension


20


slide-21
SLIDE 21

Implementa5on 



  • Firefox
extension:
PrivaCookie


– Proof
of
concept
code
 – Get
it
on
hpp://icapeople.epfl.ch/freudiger



  • TP
cookie
detec5on


– Compare
origina5ng
URL
with
current
URL


  • Local
cookie
table


– Link
cookies
with
hidden
server
that
caused
its
 assignment
and
visible
server
hos5ng
ads
 – (
Cookie,
visible
server,
hidden
server
)


21


slide-22
SLIDE 22

Study


  • Chose
10
pages
from
each
of
the
top
20
domains

  • Firefox
extension
pagestats


– Runs
browser
in
batch
mode
with
list
of
web
sites
 – A
total
of
200
pages



22


slide-23
SLIDE 23

Number
of
hidden
servers
for
each
of
 the
top
20
domains


23


slide-24
SLIDE 24

Number
of
visible
servers
for
each
 hidden
server


24


PrivaCookie


slide-25
SLIDE 25

Hidden
 Server
 Visible
Servers


Yahoo
 Ebay
 AOL
 IMDB
 Orkut
 Msn
 Myspace
 HI5
 Blogspot
 Rapidshare
 doubleclick
 quantaserve
 atmdt
 adver5sing
 yieldmanager


25


Top
10
associated
visible
servers
connected
 with
the
most
popular
adver5sers


Extension
caused
81
addi5onal
cookies
assignments


c1
 c1,1
 c1
 c1,2
 c1
 c1,3
 c1
 c1,4
 c1
 c1,5
 c1
 c1,6
 c1
 c1,7
 c1
 c1,8


slide-26
SLIDE 26

Tracking
Countermeasures


  • Track
based
on
IP

  • Anonymizer/Tor

  • Track
with


– Cache
cookies
 – Browser
history
 – Plugins
(e.g.,
Flash
cookies)
 – Proposed
policies
also
apply
to
those
cases


  • Coopera5ve
tracking?


26


slide-27
SLIDE 27

Conclusion


  • We
propose
a
solu5on
for
trading‐off
privacy
&


traceability



– Protects
user
privacy
 – Allows
for
targeted
online
adver5sing
 – No
changes
required
from
adver5sers
 – Puts
users
in
control


  • Key
idea:
Maintains
a
collec5on
of
cookies
in
parallel

  • Future
Work:



– Implement
approach
2
&
3
 – Implement
Javascript
support
 – Consider
other
parameters
in
approach
3


27


slide-28
SLIDE 28

URL
Weight


  • Parse
URL
for
n‐grams


– “search”
 – “id”
 – “username”


  • Can
be
done
automa5cally
before
visi5ng
URL


28