tracing cross border web tracking
play

Tracing Cross Border Web Tracking Costas Iordanou Georgios - PowerPoint PPT Presentation

Aug 28, 2022 •163 likes •584 views

Tracing Cross Border Web Tracking Costas Iordanou Georgios Smaragdakis Ingmar Poese Nikolaos Laoutaris We Web adver)sing fuels the w fuels the web eb 1 The r Th e rise of e of t targeted ed a ads Why Targeted ads? How it

  1. Tracing Cross Border Web Tracking Costas Iordanou Georgios Smaragdakis Ingmar Poese Nikolaos Laoutaris

  2. We Web adver)sing fuels the w fuels the web eb 1

  3. The r Th e rise of e of t targeted ed a ads Why Targeted ads? How it works? • Tracking and profiling users • Users get relevant ads • Real Gme aucGons of ads (RTB) • Increase user engagement • Cookie synchronizaGon • More efficient ad campaigns • Etc. • Higher ROI for the adverGsers • BeIer use of resources • Etc. User typed in “used cars for sale” 2

  4. Th The r e rea eac) c)on on of of u user ers a and r reg egulator ors Regulators Users Browser extensions Browsers 3

  5. User Users and r s and regula egulators r s reac eac)o )on n Regulators Users Browser extensions Browsers 4

  6. Gen Gener eral D Data P Prot otec) ec)on on R Reg egula)on on - D - Details One of the biggest changes with respect to privacy and regulaGon on the web in the last few years (Enforcement date: 25 th May, 2018) In general the new legislaGon: 1. tries to regulate how users’ data are collected, processed and stored and 2. if they include any sensiGve informaGon about the user 5

  7. Gen Gener eral D Data P Prot otec) ec)on on R Reg egula)on on - D - Details One of the biggest changes with respect to privacy and regulaGon on the web in the last few years (Enforcement date: 25 th May, 2018) In general the new legislaGon: 1. tries to regulate how users’ data are collected, processed and stored and 2. if they include any sensiGve informaGon about the user ImplementaGon – Per member state Data ProtecGon Authority (DPA) DPA: Responsible for complaints – invesGgaGons & enforcement InvesGgaGon starGng point – Ad & Tracking flows entry point servers locaGon RQ: How can we idenGfy the physical locaGons of such servers? 6

  8. Ch Challen enges es 1. How to effecGvely detect ad and tracking related domains in the wild ? 2. How to ensure correct geoloca7on of infrastructure servers ? 7

  9. Ch Challen enges es 1. How to effecGvely detect ad and tracking related domains in the wild ? 2. How to ensure correct geoloca7on of infrastructure servers ? 3. How to ensure that all possible ad and tracking servers are observed ? 4. How to maintain a balance between accuracy and scalability ? 8

  10. Why real users instead of ju just Web crawling? User interacGon Real Users 9

  11. Why real users instead of ju just Web crawling? User interacGon Real Users Geo load balancing 10

  12. Mapping 3 rd rd party doma Mapping 3 mains to IPs Chrome Browser Extension Chrome API event listeners hIp://www.example.com chrome. chrome. webRequest. webRequest. onBeforeSendHeader onCompleted tracker.com Mapping Table - example.com Domain IP analyGcs.com tracker.com 213.121.66.99 … analyGcs.com … tracker.com 213.121.66.99 11

  13. Iden)fy Ad and Tracking related doma mains easyprivacy easylist CorrecGon Script ABP Parser Custom keywords 12

  14. Iden)fy Ad and Tracking related doma mains easyprivacy easylist AD + Tracking Domains 2 YES CorrecGon YES 3 Script Should block? Ad + Tracking related? NO ABP Parser NO 1 Custom url 1 + meta data keywords url 2 + meta data url 3 + meta data … 13

  15. Ch Challen enges es 1. How to effecGvely detect ad and tracking related domains in the wild ? 2. How to ensure correct geoloca7on of infrastructure servers ? 3. How to ensure that all possible ad and tracking servers are observed ? 4. How to maintain a balance between accuracy and scalability ? 14

  16. Accu Accurate g e geo-l eo-loc oca)on on of of s ser erver er IP IPs RIPE IPmap validaGon process - infrastructure servers IPs RIPE IPmap prefix region service 46.51.128.0/18 eu-west-1 AMAZON 46.51.216.0/21 ap- AMAZON southeast-1 13.73.232.0/21 japaneast AZURE 99.6% match with 20 . 19 . 14 . 128 koreacentral AZURE the reported country / 25 … … … Regions maps eu-west-1: Ireland, Ireland ap-southeast-1: Singapore, Singapore 15

  17. Ch Challen enges es 1. How to effecGvely detect ad and tracking related domains in the wild ? 2. How to ensure correct geoloca7on of infrastructure servers ? 3. How to ensure that all possible ad and tracking servers are observed ? 4. How to maintain a balance between accuracy and scalability ? 16

  18. Avoiding piIalls … Av - IdenGfy all domains behind each IP (Reverse DNS query) Query: hIps://freeapi.robtex.com/pdns/reverse/93.184.216.34 Response: rrname:example.org, rrdata:93.184.216.34, rrtype:A, time_first:1440526884, time_last:1535919774, count:18 rrname:www.example.org, rrdata:93.184.216.34, rrtype:A, time_first:1440723354, time_last:1527899734, count:18 rrname:www.example.com, rrdata:93.184.216.34, rrtype:A, time_first:1441108386, time_last:1535371292, count:18 rrname:www.example.net, rrdata:93.184.216.34, rrtype:A, time_first:1436692690, time_last:1527900018, count:18 rrname:imrek.org, rrdata:93.184.216.34, rrtype:A, time_first:1440827324, time_last:1508103356, count:18 rrname:example.net, rrdata:93.184.216.34, rrtype:A, time_first:1440526998, time_last:1533895598, count:18 … 17

  19. Avoiding piIalls … Av - IdenGfy all domains behind each IP (Reverse DNS query) Query: hIps://freeapi.robtex.com/pdns/reverse/93.184.216.34 Response: rrname:example.org, rrdata:93.184.216.34, rrtype:A, time_first:1440526884, time_last:1535919774, count:18 rrname:www.example.org, rrdata:93.184.216.34, rrtype:A, time_first:1440723354, time_last:1527899734, count:18 rrname:www.example.com, rrdata:93.184.216.34, rrtype:A, time_first:1441108386, time_last:1535371292, count:18 rrname:www.example.net, rrdata:93.184.216.34, rrtype:A, time_first:1436692690, time_last:1527900018, count:18 rrname:imrek.org, rrdata:93.184.216.34, rrtype:A, time_first:1440827324, time_last:1508103356, count:18 rrname:example.net, rrdata:93.184.216.34, rrtype:A, time_first:1440526998, time_last:1533895598, count:18 … - IdenGfy all IPs for each domain (Forward DNS query) Query: hIps://freeapi.robtex.com/pdns/forward/example.com Response: rrname:example.com, rrdata:2606:280::::::1946, rrtype:AAAA, time_first:1441278890, time_last:1535952170, count:18 rrname:example.com, rrdata:93.184.216.34, rrtype:A, time_first:1441278890, time_last:1535952170, count:18 rrname:example.com, rrdata:208.77.188.166, rrtype:A, time_first:1246678898, time_last:1246678898, count:1 18

  20. Avoiding piIalls … Av - IdenGfy all domains behind each IP (Reverse DNS query) Query: hIps://freeapi.robtex.com/pdns/reverse/93.184.216.34 Response: rrname:example.org, rrdata:93.184.216.34, rrtype:A, time_first:1440526884, time_last:1535919774, count:18 rrname:www.example.org, rrdata:93.184.216.34, rrtype:A, time_first:1440723354, time_last:1527899734, count:18 rrname:www.example.com, rrdata:93.184.216.34, rrtype:A, time_first:1441108386, time_last:1535371292, count:18 rrname:www.example.net, rrdata:93.184.216.34, rrtype:A, time_first:1436692690, time_last:1527900018, count:18 rrname:imrek.org, rrdata:93.184.216.34, rrtype:A, time_first:1440827324, time_last:1508103356, count:18 rrname:example.net, rrdata:93.184.216.34, rrtype:A, time_first:1440526998, time_last:1533895598, count:18 … - IdenGfy all IPs for each domain (Forward DNS query) Query: hIps://freeapi.robtex.com/pdns/forward/example.com Response: rrname:example.com, rrdata:a.iana-servers.net, rrtype:NS, time_first:1246678898, time_last:1535952170, count:2 rrname:example.com, rrdata:b.iana-servers.net, rrtype:NS, time_first:1246678898, time_last:1535952170, count:2 rrname:example.com, rrdata:2606:280::::::1946, rrtype:AAAA, time_first:1441278890, time_last:1535952170, count:18 rrname:example.com, rrdata:93.184.216.34, rrtype:A, time_first:1441278890, time_last:1535952170, count:18 rrname:example.com, rrdata:208.77.188.166, rrtype:A, time_first:1246678898, time_last:1246678898, count:1 19

  21. Joining Jo ining everything thing togethe ther r Browser extension with real users RIPE IPmap CorrecGon Mapping Table - example.com Script Domain IP & tracker.com 213.121.66.99 hIps://ipmap.ripe.net/ analyGcs.com 130.12.88.110 ABP Parser … … Source country 3 rd party flow Mapping IP(s) Filtering DesGnaGon country Spain hIp://tracker.com 213.121.66.99 Ad + Tracking Germany France hIp://example.com 145.100.210.5 Clean USA … … … … … 20

  22. Results - EU 28 member states confinement level MaxMind geo-locaGon 21

  23. Results - EU 28 member states confinement level MaxMind geo-locaGon RIPE IPmap geo-locaGon 22

  24. Wha What abo t about sensi)v ut sensi)ve w e web ebsit sites? es? SensiGve categories as defined by GDPR GeneGc & biometric data Race & Ethnicity PoliGcal beliefs Religion Health Sexual OrientaGon 23

  25. Re Results - Sensi)ve websites based on EU 28 users SensiGve Category DesGnaGon ConGnent 24

  26. Ch Challen enges es 1. How to effecGvely detect ad and tracking related domains in the wild ? 2. How to ensure correct geoloca7on of infrastructure servers ? 3. How to ensure that all possible ad and tracking servers are observed ? 4. How to maintain a balance between accuracy and scalability ? 25

  27. Scaling up – From real users to ISP flows 26

  28. up – Fr Sc Scaling aling up From m real users to ISP fl flows Datasets ISPs Datasets List of Ad + Tracking IPs + < 28k IPs 27

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Cross Border Xpress Welcome to CBX https://www.youtube.com/watch?v=gDWTvwgyOD4 2 Cross Border

Cross Border Xpress Welcome to CBX https://www.youtube.com/watch?v=gDWTvwgyOD4 2 Cross Border

Cross Border Xpress Welcome to CBX https://www.youtube.com/watch?v=gDWTvwgyOD4 2 Cross Border Xpress What is Cross Border Xpress? Market Potential Opportunity Areas New Services Added 3 What is Cross Border Xpress? An airport check in

464 views • 29 slides
Cross- Cross-Border R&amp;D in Border R&amp;D in China China Und Understand rstanding

Cross- Cross-Border R&amp;D in Border R&amp;D in China China Und Understand rstanding

1 2 Cross- Cross-Border R&amp;D in Border R&amp;D in China China Und Understand rstanding ing the Reg e Regulat latory ry Ch Challenges allenges 1 Pane Panelists lists Moderator: Paul A. Ste ul A. Stewar art, t,

471 views • 7 slides
MALAYSIA IN CROSS BORDER RAIL INITIATIVE 20 DECEMBER 2017 Content: i. Cross Border Railway

MALAYSIA IN CROSS BORDER RAIL INITIATIVE 20 DECEMBER 2017 Content: i. Cross Border Railway

TU MINISTRY OF TRANSPORT MALAYSIA MALAYSIA IN CROSS BORDER RAIL INITIATIVE 20 DECEMBER 2017 Content: i. Cross Border Railway Facilities ii. Cross Border Railway Arrangement iii. ASEAN Cross Border Initiative iv. Other Cross Border

466 views • 32 slides
border opportunities James McTavish NSW Cross-Border Commissioner Luke Wilson Victorian Cross

border opportunities James McTavish NSW Cross-Border Commissioner Luke Wilson Victorian Cross

Releasing cross border opportunities James McTavish NSW Cross-Border Commissioner Luke Wilson Victorian Cross Border Commissioner Wentworth 1,500 NSW major towns and cities: ~71,900 Mildura (up from ~66,600 in 2011) 32,800 Tooleybuc

207 views • 3 slides
Cross border experiences Tim Oosterbaan, CEO &amp; founder Intrastores Cross border Online

Cross border experiences Tim Oosterbaan, CEO &amp; founder Intrastores Cross border Online

Cross border experiences Tim Oosterbaan, CEO &amp; founder Intrastores Cross border Online Retailer Salesupply Enabling global E-commerce About Intrastores Founded in 2008 with a budget of 1000 euro Started in NL, selling

571 views • 13 slides
New innovative cross border developments for SMEs The case study Mechatronics Cross Border

New innovative cross border developments for SMEs The case study Mechatronics Cross Border

New innovative cross border developments for SMEs The case study Mechatronics Cross Border Co-operation Best Practice and Future Opportunities from across the European Union, Co. Meath, Ireland, 13 June 2013 Jan Oostenbrink, Deputy

406 views • 11 slides
Cross Border Technologies - The technology licensing company - Cross Border Technologies

Cross Border Technologies - The technology licensing company - Cross Border Technologies

Company Presentation Cross Border Technologies - The technology licensing company - Cross Border Technologies Munich Yokohama Seoul Table of contents Introduction Our company profile Services we offer Our

349 views • 31 slides
Integration of cross-border transport infrastructure TEN-T strategy on large cross- border

Integration of cross-border transport infrastructure TEN-T strategy on large cross- border

Integration of cross-border transport infrastructure TEN-T strategy on large cross- border cooperation projects Gudrun Schulze, Team leader, DG Mobility and Transport, European Commission Luxemburg, 12 November 2015 Transport Cooperation for

172 views • 14 slides
Deputy Director, Centre for Cross Border Studies MISSION The Centre for Cross Border Studies

Deputy Director, Centre for Cross Border Studies MISSION The Centre for Cross Border Studies

Dr Anthony Soares Deputy Director, Centre for Cross Border Studies MISSION The Centre for Cross Border Studies empowers citizens and builds capacity and capability for cooperation across sectors and jurisdictional boundaries on the island of

766 views • 42 slides
Analysis on the cross-border trade processes and recommended reference maps for cross-border

Analysis on the cross-border trade processes and recommended reference maps for cross-border

Analysis on the cross-border trade processes and recommended reference maps for cross-border paperless trade. March 2015 Simplified International Supply Chain International Supply Chain with Cross-Border Transactions Documents crossing

938 views • 48 slides
Shopping without borders Cross-border shopping by Zimbabweans in South Africas border town of

Shopping without borders Cross-border shopping by Zimbabweans in South Africas border town of

Shopping without borders Cross-border shopping by Zimbabweans in South Africas border town of Musina Nedson Pophiwa, HSRC-DGSD Programme/ PhD UKZN Economic History 10 November 2015 1 Definition of CBS Cross-border shopping is

404 views • 24 slides
Thorsten Beck Regulatory cooperation in cross-border banking During 2008 crisis: asymmetry

Thorsten Beck Regulatory cooperation in cross-border banking During 2008 crisis: asymmetry

REG EGULA ULATOR ORY Y COO OOPERA PERATI TION ON ON ON CROSS OSS-BORDER BORDER BA BANK NKING ING PR PROG OGRESS RESS AND ND CHALLENGES LLENGES Thorsten Beck Regulatory cooperation in cross-border banking During 2008

457 views • 22 slides
The challenges of capacity building in cross- border cooperation and the TEIN / AEBR/ MOT

The challenges of capacity building in cross- border cooperation and the TEIN / AEBR/ MOT

The challenges of capacity building in cross- border cooperation and the TEIN / AEBR/ MOT partnership approach Dr. Joachim Beck Cross-border territories: the horizontal dimension of European integration Border regions represent 40% of EU

220 views • 11 slides
Company Presentation Cross Border Technologies - The technology licensing company - Cross Border

Company Presentation Cross Border Technologies - The technology licensing company - Cross Border

Company Presentation Cross Border Technologies - The technology licensing company - Cross Border Technologies Munich Yokohama Seoul Table of contents Introduction Our company profile Services we offer Our

690 views • 30 slides
Regional Trade Agreement Facilitate Cross-border E-commerce Cross-border E-commerce serves as

Regional Trade Agreement Facilitate Cross-border E-commerce Cross-border E-commerce serves as

E-Commerce: How can Regional Trade Agreement Facilitate Cross-border E-commerce Cross-border E-commerce serves as an engine of innovation and brings enormous opportunities for economic and social development by fostering innovation,

277 views • 13 slides
Global Payment In Init itiative (G (GPI) The future of cross-border payments (SWIFT) London May

Global Payment In Init itiative (G (GPI) The future of cross-border payments (SWIFT) London May

Global Payment In Init itiative (G (GPI) The future of cross-border payments (SWIFT) London May 2017 Franois Masquelier, Honorary Chairman EACT Way to faster cross-border payments? 2 Cross-border payments are stil ill too slo low !

327 views • 18 slides
Effective Automated Windows Lab Deployment Fons Mijnen Vincent van Dongen February 6, 2017 Fons

Effective Automated Windows Lab Deployment Fons Mijnen Vincent van Dongen February 6, 2017 Fons

Effective Automated Windows Lab Deployment Fons Mijnen Vincent van Dongen February 6, 2017 Fons Mijnen, Vincent van Dongen Effective Automated Windows Lab Deployment February 6, 2017 1 / 33 Problem part 1 IT professionals, students, and

351 views • 34 slides
1 Agenda 1 2 3 4 2016 Half-year Group Business Outlook 2016 2016 highlights financials

1 Agenda 1 2 3 4 2016 Half-year Group Business Outlook 2016 2016 highlights financials

1 Agenda 1 2 3 4 2016 Half-year Group Business Outlook 2016 2016 highlights financials update 2 Highlights Record interim operating results +3.2 % 2,878 million 1.00 87 % Revenue Cash conversion rate Interim dividend 20.2

827 views • 24 slides
Make the Internet safe with DNS firewall Response Policy Zones (RPZ) SGNOG 7 2019 2 Great

Make the Internet safe with DNS firewall Response Policy Zones (RPZ) SGNOG 7 2019 2 Great

1 Make the Internet safe with DNS firewall Response Policy Zones (RPZ) SGNOG 7 2019 2 Great Asean Fastest Growing Area of Threats Over 200 Billion devices connected worldwide by 2020. Over 13 million active bots recorded for January 2019.

766 views • 38 slides
ACA Webinar Maximizing Display ROI An Update On Auditing Best Practices Hello! I a am m

ACA Webinar Maximizing Display ROI An Update On Auditing Best Practices Hello! I a am m

ACA Webinar Maximizing Display ROI An Update On Auditing Best Practices Hello! I a am m Fearga gal C Conno nnor. I I am the C CEO a and F Found nder o of M Mediaopt ptimise. Founded i in 2011 i in Montr treal al, C Canad

728 views • 55 slides
Windows Server 2003 Windows Server 2008 Windows Server 2012 Hardwar are Innovat ation ion

Windows Server 2003 Windows Server 2008 Windows Server 2012 Hardwar are Innovat ation ion

Windows Server 2003 Windows Server 2008 Windows Server 2012 Hardwar are Innovat ation ion Hardwar are Innovat ation ion X86 Symmetric X64 Servers Multi-Processor Multi-Core Servers (2- (SMP) Servers 4 cores per socket)

504 views • 34 slides
DNSSEC in Windows DNS Server Kumar Ashutosh, Microsoft Windows DNS Server Widely deployed in

DNSSEC in Windows DNS Server Kumar Ashutosh, Microsoft Windows DNS Server Widely deployed in

DNSSEC in Windows DNS Server Kumar Ashutosh, Microsoft Windows DNS Server Widely deployed in enterprises Fair presence in the DNS resolver space Standards compliant and interoperable Secure and scalable DNSSEC in Windows DNS

266 views • 14 slides
all at once with Azure Active Directory Etan Basseri Senior Program Manager Identity Engineering

all at once with Azure Active Directory Etan Basseri Senior Program Manager Identity Engineering

Identity, Security and Collaboration, all at once with Azure Active Directory Etan Basseri Senior Program Manager Identity Engineering Microsoft 365 Enterprise Office 365 Windows 10 Enterprise Mobility Enterprise Enterprise + Security

503 views • 7 slides
Ybrant Digital Limited Marketing Digital Media Worldwide About us 24 local offices 50

Ybrant Digital Limited Marketing Digital Media Worldwide About us 24 local offices 50

Ybrant Digital Limited Marketing Digital Media Worldwide About us 24 local offices 50 national markets GLOBAL 500+ agencies and brands Proprietary tools TECHNOLOGY Auto Optimization API and data integration Display

554 views • 19 slides

More recommend