Latex Gloves: Protecting Browser Extensions from Probing and Revelation Attacks

Sjösten, Alexander; Acker, Steven Van; Picazo-Sanchez, Pablo; Sabelfeld, Andrei

doi:10.14722/ndss.2019.23309

Cited by 15 publications

(10 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…As demonstrated by our experimental evaluation, the countermeasure proposed by Trickel et al [55] is ineffective against the vast majority of our behavioral fingerprints. Two other studies [46], [50] recently proposed whitelist-based countermeasures for mediating access between extensions and web pages, and a similar approach has been announced by Chrome [6]. These mechanisms can potentially reduce the fingerprint surface exposed to certain domains, but the ones that users whitelist will still be able to run the attacks we demonstrated.…”

Section: Discussion and Future Workmentioning

confidence: 81%

“…As mentioned previously, prior studies have demonstrated the feasibility of browser extension enumeration and fingerprintability. These studies focused their efforts on identifying extensions that expose specific resources (i.e., WAR-based enumeration) either directly [24], [47] or with clever implicit approaches [44], [46]. In the following subsections we provide technical details and outline the fingerprint generation and extension detection process for our four techniques.…”

Section: System Design and Implementationmentioning

confidence: 99%

“…Next, in Table II we compare to prior work and find that our system has created the largest set of detectable extensions to date. Most of these studies [24], [44], [46], [47] focused on detecting extensions through exposed WARs (either directly or through some indirect/side channel) -we statically analyzed over 102K extensions to create the most complete collection of Chrome extension WAR fingerprints. More importantly, we create the first collection of automatically generated behavioral extension fingerprints, which enable our novel analysis and evaluation of their deployment in a realistic setting.…”

Section: Experimental Evaluation: Fingerprintsmentioning

confidence: 99%

“…Due to the potential risk, browsers do not provide any mechanism that would allow a visited webpage to directly obtain the list of installed browser extensions. In practice, however, webpages can indirectly infer which extensions are installed [24], [44], [46], [47]. Once the list of installed extensions is obtained, it can be used as part of a user's device fingerprint and coupled with other browser [18], [33], [40] or system level [13] information, which can lead to the tracking of users across the web [8], [19].…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Carnus: Exploring the Privacy Threats of Browser Extension Fingerprinting

Karami¹,

Ilia²,

Σολωμός³

et al. 2020

Proceedings 2020 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

With users becoming increasingly privacy-aware and browser vendors incorporating anti-tracking mechanisms, browser fingerprinting has garnered significant attention. Accordingly, prior work has proposed techniques for identifying browser extensions and using them as part of a device's fingerprint. While previous studies have demonstrated how extensions can be detected through their web accessible resources, there exists a significant gap regarding techniques that indirectly detect extensions through behavioral artifacts. In fact, no prior study has demonstrated that this can be done in an automated fashion. In this paper, we bridge this gap by presenting the first fully automated creation and detection of behavior-based extension fingerprints. We also introduce two novel fingerprinting techniques that monitor extensions' communication patterns, namely outgoing HTTP requests and intra-browser message exchanges. These techniques comprise the core of Carnus, a modular system for the static and dynamic analysis of extensions, which we use to create the largest set of extension fingerprints to date. We leverage our dataset of 29,428 detectable extensions to conduct a comprehensive investigation of extension fingerprinting in realistic settings and demonstrate the practicality of our attack. Our in-depth analysis confirms the robustness of our techniques, as 83.6%-87.92% of our behavior-based fingerprints remain effective against a state-of-the-art countermeasure.

show abstract

Section: Discussion and Future Workmentioning

confidence: 81%

Section: System Design and Implementationmentioning

confidence: 99%

Section: Experimental Evaluation: Fingerprintsmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Carnus: Exploring the Privacy Threats of Browser Extension Fingerprinting

Karami¹,

Ilia²,

Σολωμός³

et al. 2020

Proceedings 2020 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

show abstract

“…Additionally, our scenario can handle situations where, two browser extensions developed by the same person or company but placed for instance at the beginning and at the end of the execution queue will actually access to different information and thus, collaborate to perform attacks like browser hijacking [19,13], or fingerprinting [15,10] attacks.…”

Section: Attacker Modelmentioning

confidence: 99%

After you, please: browser extensions order attacks and countermeasures

Picazo-Sanchez

Tapiador

Schneider

2019

Int. J. Inf. Secur.

Self Cite

View full text Add to dashboard Cite

Browser extensions are small applications executed in the browser context that provide additional capabilities and enrich the user experience while surfing the web. The acceptance of extensions in current browsers is unquestionable. For instance, Chrome's official extension repository has more than 63,000 extensions, with some of them having more than 10M users. When installed, extensions are pushed into an internal queue within the browser. The order in which each extension executes depends on a number of factors, including their relative installation times. In this paper, we demonstrate how this order can be exploited by an unprivileged malicious extension (i.e., one with no more permissions than those already assigned when accessing web content) to get access to any private information that other extensions have previously introduced. Our solution does not require modifying the core browser engine as it is implemented as another browser extension. We prove that our approach effectively protects the user against usual attackers (i.e., any other installed extension) as well as against strong attackers having access to the effects of all installed extensions (i.e., knowing who did what). We also prove soundness and robustness of our approach under reasonable assumptions.

show abstract