Towards accurate detection of obfuscated web tracking

Hoan, Le; Fallace, Federico; Barlet‐Ros, Pere

doi:10.1109/iwmn.2017.8078365

Cited by 14 publications

(12 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Such approaches fail against adversaries who rotate domains quickly [39], proxy resources through trusted domains (e.g. the first party, CDNs) [20], or restructure or obfuscate JavaScript [51], among other common techniques.…”

Section: Introductionmentioning

confidence: 99%

AdGraph: A Graph-Based Approach to Ad and Tracker Blocking

Iqbal

Snyder

Zhu

et al. 2020

2020 IEEE Symposium on Security and Privacy (SP)

View full text Add to dashboard Cite

User demand for blocking advertising and tracking online is large and growing. Existing tools, both deployed and described in research, have proven useful, but lack either the completeness or robustness needed for a general solution. Existing detection approaches generally focus on only one aspect of advertising or tracking (e.g. URL patterns, code structure), making existing approaches susceptible to evasion.In this work we present ADGRAPH, a novel graph-based machine learning approach for detecting advertising and tracking resources on the web. ADGRAPH differs from existing approaches by building a graph representation of the HTML structure, network requests, and JavaScript behavior of a webpage, and using this unique representation to train a classifier for identifying advertising and tracking resources. Because ADGRAPH considers many aspects of the context a network request takes place in, it is less susceptible to the single-factor evasion techniques that flummox existing approaches.We evaluate ADGRAPH on the Alexa top-10K websites, and find that it is highly accurate, able to replicate the labels of human-generated filter lists with 95.33% accuracy, and can even identify many mistakes in filter lists. We implement ADGRAPH as a modification to Chromium. ADGRAPH adds only minor overhead to page loading and execution, and is actually faster than stock Chromium on 42% of websites and AdBlock Plus on 78% of websites. Overall, we conclude that ADGRAPH is both accurate enough and performant enough for online use, breaking comparable or fewer websites than popular filter list based approaches.

show abstract

Section: Introductionmentioning

confidence: 99%

AdGraph: A Graph-Based Approach to Ad and Tracker Blocking

Iqbal

Snyder

Zhu

et al. 2020

2020 IEEE Symposium on Security and Privacy (SP)

View full text Add to dashboard Cite

show abstract

“…Lastly, in [8], Le et al study the presence of obfuscation within web tracking, and specifically in the canvas fingerprinting method. They found obfuscation to be present, although still not very widely used.…”

Section: A Detection/classificationmentioning

confidence: 99%

Network Measurements for Web Tracking Analysis and Detection: A Tutorial

Castell-Uroz

Sole-Pareta

Barlet‐Ros

2020

IEEE Instrum. Meas. Mag.

Self Cite

View full text Add to dashboard Cite

UPC), where he received the B.Sc. degree in Computer Science in 2008 and the M.Sc degree in Computer Architecture, Networks and Systems in 2010. He has several years of experience in network and system administration and currently holds a Projects Scholarship at UPC. His expertise and research interest are in computer networks, especially in the field of network monitoring, web tracking and anomaly detection.

show abstract

“…IP Address, HTTP headers) or content properties require explicitly to download the content hosted by the URL to perform the inspection, increasing the risk and slowing down the process. Moreover, given that our method does not use code inspection, it is more robust against code minification and obfuscation, which is used by some JavaScript trackers to avoid detection [13].…”

Section: Related Workmentioning

confidence: 99%

“…The classification is done locally and exclusively based on the properties of the URL string, without the necessity of using any external features or communications. This approach has several advantages: (i) it does not require to download the source files, so malicious resources can be blocked in advance, (ii) it is more robust against the use of minification and code obfuscation techniques [13], (iii) it is more difficult to evade than traditional content-blockers, (iv) it can potentially generalize to new tracking domains, which would be missed by traditional content-blockers based on blacklists, and (v) it is lightweight enough to be included in a browser plugin.…”

Section: Introductionmentioning

confidence: 99%

URL-based Web Tracking Detection Using Deep Learning

Castell-Uroz

Poissonnier

Manneback

et al. 2020

2020 16th International Conference on Network and Service Management (CNSM)

Self Cite

View full text Add to dashboard Cite

The pervasiveness of online web tracking poses a constant threat to the privacy of Internet users. Millions of users currently employ content-blockers in their web browsers to block tracking resources in real time. Although content-blockers are based on blacklists, which are known to be difficult to maintain and easy to evade, the research community has not succeeded in replacing them with better alternatives yet. Most of the methods recently proposed in the literature obtain good detection accuracy, but at the expense of increasing their complexity and making them more difficult to maintain and configure by the end user. In this paper, we present a new web tracking detection method, called Deep Tracking Detector (DTD), that analyzes the properties of URL strings to detect tracking resources, without using any other external features. Consequently, DTD can easily be implemented in a browser plugin and operate in real time. Our experimental results, with more than 5M HTTP requests from 100K websites, show that DTD achieves a detection accuracy higher than 97% by looking only at the URL of the resources.

show abstract

Towards accurate detection of obfuscated web tracking

Cited by 14 publications

References 10 publications

AdGraph: A Graph-Based Approach to Ad and Tracker Blocking

AdGraph: A Graph-Based Approach to Ad and Tracker Blocking

Network Measurements for Web Tracking Analysis and Detection: A Tutorial

URL-based Web Tracking Detection Using Deep Learning

Contact Info

Product

Resources

About