[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #6041 [TorBrowserButton]: Review rendering-based fingerprinting vectors (was: Review rendering-based font fingerprinting vectors)

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #6041 [TorBrowserButton]: Review rendering-based fingerprinting vectors (was: Review rendering-based font fingerprinting vectors)
From: "Tor Bug Tracker & Wiki" <torproject-admin@xxxxxxxxxxxxxx>
Date: Wed, 13 Jun 2012 01:17:33 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 12 Jun 2012 21:17:45 -0400
In-reply-to: <042.b9754b45080ae3ebf9c1c0cacd6f86db@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: Tor bug tracker status mails <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <042.b9754b45080ae3ebf9c1c0cacd6f86db@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#6041: Review rendering-based fingerprinting vectors
------------------------------+---------------------------------------------
 Reporter:  gk                |          Owner:  mikeperry
     Type:  defect            |         Status:  new      
 Priority:  major             |      Milestone:           
Component:  TorBrowserButton  |        Version:           
 Keywords:  MikePerry201206   |         Parent:           
   Points:  2                 |   Actualpoints:           
------------------------------+---------------------------------------------
Changes (by mikeperry):

  * points:  => 2


Comment:

 Ok, few thoughts on the paper first:

 1. For the most part, I like this paper. It's reasonable and well written,
 has a decently thought-out defenses section, and doesn't make ridiculously
 outlandish claims.
 2. We still need source code to reproduce the results. It doesn't look
 like they tested WebGL "Minimal Mode", and we'll also want to do our own
 testing too.
 3. It is probably too early in the fingerprinting defenses game to bend
 over backwards to try to fully conceal OS for this specific vector. OS is
 likely to leak a ton of different ways. We should go after lower hanging
 fruit first, until more light is shown upon the threat landscape.
 4. Their concluding rhetorical question about fingerprints being
 unavoidable on the modern web is nonsense. Computers are mass produced,
 and are virtualizable. Even in the worst-case scenario, we can provide an
 anonymity set roughly equivalent to OS and graphics card userbase size.
 Most likely, we can do quite a bit better than that, especially if we
 leave WebGL click-to-play.

 Now, thoughts on defenses:
 I think the "Prompt for canvas image extraction" defense is probably the
 best option for now due to implementation effort, though I do like their
 idea of virtualizing the rendering surface during image extraction.

 We might also want to enforce different font count limits on the canvas
 than for normal rendering, or switch to a default font for image
 extraction. Or maybe we don't care, if we prompt first. I agree that
 prompts suck, but hopefully this should be an uncommon thing to
 experience, unless you're making lolcat captions of course.

 I'm going to let these thoughts bake for a bit before filing tickets for
 the above.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/6041#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

References:
- [tor-bugs] #6041 [TorBrowserButton]: Avoid fingerprinting a user via text and/or web font rendering on canvas
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #3894 [Tor Client]: Fix compilation on FreeBSD 4
Next by Author: Re: [tor-bugs] #5049 [Tor Client]: When LearnCircuitBuildTimeout is off, we should ignore (most?)( CBT parameters from the consensus
Previous by thread: Re: [tor-bugs] #6041 [TorBrowserButton]: Review rendering-based font fingerprinting vectors (was: Avoid fingerprinting a user via text and/or web font rendering on canvas)
Next by thread: Re: [tor-bugs] #6041 [TorBrowserButton]: Review rendering-based fingerprinting vectors
Index(es):
- Author
- Thread