Celosia, Guillaume Cunche, Mathieu
Published in
Proceedings on Privacy Enhancing Technologies
Apple Continuity protocols are the underlying network component of Apple Continuity services which allow seamless nearby applications such as activity and file transfer, device pairing and sharing a network connection. Those protocols rely on Bluetooth Low Energy (BLE) to exchange information between devices: Apple Continuity messages are embedded ...
Sy, Erik Mueller, Tobias Burkert, Christian Federrath, Hannes Fischer, Mathias
Published in
Proceedings on Privacy Enhancing Technologies
Small TCP flows make up the majority of web flows. For them, the TCP three-way handshake induces significant delay overhead. The TCP Fast Open (TFO) protocol can significantly decrease this delay via zero round-trip time (0-RTT) handshakes for all TCP handshakes that follow a full initial handshake to the same host. However, this comes at the cost ...
Wilkinson, Daricia Bahirat, Paritosh Namara, Moses Lyu, Jing Alsubhi, Arwa Qiu, Jessica Wisniewski, Pamela Knijnenburg, Bart P.
Published in
Proceedings on Privacy Enhancing Technologies
Smartphone users are often unaware of mobile applications’ (“apps”) third-party data collection and sharing practices, which put them at higher risk of privacy breaches. One way to raise awareness of these practices is by providing unobtrusive but pervasive visualizations that can be presented in a glanceable manner. In this paper, we applied Wogal...
fouad, Imane Bielova, Nataliia Legout, Arnaud Sarafijanovic-Djukic, Natasa
Published in
Proceedings on Privacy Enhancing Technologies
Web tracking has been extensively studied over the last decade. To detect tracking, previous studies and user tools rely on filter lists. However, it has been shown that filter lists miss trackers. In this paper, we propose an alternative method to detect trackers inspired by analyzing behavior of invisible pixels. By crawling 84,658 webpages from ...
Pesé, Mert D. Pu, Xiaoying Shin, Kang G.
Published in
Proceedings on Privacy Enhancing Technologies
Vehicular data-collection platforms as part of Original Equipment Manufacturers’ (OEMs’) connected telematics services are on the rise in order to provide diverse connected services to the users. They also allow the collected data to be shared with third-parties upon users’ permission. Under the current suggested permission model, we find these pla...
Shuba, Anastasia Markopoulou, Athina
Published in
Proceedings on Privacy Enhancing Technologies
Today’s mobile apps employ third-party advertising and tracking (A&T) libraries, which may pose a threat to privacy. State-of-the-art detects and blocks outgoing A&T HTTP/S requests by using manually curated filter lists (e.g. EasyList), and recently, using machine learning approaches. The major bottleneck of both filter lists and classifiers is th...
Machuletz, Dominique Böhme, Rainer
Published in
Proceedings on Privacy Enhancing Technologies
The European Union’s General Data Protection Regulation (GDPR) requires websites to ask for consent to the use of cookies for specific purposes. This enlarges the relevant design space for consent dialogs. Websites could try to maximize click-through rates and positive consent decision, even at the risk of users agreeing to more purposes than inten...
Mhaidli, Abraham Venkatesh, Manikandan Kandadai Zou, Yixin Schaub, Florian
Published in
Proceedings on Privacy Enhancing Technologies
Internet of Things and smart home technologies pose challenges for providing effective privacy controls to users, as smart devices lack both traditional screens and input interfaces. We investigate the potential for leveraging interpersonal communication cues as privacy controls in the IoT context, in particular for smart speakers. We propose priva...
Feal, Álvaro Calciati, Paolo Vallina-Rodriguez, Narseo Troncoso, Carmela Gorla, Alessandra
Published in
Proceedings on Privacy Enhancing Technologies
Android parental control applications are used by parents to monitor and limit their children’s mobile behaviour (e.g., mobile apps usage, web browsing, calling, and texting). In order to offer this service, parental control apps require privileged access to system resources and access to sensitive data. This may significantly reduce the dangers as...
Asghar, Hassan Jameel Kaafar, Dali
Published in
Proceedings on Privacy Enhancing Technologies
We describe and evaluate an attack that reconstructs the histogram of any target attribute of a sensitive dataset which can only be queried through a specific class of real-world privacy-preserving algorithms which we call bounded perturbation algorithms. A defining property of such an algorithm is that it perturbs answers to the queries by adding ...
