A technique that exploits the way Web browsers store recently viewed data could compromise Internet users' privacy by allowing an attacker to check what sites a person has visited recently.
Published:
15 December 2000 y., Friday
A technique that exploits the way Web browsers store recently viewed data could compromise Internet users' privacy by allowing an attacker to check what sites a person has visited recently.
The exploit--called a "timing attack"--allows an unethical Web site to play 20 questions (or more) with a person's browser and check whether the surfer has recently viewed any sites from a predetermined list. An employer could use the technique on internal Web sites to see whether any employees have been visiting the competition's job listings. A Web portal could check whether a person has recently visited any of its sponsors.
"The attacks allow any Web site to determine whether or not each visitor has recently visited some other site" or set of sites, Edward Felten, a professor of computer science at Princeton University, and Michael Schneider, a graduate student, wrote in a paper published at a technical conference last month. "The attacker can do this without the knowledge or consent of either the user or the other site," they wrote. The attack takes advantage of the data caches used by browsers to speed access to recently visited Web sites. Caching is a technique that stores copies of frequently accessed data in a nearby location, whether on a person's PC or on a server on the local area network. The ability to store recently viewed items significantly reduces the amount of data that has to move over the Internet.
Šaltinis:
two.digital.cnet.com
Copying, publishing, announcing any information from the News.lt portal without written permission of News.lt editorial office is prohibited.
The most popular articles
Software company announced new structure_ of it_s business.
more »
FTTH Network Provides High-Speed Internet, IPTV and VoIP Telephony in One.
more »
FIRE crews came to the rescue of two security guards who were trapped inside a cash machine for nearly two hours.
more »
Wincor Nixdorf International has named Patrick Wright its new chief executive officer for the U.S. division.
more »
Deutsche Telekom selects Motorola’s IPTV set-tops for T-Home Entertain Services; users to receive compelling, rich media experiences.
more »
New regional development center in Germany is part of $75 million global investment by Windows Embedded Business.
more »
Diogo Vasconcelos, the newly elected President of the Portuguese National Association for the Development of Telecommunications (APDC), has promised to transform the organisation's role in driving forward the country's digital agenda.
more »
Microsoft is helping transform the upcoming Democratic and Republican national conventions into the most technologically advanced and inclusive conventions ever held.
more »
Visa and leading North American financial institutions have agreed to launch a pilot with up to 2,000 participants to test the delivery of real-time notification alerts on Visa accounts.
more »
Wincor Nixdorf International has secured a deal to provide ATMs to Banktech, an independent ATM provider in Australia.
more »
Financial breaches and identity theft cases seem to be in the headlines on an almost regular basis. Just last month, hackers broke into a Citibank-branded ATM network and stole millions.
more »