135186 – Attempt to reduce uniqueness of canvas fingerprinting

RESOLVED WONTFIX 135186

Attempt to reduce uniqueness of canvas fingerprinting

https://bugs.webkit.org/show_bug.cgi?id=135186

Summary Attempt to reduce uniqueness of canvas fingerprinting

Ridley Combs

Reported 2014-07-22 19:44:32 PDT

A browser's canvas implementation, text antialiasing, image compression, and several other features can be used to gain additional bits of information to identify a browser user across sites. Some of these factors can likely be avoided to help reduce the uniqueness of these "fingerprints". There are a few questions that should be discussed: 1. What relevant factors exist? 2. Which can be eliminated? 3. Would eliminating these factors introduce performance or quality regressions, or other new issues? 4. Could these regressions be worth it for the additional privacy? Discuss.

Attachments
Add attachment proposed patch, testcase, etc.

Oliver Hunt

Comment 1 2014-07-24 12:08:13 PDT

Closing this as invalid, the paper that describes this states ~5 bits of accuracy which is more or less meaningless in terms of anything approaching unique user tracking. But that is ignores that bigger problem in paper of all of their states being based of a sample size of 294 systems. 294 systems is not enough to be even remotely representative of the real world. They would need orders of magnitude more samples for it to be meaningful - like at minimum a few 100k systems.

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution WONTFIX

Priority P2

Severity Normal

Classification Unclassified

Version 528+ (Nightly build)

Hardware All

OS All

Product WebKit

Component Canvas

Assignee

Nobody

Reported

2014-07-22 19:44 PDT

Modified

2014-07-24 12:08 PDT History

CC List

2 users Show

URL

http://www.browserleaks.com/canvas

Keywords

Depends on

Blocks