User Blocking Considered Harmful? An Attacker-controllable Side Channel to Identify Social Accounts

Takuya Watanabe
Takuya Watanabe
Keito Sasaoka
Keito Sasaoka

EuroS&P, pp. 323-337, 2018.

Cited by: 4|Bibtex|Views4|Links
EI

Abstract:

This paper presents a practical side-channel attack that identifies the social web service account of a visitor to an attackeru0027s website. Our attack leverages the widely adopted user-blocking mechanism, abusing its inherent property that certain pages return different web content depending on whether a user is blocked from another use...More

Code:

Data:

Your rating :
0

 

Tags
Comments