tracing cross border web tracking
play

Tracing Cross Border Web Tracking Costas Iordanou Georgios - PowerPoint PPT Presentation

Aug 28, 2022 •163 likes •584 views

Tracing Cross Border Web Tracking Costas Iordanou Georgios Smaragdakis Ingmar Poese Nikolaos Laoutaris We Web adver)sing fuels the w fuels the web eb 1 The r Th e rise of e of t targeted ed a ads Why Targeted ads? How it

  1. Tracing Cross Border Web Tracking Costas Iordanou Georgios Smaragdakis Ingmar Poese Nikolaos Laoutaris

  2. We Web adver)sing fuels the w fuels the web eb 1

  3. The r Th e rise of e of t targeted ed a ads Why Targeted ads? How it works? • Tracking and profiling users • Users get relevant ads • Real Gme aucGons of ads (RTB) • Increase user engagement • Cookie synchronizaGon • More efficient ad campaigns • Etc. • Higher ROI for the adverGsers • BeIer use of resources • Etc. User typed in “used cars for sale” 2

  4. Th The r e rea eac) c)on on of of u user ers a and r reg egulator ors Regulators Users Browser extensions Browsers 3

  5. User Users and r s and regula egulators r s reac eac)o )on n Regulators Users Browser extensions Browsers 4

  6. Gen Gener eral D Data P Prot otec) ec)on on R Reg egula)on on - D - Details One of the biggest changes with respect to privacy and regulaGon on the web in the last few years (Enforcement date: 25 th May, 2018) In general the new legislaGon: 1. tries to regulate how users’ data are collected, processed and stored and 2. if they include any sensiGve informaGon about the user 5

  7. Gen Gener eral D Data P Prot otec) ec)on on R Reg egula)on on - D - Details One of the biggest changes with respect to privacy and regulaGon on the web in the last few years (Enforcement date: 25 th May, 2018) In general the new legislaGon: 1. tries to regulate how users’ data are collected, processed and stored and 2. if they include any sensiGve informaGon about the user ImplementaGon – Per member state Data ProtecGon Authority (DPA) DPA: Responsible for complaints – invesGgaGons & enforcement InvesGgaGon starGng point – Ad & Tracking flows entry point servers locaGon RQ: How can we idenGfy the physical locaGons of such servers? 6

  8. Ch Challen enges es 1. How to effecGvely detect ad and tracking related domains in the wild ? 2. How to ensure correct geoloca7on of infrastructure servers ? 7

  9. Ch Challen enges es 1. How to effecGvely detect ad and tracking related domains in the wild ? 2. How to ensure correct geoloca7on of infrastructure servers ? 3. How to ensure that all possible ad and tracking servers are observed ? 4. How to maintain a balance between accuracy and scalability ? 8

  10. Why real users instead of ju just Web crawling? User interacGon Real Users 9

  11. Why real users instead of ju just Web crawling? User interacGon Real Users Geo load balancing 10

  12. Mapping 3 rd rd party doma Mapping 3 mains to IPs Chrome Browser Extension Chrome API event listeners hIp://www.example.com chrome. chrome. webRequest. webRequest. onBeforeSendHeader onCompleted tracker.com Mapping Table - example.com Domain IP analyGcs.com tracker.com 213.121.66.99 … analyGcs.com … tracker.com 213.121.66.99 11

  13. Iden)fy Ad and Tracking related doma mains easyprivacy easylist CorrecGon Script ABP Parser Custom keywords 12

  14. Iden)fy Ad and Tracking related doma mains easyprivacy easylist AD + Tracking Domains 2 YES CorrecGon YES 3 Script Should block? Ad + Tracking related? NO ABP Parser NO 1 Custom url 1 + meta data keywords url 2 + meta data url 3 + meta data … 13

  15. Ch Challen enges es 1. How to effecGvely detect ad and tracking related domains in the wild ? 2. How to ensure correct geoloca7on of infrastructure servers ? 3. How to ensure that all possible ad and tracking servers are observed ? 4. How to maintain a balance between accuracy and scalability ? 14

  16. Accu Accurate g e geo-l eo-loc oca)on on of of s ser erver er IP IPs RIPE IPmap validaGon process - infrastructure servers IPs RIPE IPmap prefix region service 46.51.128.0/18 eu-west-1 AMAZON 46.51.216.0/21 ap- AMAZON southeast-1 13.73.232.0/21 japaneast AZURE 99.6% match with 20 . 19 . 14 . 128 koreacentral AZURE the reported country / 25 … … … Regions maps eu-west-1: Ireland, Ireland ap-southeast-1: Singapore, Singapore 15

  17. Ch Challen enges es 1. How to effecGvely detect ad and tracking related domains in the wild ? 2. How to ensure correct geoloca7on of infrastructure servers ? 3. How to ensure that all possible ad and tracking servers are observed ? 4. How to maintain a balance between accuracy and scalability ? 16

  18. Avoiding piIalls … Av - IdenGfy all domains behind each IP (Reverse DNS query) Query: hIps://freeapi.robtex.com/pdns/reverse/93.184.216.34 Response: rrname:example.org, rrdata:93.184.216.34, rrtype:A, time_first:1440526884, time_last:1535919774, count:18 rrname:www.example.org, rrdata:93.184.216.34, rrtype:A, time_first:1440723354, time_last:1527899734, count:18 rrname:www.example.com, rrdata:93.184.216.34, rrtype:A, time_first:1441108386, time_last:1535371292, count:18 rrname:www.example.net, rrdata:93.184.216.34, rrtype:A, time_first:1436692690, time_last:1527900018, count:18 rrname:imrek.org, rrdata:93.184.216.34, rrtype:A, time_first:1440827324, time_last:1508103356, count:18 rrname:example.net, rrdata:93.184.216.34, rrtype:A, time_first:1440526998, time_last:1533895598, count:18 … 17

  19. Avoiding piIalls … Av - IdenGfy all domains behind each IP (Reverse DNS query) Query: hIps://freeapi.robtex.com/pdns/reverse/93.184.216.34 Response: rrname:example.org, rrdata:93.184.216.34, rrtype:A, time_first:1440526884, time_last:1535919774, count:18 rrname:www.example.org, rrdata:93.184.216.34, rrtype:A, time_first:1440723354, time_last:1527899734, count:18 rrname:www.example.com, rrdata:93.184.216.34, rrtype:A, time_first:1441108386, time_last:1535371292, count:18 rrname:www.example.net, rrdata:93.184.216.34, rrtype:A, time_first:1436692690, time_last:1527900018, count:18 rrname:imrek.org, rrdata:93.184.216.34, rrtype:A, time_first:1440827324, time_last:1508103356, count:18 rrname:example.net, rrdata:93.184.216.34, rrtype:A, time_first:1440526998, time_last:1533895598, count:18 … - IdenGfy all IPs for each domain (Forward DNS query) Query: hIps://freeapi.robtex.com/pdns/forward/example.com Response: rrname:example.com, rrdata:2606:280::::::1946, rrtype:AAAA, time_first:1441278890, time_last:1535952170, count:18 rrname:example.com, rrdata:93.184.216.34, rrtype:A, time_first:1441278890, time_last:1535952170, count:18 rrname:example.com, rrdata:208.77.188.166, rrtype:A, time_first:1246678898, time_last:1246678898, count:1 18

  20. Avoiding piIalls … Av - IdenGfy all domains behind each IP (Reverse DNS query) Query: hIps://freeapi.robtex.com/pdns/reverse/93.184.216.34 Response: rrname:example.org, rrdata:93.184.216.34, rrtype:A, time_first:1440526884, time_last:1535919774, count:18 rrname:www.example.org, rrdata:93.184.216.34, rrtype:A, time_first:1440723354, time_last:1527899734, count:18 rrname:www.example.com, rrdata:93.184.216.34, rrtype:A, time_first:1441108386, time_last:1535371292, count:18 rrname:www.example.net, rrdata:93.184.216.34, rrtype:A, time_first:1436692690, time_last:1527900018, count:18 rrname:imrek.org, rrdata:93.184.216.34, rrtype:A, time_first:1440827324, time_last:1508103356, count:18 rrname:example.net, rrdata:93.184.216.34, rrtype:A, time_first:1440526998, time_last:1533895598, count:18 … - IdenGfy all IPs for each domain (Forward DNS query) Query: hIps://freeapi.robtex.com/pdns/forward/example.com Response: rrname:example.com, rrdata:a.iana-servers.net, rrtype:NS, time_first:1246678898, time_last:1535952170, count:2 rrname:example.com, rrdata:b.iana-servers.net, rrtype:NS, time_first:1246678898, time_last:1535952170, count:2 rrname:example.com, rrdata:2606:280::::::1946, rrtype:AAAA, time_first:1441278890, time_last:1535952170, count:18 rrname:example.com, rrdata:93.184.216.34, rrtype:A, time_first:1441278890, time_last:1535952170, count:18 rrname:example.com, rrdata:208.77.188.166, rrtype:A, time_first:1246678898, time_last:1246678898, count:1 19

  21. Joining Jo ining everything thing togethe ther r Browser extension with real users RIPE IPmap CorrecGon Mapping Table - example.com Script Domain IP & tracker.com 213.121.66.99 hIps://ipmap.ripe.net/ analyGcs.com 130.12.88.110 ABP Parser … … Source country 3 rd party flow Mapping IP(s) Filtering DesGnaGon country Spain hIp://tracker.com 213.121.66.99 Ad + Tracking Germany France hIp://example.com 145.100.210.5 Clean USA … … … … … 20

  22. Results - EU 28 member states confinement level MaxMind geo-locaGon 21

  23. Results - EU 28 member states confinement level MaxMind geo-locaGon RIPE IPmap geo-locaGon 22

  24. Wha What abo t about sensi)v ut sensi)ve w e web ebsit sites? es? SensiGve categories as defined by GDPR GeneGc & biometric data Race & Ethnicity PoliGcal beliefs Religion Health Sexual OrientaGon 23

  25. Re Results - Sensi)ve websites based on EU 28 users SensiGve Category DesGnaGon ConGnent 24

  26. Ch Challen enges es 1. How to effecGvely detect ad and tracking related domains in the wild ? 2. How to ensure correct geoloca7on of infrastructure servers ? 3. How to ensure that all possible ad and tracking servers are observed ? 4. How to maintain a balance between accuracy and scalability ? 25

  27. Scaling up – From real users to ISP flows 26

  28. up – Fr Sc Scaling aling up From m real users to ISP fl flows Datasets ISPs Datasets List of Ad + Tracking IPs + < 28k IPs 27

Recommend

Cross Border Xpress Welcome to CBX https://www.youtube.com/watch?v=gDWTvwgyOD4 2 Cross Border

Cross Border Xpress Welcome to CBX https://www.youtube.com/watch?v=gDWTvwgyOD4 2 Cross Border

Cross Border Xpress Welcome to CBX https://www.youtube.com/watch?v=gDWTvwgyOD4 2 Cross Border Xpress What is Cross Border Xpress? Market Potential Opportunity Areas New Services Added 3 What is Cross Border Xpress? An airport check in

464 views • 29 slides
Cross- Cross-Border R&amp;D in Border R&amp;D in China China Und Understand rstanding

Cross- Cross-Border R&amp;D in Border R&amp;D in China China Und Understand rstanding

1 2 Cross- Cross-Border R&amp;D in Border R&amp;D in China China Und Understand rstanding ing the Reg e Regulat latory ry Ch Challenges allenges 1 Pane Panelists lists Moderator: Paul A. Ste ul A. Stewar art, t,

471 views • 7 slides
MALAYSIA IN CROSS BORDER RAIL INITIATIVE 20 DECEMBER 2017 Content: i. Cross Border Railway

MALAYSIA IN CROSS BORDER RAIL INITIATIVE 20 DECEMBER 2017 Content: i. Cross Border Railway

TU MINISTRY OF TRANSPORT MALAYSIA MALAYSIA IN CROSS BORDER RAIL INITIATIVE 20 DECEMBER 2017 Content: i. Cross Border Railway Facilities ii. Cross Border Railway Arrangement iii. ASEAN Cross Border Initiative iv. Other Cross Border

466 views • 32 slides
border opportunities James McTavish NSW Cross-Border Commissioner Luke Wilson Victorian Cross

border opportunities James McTavish NSW Cross-Border Commissioner Luke Wilson Victorian Cross

Releasing cross border opportunities James McTavish NSW Cross-Border Commissioner Luke Wilson Victorian Cross Border Commissioner Wentworth 1,500 NSW major towns and cities: ~71,900 Mildura (up from ~66,600 in 2011) 32,800 Tooleybuc

207 views • 3 slides
Cross border experiences Tim Oosterbaan, CEO &amp; founder Intrastores Cross border Online

Cross border experiences Tim Oosterbaan, CEO &amp; founder Intrastores Cross border Online

Cross border experiences Tim Oosterbaan, CEO &amp; founder Intrastores Cross border Online Retailer Salesupply Enabling global E-commerce About Intrastores Founded in 2008 with a budget of 1000 euro Started in NL, selling

571 views • 13 slides
New innovative cross border developments for SMEs The case study Mechatronics Cross Border

New innovative cross border developments for SMEs The case study Mechatronics Cross Border

New innovative cross border developments for SMEs The case study Mechatronics Cross Border Co-operation Best Practice and Future Opportunities from across the European Union, Co. Meath, Ireland, 13 June 2013 Jan Oostenbrink, Deputy

406 views • 11 slides
Cross Border Technologies - The technology licensing company - Cross Border Technologies

Cross Border Technologies - The technology licensing company - Cross Border Technologies

Company Presentation Cross Border Technologies - The technology licensing company - Cross Border Technologies Munich Yokohama Seoul Table of contents Introduction Our company profile Services we offer Our

349 views • 31 slides
Integration of cross-border transport infrastructure TEN-T strategy on large cross- border

Integration of cross-border transport infrastructure TEN-T strategy on large cross- border

Integration of cross-border transport infrastructure TEN-T strategy on large cross- border cooperation projects Gudrun Schulze, Team leader, DG Mobility and Transport, European Commission Luxemburg, 12 November 2015 Transport Cooperation for

172 views • 14 slides
Deputy Director, Centre for Cross Border Studies MISSION The Centre for Cross Border Studies

Deputy Director, Centre for Cross Border Studies MISSION The Centre for Cross Border Studies

Dr Anthony Soares Deputy Director, Centre for Cross Border Studies MISSION The Centre for Cross Border Studies empowers citizens and builds capacity and capability for cooperation across sectors and jurisdictional boundaries on the island of

766 views • 42 slides
Analysis on the cross-border trade processes and recommended reference maps for cross-border

Analysis on the cross-border trade processes and recommended reference maps for cross-border

Analysis on the cross-border trade processes and recommended reference maps for cross-border paperless trade. March 2015 Simplified International Supply Chain International Supply Chain with Cross-Border Transactions Documents crossing

938 views • 48 slides
Shopping without borders Cross-border shopping by Zimbabweans in South Africas border town of

Shopping without borders Cross-border shopping by Zimbabweans in South Africas border town of

Shopping without borders Cross-border shopping by Zimbabweans in South Africas border town of Musina Nedson Pophiwa, HSRC-DGSD Programme/ PhD UKZN Economic History 10 November 2015 1 Definition of CBS Cross-border shopping is

404 views • 24 slides
Thorsten Beck Regulatory cooperation in cross-border banking During 2008 crisis: asymmetry

Thorsten Beck Regulatory cooperation in cross-border banking During 2008 crisis: asymmetry

REG EGULA ULATOR ORY Y COO OOPERA PERATI TION ON ON ON CROSS OSS-BORDER BORDER BA BANK NKING ING PR PROG OGRESS RESS AND ND CHALLENGES LLENGES Thorsten Beck Regulatory cooperation in cross-border banking During 2008

457 views • 22 slides
The challenges of capacity building in cross- border cooperation and the TEIN / AEBR/ MOT

The challenges of capacity building in cross- border cooperation and the TEIN / AEBR/ MOT

The challenges of capacity building in cross- border cooperation and the TEIN / AEBR/ MOT partnership approach Dr. Joachim Beck Cross-border territories: the horizontal dimension of European integration Border regions represent 40% of EU

220 views • 11 slides
Company Presentation Cross Border Technologies - The technology licensing company - Cross Border

Company Presentation Cross Border Technologies - The technology licensing company - Cross Border

Company Presentation Cross Border Technologies - The technology licensing company - Cross Border Technologies Munich Yokohama Seoul Table of contents Introduction Our company profile Services we offer Our

690 views • 30 slides
Regional Trade Agreement Facilitate Cross-border E-commerce Cross-border E-commerce serves as

Regional Trade Agreement Facilitate Cross-border E-commerce Cross-border E-commerce serves as

E-Commerce: How can Regional Trade Agreement Facilitate Cross-border E-commerce Cross-border E-commerce serves as an engine of innovation and brings enormous opportunities for economic and social development by fostering innovation,

277 views • 13 slides
Global Payment In Init itiative (G (GPI) The future of cross-border payments (SWIFT) London May

Global Payment In Init itiative (G (GPI) The future of cross-border payments (SWIFT) London May

Global Payment In Init itiative (G (GPI) The future of cross-border payments (SWIFT) London May 2017 Franois Masquelier, Honorary Chairman EACT Way to faster cross-border payments? 2 Cross-border payments are stil ill too slo low !

327 views • 18 slides
Cross-Border Cooperation?: The Central Border Region example Working with our Neighbours

Cross-Border Cooperation?: The Central Border Region example Working with our Neighbours

What is the Appetite for Cross-Border Cooperation?: The Central Border Region example Working with our Neighbours seminar Shane Campbell, ICBAN, 12/12/2018, Leinster House 1 Cooperation in the Central Border Region Today Addressing

595 views • 20 slides
Cross- border Movement : Thailands Experience Mr. Chitkamon Pondate Chief, Information and

Cross- border Movement : Thailands Experience Mr. Chitkamon Pondate Chief, Information and

Cross- border Movement : Thailands Experience Mr. Chitkamon Pondate Chief, Information and System Development Section State Railway of Thailand Outline Cross-borders Agreements Challenges Cross-border : Thailand - Malaysia Services

441 views • 29 slides
Cross-border mergers and divisions, transfers of seat: Is there a need to legislate? Outline 1.

Cross-border mergers and divisions, transfers of seat: Is there a need to legislate? Outline 1.

Cross-border mergers and divisions, transfers of seat: Is there a need to legislate? Outline 1. The Status quo 2. Cross-border mergers 3. Cross-border divisions 4. Cross-border transfers of seat (conversions) 5. Legislative

389 views • 13 slides
Cros oss-Bor Border C Connected Cit itie ies SMART Borders / Cross-Border Connected Cities

Cros oss-Bor Border C Connected Cit itie ies SMART Borders / Cross-Border Connected Cities

ARI-SON Council Meeting Welcome Reception Cros oss-Bor Border C Connected Cit itie ies SMART Borders / Cross-Border Connected Cities Steve Hamilton, Senior Manager Deloitte Advisory August 23, 2017 THE US-MEXI CO CEO DI ALOGUE |

429 views • 14 slides
Slovenske eleznice, d.o.o. Danube Region Development Cross-border eColaboration Kranj,

Slovenske eleznice, d.o.o. Danube Region Development Cross-border eColaboration Kranj,

Slovenske eleznice, d.o.o. Danube Region Development Cross-border eColaboration Kranj, 21.04.2010 Content 1 Presentation of the Organization from the Cross-border Transactions Perspective 2 Problems &amp; Opportunities In the Current

247 views • 7 slides
Th The challenges of f th the fi first cross-border hospital in in Europe Two healthcare

Th The challenges of f th the fi first cross-border hospital in in Europe Two healthcare

Th The challenges of f th the fi first cross-border hospital in in Europe Two healthcare models under one roof The hospital Cross-border Why? Territorial characteristics Where? In Puigcerd, Catalonia, Spain How? Together: Catalonia

579 views • 41 slides
Controlling the unified portrayal of geospatial cross-border maps W3C workshop on Access Control

Controlling the unified portrayal of geospatial cross-border maps W3C workshop on Access Control

Controlling the unified portrayal of geospatial cross-border maps W3C workshop on Access Control Application Scenarios 17 November 2009 Andreas Matheus Motivation Use Case Disaster management cross border Challenge: Different styling

235 views • 12 slides
Cross-Border Insolvency the Model Law in Australia and the Asia Pacific Andrew Godwin,

Cross-Border Insolvency the Model Law in Australia and the Asia Pacific Andrew Godwin,

Cross-Border Insolvency the Model Law in Australia and the Asia Pacific Andrew Godwin, Melbourne Law School The Commercial Bar Association 7 November 2018 Overview Cross-border insolvency context and approaches Gateways to

230 views • 10 slides

More recommend