all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Pool-Party: Exploiting Browser Resource Pools as Side-Channels for Web Tracking. (arXiv:2112.06324v2 [cs.CR] UPDATED)

Add to bookmarks
Oct. 14, 2022, 1:20 a.m. | Peter Snyder, Soroush Karami, Arthur Edelstein, Benjamin Livshits, Hamed Haddadi

cs.CR updates on arXiv.org arxiv.org

We identify class of covert channels in browsers that are not mitigated by
current defenses, which we call "pool-party" attacks. Pool-party attacks allow
sites to create covert channels by manipulating limited-but-unpartitioned
resource pools. These class of attacks have been known, but in this work we
show that they are both more prevalent, more practical for exploitation, and
allow exploitation in more ways, than previously identified. These covert
channels have sufficient bandwidth to pass cookies and identifiers across site
boundaries under …

browser party tracking web web tracking

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

Shake to Leak: Fine-tuning Diffusion Models Can Amplify the Generative Privacy Risk 16 hours ago | arxiv.org
amplify arxiv can cs.cr +8
Delocate: Detection and Localization for Deepfake Videos with Randomly-Located Tampered Traces 16 hours ago | arxiv.org
address arxiv cs.cr cs.cv +12
Artwork Protection Against Neural Style Transfer Using Locally Adaptive Adversarial Color Attack 16 hours ago | arxiv.org
adversarial artwork arxiv attack +17
Difficulties in Dynamic Analysis of Drone Firmware and Its Solutions 16 hours ago | arxiv.org
advancement analysis applications arxiv +22
Circuit complexity and functionality: a thermodynamic perspective 16 hours ago | arxiv.org
arxiv complexity computation computational +14
On the Two-sided Permutation Inversion Problem 16 hours ago | arxiv.org
access arxiv challenge complexity +10
Versatile Backdoor Attack with Visible, Semantic, Sample-Specific, and Compatible Triggers 16 hours ago | arxiv.org
arxiv attack attacks backdoor +19
Interpretation of Neural Networks is Susceptible to Universal Adversarial Perturbations 16 hours ago | arxiv.org
adversarial algorithms application arxiv +19
Quantum copy-protection of compute-and-compare programs in the quantum random oracle model 16 hours ago | arxiv.org
arxiv can ccc compute +13

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Advisory Red Consultant

@ Security Risk Advisors | Philadelphia, Pennsylvania, United States
View on infosec-jobs.com

Cyber Business Transformation Change Analyst

@ National Grid | Warwick, GB, CV34 6DA
View on infosec-jobs.com

Cyber Security Analyst

@ Ford Motor Company | Mexico City, MEX, Mexico
View on infosec-jobs.com

Associate Administrator, Cyber Security Governance (Fort Myers)

@ Millennium Physician Group | Fort Myers, FL, United States
View on infosec-jobs.com

Embedded GSOC Lead Operator, Events

@ Sibylline Ltd | Seattle, WA, United States
View on infosec-jobs.com
View more jobs