From fingerprint to footprint: Revealing physical world privacy leakage by cyberspace cookie logs

Huandong Wang; Chen Gao; Yong Li; Zhi Li Zhang; Depeng Jin

doi:10.1145/3132847.3132998

From fingerprint to footprint: Revealing physical world privacy leakage by cyberspace cookie logs

Huandong Wang, Chen Gao, Yong Li, Zhi Li Zhang, Depeng Jin

Computer Science and Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

12 Scopus citations

Abstract

It is well-known that online services resort to various cookies to track users through users' online service identifiers (IDs) - in other words, when users access online services, various "fingerprints" are left behind in the cyberspace. As they roam around in the physical world while accessing online services via mobile devices, users also leave a series of "footprints" - i.e., hints about their physical locations - in the physical world. This poses a potent new threat to user privacy: one can potentially correlate the "fingerprints" left by the users in the cyberspace with "footprints" left in the physical world to infer and reveal leakage of user physical world privacy, such as frequent user locations or mobility trajectories in the physical world - we refer to this problem as user physical world privacy leakage via user cyberspace privacy leakage. In this paper we address the following fundamental question: what kind - and how much - of user physical world privacy might be leaked if we could get hold of such diverse network datasets even without any physical location information. In order to conduct an in-depth investigation of these questions, we utilize the network data collected via a DPI system at the routers within one of the largest Internet operator in Shanghai, China over a duration of one month. We decompose the fundamental question into the three problems: i) linkage of various online user IDs belonging to the same person via mobility pattern mining; ii) physical location classification via aggregate user mobility patterns over time; and iii) tracking user physical mobility. By developing novel and effective methods for solving each of these problems, we demonstrate that the question of user physical world privacy leakage via user cyberspace privacy leakage is not hypothetical, but indeed poses a real potent threat to user privacy.

Original language	English (US)
Title of host publication	CIKM 2017 - Proceedings of the 2017 ACM Conference on Information and Knowledge Management
Publisher	Association for Computing Machinery
Pages	1209-1218
Number of pages	10
ISBN (Electronic)	9781450349185
DOIs	https://doi.org/10.1145/3132847.3132998
State	Published - Nov 6 2017
Event	26th ACM International Conference on Information and Knowledge Management, CIKM 2017 - Singapore, Singapore Duration: Nov 6 2017 → Nov 10 2017

Publication series

Name	International Conference on Information and Knowledge Management, Proceedings
Volume	Part F131841

Other

Other	26th ACM International Conference on Information and Knowledge Management, CIKM 2017
Country/Territory	Singapore
City	Singapore
Period	11/6/17 → 11/10/17

Bibliographical note

Funding Information:
This work is supported by research fund of Tsinghua University -Tencent Joint Laboratory for Internet Innovation Technology, in part by US DTRA grant HDTRA1-14-1-0040, DoD ARO MURI Award W911NF-12-1-0385, and NSF grant CNS-1411636.

Keywords

Cookie
Cyber-physical systems
Privacy
Trajectories

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

Access

10.1145/3132847.3132998

OpenUrl availability

Full text

Cite this

Wang, H., Gao, C., Li, Y., Zhang, Z. L., & Jin, D. (2017). From fingerprint to footprint: Revealing physical world privacy leakage by cyberspace cookie logs. In CIKM 2017 - Proceedings of the 2017 ACM Conference on Information and Knowledge Management (pp. 1209-1218). (International Conference on Information and Knowledge Management, Proceedings; Vol. Part F131841). Association for Computing Machinery. https://doi.org/10.1145/3132847.3132998

From fingerprint to footprint: Revealing physical world privacy leakage by cyberspace cookie logs. / Wang, Huandong; Gao, Chen; Li, Yong et al.
CIKM 2017 - Proceedings of the 2017 ACM Conference on Information and Knowledge Management. Association for Computing Machinery, 2017. p. 1209-1218 (International Conference on Information and Knowledge Management, Proceedings; Vol. Part F131841).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Wang, H, Gao, C, Li, Y, Zhang, ZL & Jin, D 2017, From fingerprint to footprint: Revealing physical world privacy leakage by cyberspace cookie logs. in CIKM 2017 - Proceedings of the 2017 ACM Conference on Information and Knowledge Management. International Conference on Information and Knowledge Management, Proceedings, vol. Part F131841, Association for Computing Machinery, pp. 1209-1218, 26th ACM International Conference on Information and Knowledge Management, CIKM 2017, Singapore, Singapore, 11/6/17. https://doi.org/10.1145/3132847.3132998

Wang H, Gao C, Li Y, Zhang ZL, Jin D. From fingerprint to footprint: Revealing physical world privacy leakage by cyberspace cookie logs. In CIKM 2017 - Proceedings of the 2017 ACM Conference on Information and Knowledge Management. Association for Computing Machinery. 2017. p. 1209-1218. (International Conference on Information and Knowledge Management, Proceedings). doi: 10.1145/3132847.3132998

Wang, Huandong ; Gao, Chen ; Li, Yong et al. / From fingerprint to footprint : Revealing physical world privacy leakage by cyberspace cookie logs. CIKM 2017 - Proceedings of the 2017 ACM Conference on Information and Knowledge Management. Association for Computing Machinery, 2017. pp. 1209-1218 (International Conference on Information and Knowledge Management, Proceedings).

@inproceedings{01548b8f56be40b6b17e551949ba8db2,

title = "From fingerprint to footprint: Revealing physical world privacy leakage by cyberspace cookie logs",

abstract = "It is well-known that online services resort to various cookies to track users through users' online service identifiers (IDs) - in other words, when users access online services, various {"}fingerprints{"} are left behind in the cyberspace. As they roam around in the physical world while accessing online services via mobile devices, users also leave a series of {"}footprints{"} - i.e., hints about their physical locations - in the physical world. This poses a potent new threat to user privacy: one can potentially correlate the {"}fingerprints{"} left by the users in the cyberspace with {"}footprints{"} left in the physical world to infer and reveal leakage of user physical world privacy, such as frequent user locations or mobility trajectories in the physical world - we refer to this problem as user physical world privacy leakage via user cyberspace privacy leakage. In this paper we address the following fundamental question: what kind - and how much - of user physical world privacy might be leaked if we could get hold of such diverse network datasets even without any physical location information. In order to conduct an in-depth investigation of these questions, we utilize the network data collected via a DPI system at the routers within one of the largest Internet operator in Shanghai, China over a duration of one month. We decompose the fundamental question into the three problems: i) linkage of various online user IDs belonging to the same person via mobility pattern mining; ii) physical location classification via aggregate user mobility patterns over time; and iii) tracking user physical mobility. By developing novel and effective methods for solving each of these problems, we demonstrate that the question of user physical world privacy leakage via user cyberspace privacy leakage is not hypothetical, but indeed poses a real potent threat to user privacy.",

keywords = "Cookie, Cyber-physical systems, Privacy, Trajectories",

author = "Huandong Wang and Chen Gao and Yong Li and Zhang, {Zhi Li} and Depeng Jin",

note = "Funding Information: This work is supported by research fund of Tsinghua University -Tencent Joint Laboratory for Internet Innovation Technology, in part by US DTRA grant HDTRA1-14-1-0040, DoD ARO MURI Award W911NF-12-1-0385, and NSF grant CNS-1411636.; 26th ACM International Conference on Information and Knowledge Management, CIKM 2017 ; Conference date: 06-11-2017 Through 10-11-2017",

year = "2017",

month = nov,

day = "6",

doi = "10.1145/3132847.3132998",

language = "English (US)",

series = "International Conference on Information and Knowledge Management, Proceedings",

publisher = "Association for Computing Machinery",

pages = "1209--1218",

booktitle = "CIKM 2017 - Proceedings of the 2017 ACM Conference on Information and Knowledge Management",

}

TY - GEN

T1 - From fingerprint to footprint

T2 - 26th ACM International Conference on Information and Knowledge Management, CIKM 2017

AU - Wang, Huandong

AU - Gao, Chen

AU - Li, Yong

AU - Zhang, Zhi Li

AU - Jin, Depeng

N1 - Funding Information: This work is supported by research fund of Tsinghua University -Tencent Joint Laboratory for Internet Innovation Technology, in part by US DTRA grant HDTRA1-14-1-0040, DoD ARO MURI Award W911NF-12-1-0385, and NSF grant CNS-1411636.

PY - 2017/11/6

Y1 - 2017/11/6

N2 - It is well-known that online services resort to various cookies to track users through users' online service identifiers (IDs) - in other words, when users access online services, various "fingerprints" are left behind in the cyberspace. As they roam around in the physical world while accessing online services via mobile devices, users also leave a series of "footprints" - i.e., hints about their physical locations - in the physical world. This poses a potent new threat to user privacy: one can potentially correlate the "fingerprints" left by the users in the cyberspace with "footprints" left in the physical world to infer and reveal leakage of user physical world privacy, such as frequent user locations or mobility trajectories in the physical world - we refer to this problem as user physical world privacy leakage via user cyberspace privacy leakage. In this paper we address the following fundamental question: what kind - and how much - of user physical world privacy might be leaked if we could get hold of such diverse network datasets even without any physical location information. In order to conduct an in-depth investigation of these questions, we utilize the network data collected via a DPI system at the routers within one of the largest Internet operator in Shanghai, China over a duration of one month. We decompose the fundamental question into the three problems: i) linkage of various online user IDs belonging to the same person via mobility pattern mining; ii) physical location classification via aggregate user mobility patterns over time; and iii) tracking user physical mobility. By developing novel and effective methods for solving each of these problems, we demonstrate that the question of user physical world privacy leakage via user cyberspace privacy leakage is not hypothetical, but indeed poses a real potent threat to user privacy.

AB - It is well-known that online services resort to various cookies to track users through users' online service identifiers (IDs) - in other words, when users access online services, various "fingerprints" are left behind in the cyberspace. As they roam around in the physical world while accessing online services via mobile devices, users also leave a series of "footprints" - i.e., hints about their physical locations - in the physical world. This poses a potent new threat to user privacy: one can potentially correlate the "fingerprints" left by the users in the cyberspace with "footprints" left in the physical world to infer and reveal leakage of user physical world privacy, such as frequent user locations or mobility trajectories in the physical world - we refer to this problem as user physical world privacy leakage via user cyberspace privacy leakage. In this paper we address the following fundamental question: what kind - and how much - of user physical world privacy might be leaked if we could get hold of such diverse network datasets even without any physical location information. In order to conduct an in-depth investigation of these questions, we utilize the network data collected via a DPI system at the routers within one of the largest Internet operator in Shanghai, China over a duration of one month. We decompose the fundamental question into the three problems: i) linkage of various online user IDs belonging to the same person via mobility pattern mining; ii) physical location classification via aggregate user mobility patterns over time; and iii) tracking user physical mobility. By developing novel and effective methods for solving each of these problems, we demonstrate that the question of user physical world privacy leakage via user cyberspace privacy leakage is not hypothetical, but indeed poses a real potent threat to user privacy.

KW - Cookie

KW - Cyber-physical systems

KW - Privacy

KW - Trajectories

UR - http://www.scopus.com/inward/record.url?scp=85037375350&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85037375350&partnerID=8YFLogxK

U2 - 10.1145/3132847.3132998

DO - 10.1145/3132847.3132998

M3 - Conference contribution

AN - SCOPUS:85037375350

T3 - International Conference on Information and Knowledge Management, Proceedings

SP - 1209

EP - 1218

BT - CIKM 2017 - Proceedings of the 2017 ACM Conference on Information and Knowledge Management

PB - Association for Computing Machinery

Y2 - 6 November 2017 through 10 November 2017

ER -

From fingerprint to footprint: Revealing physical world privacy leakage by cyberspace cookie logs

Abstract

Publication series

Other

Bibliographical note

Keywords

UN SDGs

Access

OpenUrl availability

Other files and links

Fingerprint

Cite this