TY - JOUR
T1 - Utilizing web trackers for sybil defense
AU - Flores, Marcel
AU - Kahn, Andrew
AU - Warrior, Marc
AU - Mislove, Alan
AU - Kuzmanovic, Aleksandar
N1 - Publisher Copyright:
© 2021 Association for Computing Machinery.
PY - 2021/5
Y1 - 2021/5
N2 - User tracking has become ubiquitous practice on the Web, allowing services to recommend behaviorally targeted content to users. In this article, we design Alibi, a system that utilizes such readily available personalized content, generated by recommendation engines in real time, as a means to tame Sybil attacks. In particular, by using ads and other tracker-generated recommendations as implicit user “certificates,” Alibi is capable of creating meta-profiles that allow for rapid and inexpensive validation of users’ uniqueness, thereby enabling an Internet-wide Sybil defense service. We demonstrate the feasibility of such a system, exploring the aggregate behavior of recommendation engines on the Web and demonstrating the richness of the meta-profile space defined by such inputs. We further explore the fundamental properties of such meta-profiles, i.e., their construction, uniqueness, persistence, and resilience to attacks. By conducting a user study, we show that the user meta-profiles are robust and show important scaling effects. We demonstrate that utilizing even a moderate number of popular Web sites empowers Alibi to tame large-scale Sybil attacks.
AB - User tracking has become ubiquitous practice on the Web, allowing services to recommend behaviorally targeted content to users. In this article, we design Alibi, a system that utilizes such readily available personalized content, generated by recommendation engines in real time, as a means to tame Sybil attacks. In particular, by using ads and other tracker-generated recommendations as implicit user “certificates,” Alibi is capable of creating meta-profiles that allow for rapid and inexpensive validation of users’ uniqueness, thereby enabling an Internet-wide Sybil defense service. We demonstrate the feasibility of such a system, exploring the aggregate behavior of recommendation engines on the Web and demonstrating the richness of the meta-profile space defined by such inputs. We further explore the fundamental properties of such meta-profiles, i.e., their construction, uniqueness, persistence, and resilience to attacks. By conducting a user study, we show that the user meta-profiles are robust and show important scaling effects. We demonstrate that utilizing even a moderate number of popular Web sites empowers Alibi to tame large-scale Sybil attacks.
KW - Recommendation engines
KW - Sybil attacks
KW - User tracking
UR - http://www.scopus.com/inward/record.url?scp=85106985389&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85106985389&partnerID=8YFLogxK
U2 - 10.1145/3450444
DO - 10.1145/3450444
M3 - Article
AN - SCOPUS:85106985389
SN - 1559-1131
VL - 15
JO - ACM Transactions on the Web
JF - ACM Transactions on the Web
IS - 2
M1 - 8
ER -