zenon/bachelorarbeit
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Include package for sideways tables

Browse Source
This commit is contained in:
Tobias Eidelpes 2020-07-08 11:33:15 +02:00
parent 65821a5139
commit c4a338a5df
2 changed files with 13 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
references.bib
View File

@ -1360,6 +1360,18 @@ The goal of the DOM specification is to define a programmatic interface for XML
abstract = {Social networking sites such as Facebook, LinkedIn, and Xing have been reporting exponential growth rates and have millions of registered users. In this paper, we introduce a novel de-anonymization attack that exploits group membership information that is available on social networking sites. More precisely, we show that information about the group memberships of a user (i.e., the groups of a social network to which a user belongs) is sufficient to uniquely identify this person, or, at least, to significantly reduce the set of possible candidates. That is, rather than tracking a user's browser as with cookies, it is possible to track a person. To determine the group membership of a user, we leverage well-known web browser history stealing attacks. Thus, whenever a social network user visits a malicious website, this website can launch our de-anonymization attack and learn the identity of its visitors. The implications of our attack are manifold, since it requires a low effort and has the potential to affect millions of social networking users. We perform both a theoretical analysis and empirical measurements to demonstrate the feasibility of our attack against Xing, a medium-sized social network with more than eight million members that is mainly used for business relationships. Furthermore, we explored other, larger social networks and performed experiments that suggest that users of Facebook and LinkedIn are equally vulnerable.}
}
@inproceedings{xuUCognitoPrivateBrowsing2015,
title = {{{UCognito}}: {{Private Browsing}} without {{Tears}}},
shorttitle = {{{UCognito}}},
booktitle = {Proceedings of the 22nd {{ACM SIGSAC Conference}} on {{Computer}} and {{Communications Security}}},
author = {Xu, Meng and Jang, Yeongjin and Xing, Xinyu and Kim, Taesoo and Lee, Wenke},
year = {2015},
month = oct,
pages = {438--449},
abstract = {While private browsing is a standard feature, its implementation has been inconsistent among the major browsers. More seriously, it often fails to provide the adequate or even the intended privacy protection. For example, as shown in prior research, browser extensions and add-ons often undermine the goals of private browsing. In this paper, we first present our systematic study of private browsing. We developed a technical approach to identify browser traces left behind by a private browsing session, and showed that Chrome and Firefox do not correctly clear some of these traces. We analyzed the source code of these browsers and discovered that the current implementation approach is to decide the behaviors of a browser based on the current browsing mode (i.e., private or public); but such decision points are scattered throughout the code base. This implementation approach is very problematic because developers are prone to make mistakes given the complexities of browser components (including extensions and add-ons). Based on this observation, we propose a new and general approach to implement private browsing. The main idea is to overlay the actual filesystem with a sandbox filesystem when the browser is in private browsing mode, so that no unintended leakage is allowed and no persistent modification is stored. This approach requires no change to browsers and the OS kernel because the layered sandbox filesystem is implemented by interposing system calls. We have implemented a prototype system called Ucognito on Linux. Our evaluations show that Ucognito, when applied to Chrome and Firefox, stops all known privacy leaks identified by prior work and our current study. More importantly, Ucognito incurs only negligible performance overhead: e.g., 0\%-2.5\% in benchmarks for standard JavaScript and webpage loading.},
series = {{{CCS}} '15}
}
@misc{youtubeengineeringYouTubeNowDefaults2015,
title = {{{YouTube}} Now Defaults to {{HTML5}} {$<$}video{$>$}},
author = {YouTube Engineering},

1
thesis.tex
View File

@ -22,6 +22,7 @@
\usepackage{todonotes} % Provides tooltip-like todo notes.
\usepackage{listings}
\usepackage{minted}
\usepackage{rotating}
\usepackage[numbers]{natbib}
\usepackage{hyperref} % Enables cross linking in the electronic document version. This package has to be included second to last.
\usepackage[acronym,toc]{glossaries} % Enables the generation of glossaries and lists fo acronyms. This package has to be included last.