How your smartphone's battery life can be used to invade your privacy - eBay Suspended & PayPal Limited Forums
eBay Suspension & PayPal Limited Forums  
Join Today
Register Subscribe
     

Registration is fast, simple and absolutely free so please, join our community today!


Go Back   Home > General Discussions (Off-Topic) > Everything Else

Everything Else For off-topic conversation. The rules are relaxed in here, but play nice!

Reply
 
Thread Tools
  #1  
Old 08-04-2015
aspkin's Avatar
Administrator
 
Join Date: Jan 2007
Posts: 11,372
Thanks: 3,072
Thanked 4,228 Times in 1,792 Posts
Activity: 4%
Longevity: 100%
iTrader: (24)
Default How your smartphone's battery life can be used to invade your privacy

A group of researchers have demonstrated how to track users with nothing more than their remaining battery power, which could compromise privacy

A little-known feature of the HTML5 specification means that websites can find out how much battery power a visitor has left on their laptop or smartphone – and now, security researchers have warned that that information can be used to track browsers online.

The battery status API is currently supported in the Firefox, Opera and Chrome browsers, and was introduced by the World Wide Web Consortium (W3C, the organisation that oversees the development of the web’s standards) in 2012, with the aim of helping websites conserve users’ energy. Ideally, a website or web-app can notice when the visitor has little battery power left, and switch to a low-power mode by disabling extraneous features to eke out the most usage.

W3C’s specification explicitly frees sites from needing to ask user permission to discover they remaining battery life, arguing that “the information disclosed has minimal impact on privacy or fingerprinting, and therefore is exposed without permission grants”. But in a new paper from four French and Belgian security researchers, that assertion is questioned.

The researchers point out that the information a website receives is surprisingly specific, containing the estimated time in seconds that the battery will take to fully discharge, as well the remaining battery capacity expressed as a percentage. Those two numbers, taken together, can be in any one of around 14 million combinations, meaning that they operate as a potential ID number. What’s more, those values only update around every 30 seconds, however, meaning that for half a minute, the battery status API can be used to identify users across websites.

For instance, if a user visits a website in Chrome’s private browsing mode using a VPN, the website should not be able to link them to a subsequent visit with private browsing and the VPN off. But the researchers warn that that may no longer work: “Users who try to revisit a website with a new identity may use browsers’ private mode or clear cookies and other client side identifiers. When consecutive visits are made within a short interval, the website can link users’ new and old identities by exploiting battery level and charge/discharge times. The website can then reinstantiate users’ cookies and other client side identifiers, a method known as respawning.”

Worse still, on some platforms, the researchers found that it is possible to determine the maximum battery capacity of the device with enough queries, creating a semi-permanent metric to compare devices.

How your smartphone's battery life can be used to invade your privacy | Technology | The Guardian

Another interesting article on the subject: http://techcrunch.com/2015/08/04/bat...ack-web-users/

And a demo websites showing off your battery status: Battery Status API Demo by Aurelio De Rosa
__________________

Last edited by aspkin; 08-04-2015 at 07:32 PM.
Reply With Quote
The Following 2 Users Say Thank You to aspkin For This Useful Post:
easy.bake.oven (08-05-2015), rsot (08-05-2015)
The complete step-by-step guide to get back to selling today!

  #2  
Old 08-04-2015
empirestate's Avatar
Banned
 
Join Date: Mar 2015
Posts: 3,138
Thanks: 44
Thanked 667 Times in 486 Posts
Activity: 0%
Longevity: 52%
iTrader: (1)
Default Re: How your smartphone's battery life can be used to invade your privacy

So I'm good as long as I don't use batteries? I usually use my desktop computer?
BTW, guess mode is better if you don't want to leave any footprints on your computer, just saying...
Reply With Quote
  #3  
Old 08-04-2015
slokor's Avatar
Executive [VIP]
 
Join Date: Aug 2008
Posts: 9,930
Thanks: 380
Thanked 2,659 Times in 1,966 Posts
Activity: 8%
Longevity: 91%
iTrader: (90)
Default Re: How your smartphone's battery life can be used to invade your privacy

Interesting bit of news.
Dont know how many stealthers that would impact since I dont see too many people practice full stealth of multiple accounts from one single mobile device. And in order to track people with this method the website in question - in this case ebay and paypal - would have to invest in developing the methodology to do so. Doubt theyll invest in it.
The future though seems more complicated as Im sure this will be further developed and abused as a method of mass tracking.
__________________
AGED SUPER HIGH LIMIT ACCOUNTS: 10,000/$1,000,000 and 25,000/$500,000
NEW LOWER PRICING!
ENTER MY STORE OR CONTACT ME
Reply With Quote
  #4  
Old 08-05-2015
123's Avatar
123 123 is offline
Executive [VIP]
 
Join Date: Jul 2010
Posts: 3,165
Thanks: 390
Thanked 1,244 Times in 705 Posts
Activity: 0%
Longevity: 79%
iTrader: (631)
Default Re: How your smartphone's battery life can be used to invade your privacy

Do most of stealth work on my desktop, but still very interesting, thanks for sharing!
Reply With Quote
  #5  
Old 08-05-2015
yankee's Avatar
Executive [VIP]
 
Join Date: Nov 2013
Posts: 8,983
Thanks: 2,744
Thanked 3,108 Times in 2,282 Posts
Activity: 0%
Longevity: 60%
iTrader: (2)
Default Re: How your smartphone's battery life can be used to invade your privacy

Very interesting
Reply With Quote
Reply



Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Long Lasting Battery Laptops MM78 Everything Else 6 12-27-2018 10:38 PM
Have a weird little Netbook that won't boot with a C-Mos battery. Problem?. Athletichunta eBay Tracking 3 01-24-2014 02:59 PM


Aspkin Group

All times are GMT -5. The time now is 04:52 AM.


Stop the guessing games and learn how you can quickly and easily get back on eBay today!
Read the best selling step-by-step eBay Suspension guide eBay Stealth!
Amazon Suspension? Read Amazon Ghost to get back on Amazon!
vBulletin® Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Ad Management by RedTyger
no new posts

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58