Web Privacy — Arvind Narayanan

« Back

Conference	Password policies of most top websites fail to follow best practices Kevin Lee, Sten Sjöberg, Arvind Narayanan. Symposium on Usable Privacy and Security (SOUPS) 2022.	★
Conference	Virtual Classrooms and Real Harms: Remote Learning at US Universities Shaanan Cohney, Ross Teixeira, Anne Kohlbrenner, Arvind Narayanan, Mihir Kshirsagar, Yan Shvartzshnaider, Madelyn Sanfilippo. Symposium on Usable Privacy and Security (SOUPS) 2021.	★
Conference	Privacy Policies over Time: Curation and Analysis of a Million-Document Dataset Ryan Amos, Gunes Acar, Elena Lucherini, Mihir Kshirsagar, Arvind Narayanan, Jonathan Mayer. The Web Conference, 2021.	★
Journal	No boundaries: data exfiltration by third parties embedded on web pages Gunes Acar, Steven Englehardt, Arvind Narayanan. Proceedings on Privacy Enhancing Technologies (PoPETs) 2020. Runner up for the 2020 CNIL-Inria Award for Privacy Protection.	★
Conference	An Empirical Study of Wireless Carrier Authentication for SIM Swaps Kevin Lee, Ben Kaiser, Jonathan Mayer, Arvind Narayanan. Symposium on Usable Privacy and Security (SOUPS) 2020.	★
Conference	Watching You Watch: The Tracking Ecosystem of Over-the-Top TV Streaming Devices Hooman Mohajeri Moghaddam, Gunes Acar, Ben Burgess, Arunesh Mathur, Danny Yuxing Huang, Nick Feamster, Edward W. Felten, Prateek Mittal, Arvind Narayanan. ACM Conference on Computer and Communications Security 2019. Runner up for the Caspar Bowden Award for Outstanding Research in Privacy Enhancing Technologies.	★
Workshop	The Impact of User Location on Cookie Notices (Inside and Outside of the European Union) Rob van Eijk, Hadi Asghari, Philipp Winter, Arvind Narayanan. Workshop on Technology and Consumer Protection (ConPro) 2019.	★
Conference	Characterizing the Use of Browser-Based Blocking Extensions To Prevent Online Tracking Arunesh Mathur, Jessica Vitak, Arvind Narayanan, Marshini Chetty. Symposium on Usable Privacy and Security (SOUPS) 2018.	★
Journal	When the cookie meets the blockchain: Privacy risks of web payments via cryptocurrencies Steven Goldfeder, Harry Kalodner, Dillon Reisman, Arvind Narayanan. Proceedings on Privacy Enhancing Technologies (PoPETs) 2018. Blog post.	★
Journal	I never signed up for this! Privacy implications of email tracking Steven Englehardt, Jeffrey Han, Arvind Narayanan. Proceedings on Privacy Enhancing Technologies (PoPETs) 2018. Blog post.	★
Draft	The future of ad blocking: An analytical framework and new techniques Grant Storey, Dillon Reisman, Jonathan Mayer, Arvind Narayanan. Manuscript, 2017. Blog post.
Workshop	Battery Status Not Included: Assessing Privacy in Web Standards Lukasz Olejnik, Steven Englehardt, Arvind Narayanan. International Workshop on Privacy Engineering 2017. Best paper award.	★
Book chapter	The Princeton Web Transparency and Accountability Project Arvind Narayanan, Dillon Reisman. In "Transparent data mining for Big and Small Data". Editors: Tania Cerquitelli, Daniele Quercia, Frank Pasquale. Springer. 2017.	★
Conference	De-anonymizing Web Browsing Data with Social Networks Jessica Su, Ansh Shukla, Sharad Goel, Arvind Narayanan. World Wide Web Conference 2017.	★
Conference	Online tracking: A 1-million-site measurement and analysis Steven Englehardt, Arvind Narayanan. ACM Conference on Computer and Communications Security, 2016. FPF Privacy Papers for Policy Makers Award.	★
Journal	No Encore for Encore? Ethical Questions for Web-Based Censorship Measurement Arvind Narayanan, Bendert Zevenbergen. Technology Science, 2015.	★
Conference	Cookies that give you away: Evaluating the surveillance implications of web tracking Steven Englehardt, Dillon Reisman, Christian Eubank, Peter Zimmerman, Jonathan Mayer, Arvind Narayanan, Edward Felten. WWW 2015. Blog post.	★
Conference	The Web never forgets: Persistent tracking mechanisms in the wild Gunes Acar, Christian Eubank, Steven Englehardt, Marc Juarez, Arvind Narayanan, Claudia Diaz. ACM Conference on Computer and Communications Security, 2014. Related blog post: The hidden perils of cookie syncing.	★
Workshop	Privacy concerns of implicit secondary factors for web authentication Joseph Bonneau, Edward W. Felten, Prateek Mittal, Arvind Narayanan Adventures in Authentication: WAY Workshop, 2014.	★
Draft	Web Privacy Measurement: Scientific principles, engineering platform, and new results Steven Englehardt, Christian Eubank, Peter Zimmerman, Dillon Reisman, Arvind Narayanan. Manuscript, 2014.
Workshop	Shining the Floodlights on Mobile Web Tracking — A Privacy Survey Christian Eubank, Marcela Melara, Diego Perez-Botero, Arvind Narayanan. Web 2.0 Security & Privacy (W2SP) 2013.	★
Policy	Privacy considerations of online behavioural tracking Claude Castelluccia and Arvind Narayanan. European Network and Information Security Agency (ENISA) expert report, 2012.
Policy	Do Not Track: A Universal Third-Party Web Tracking Opt Out Jonathan Mayer, Arvind Narayanan, Sid Stamm. IETF Internet-Draft, 2011.
Conference	Adnostic: Privacy Preserving Targeted Advertising Vincent Toubiana, Arvind Narayanan, Dan Boneh, Helen Nissenbaum, Solon Barocas. Network and Distributed System Security Symposium 2010.	★

Deconstructing Google’s Excuses on Tracking Protection (with Jonathan Mayer) Aug 23, 2019

CITP’s OpenWPM Privacy Measurement Tool Moves to Mozilla (by Steven Englehardt) Apr 12, 2019

Against Privacy Defeatism: Why Browsers Can Still Stop Fingerprinting Jun 29, 2018

No Boundaries for Facebook Data: Third-party Trackers Abuse Facebook Login (with Steven Englehardt and Gunes Acar) Apr 18, 2018

When the Business Model *Is* the Privacy Violation Apr 12, 2018

Four Cents to Deanonymize: Companies Reverse Hashed Email Addresses (with Gunes Acar and Steven Englehardt) Apr 09, 2018

No Boundaries for Credentials: New Password Leaks to Mixpanel and Session Replay Companies (with Steven Englehardt and Gunes Acar) Feb 26, 2018

Website Operators Are in the Dark About Privacy Violations by Third-party Scripts (with Steven Englehardt and Gunes Acar) Jan 12, 2018

No Boundaries for User Identities: Web Trackers Exploit Browser Login Managers (with Steven Englehardt and Gunes Acar) Dec 27, 2017

No Boundaries: Exfiltration of Personal Data by Session-replay Scripts (with Steven Englehardt and Gunes Acar) Nov 15, 2017

Web Census Notebook: A New Tool for Studying Web Privacy Jun 09, 2017

The Thinning Line Between Commercial and Government Surveillance (with Dillon Reisman) May 15, 2017

Don’t Be Comforted by Internet Providers' Promises to Protect Your Privacy (with Sharad Goel) Apr 04, 2017

All the News That’s Fit to Change: Insights Into a Corpus of 2.5 Million News Headlines (Dillon Reisman) Sep 14, 2016

A Peek at A/B Testing in the Wild (Dillon Reisman) May 25, 2016

The Web Privacy Problem Is a Transparency Problem: Introducing the OpenWPM Measurement Tool (Steven Englehardt) Jan 14, 2016

Do Privacy Studies Help? A Retrospective Look at Canvas Fingerprinting (Steven Englehardt) Jan 12, 2016

Verizon’s Tracking Header: Can They Do Better? (Steven Englehardt) Jan 14, 2015

The Hidden Perils of Cookie Syncing (Steven Englehardt) Aug 07, 2014

Cognitive Disconnect: Understanding Facebook Connect Login Permissions (Nicky Robinson) Jun 18, 2014

Web Measurement for Fairness and Transparency Nov 25, 2013

Online price discrimination: Conspicuous by its absence 08 Jan 2013

New Developments in Deanonymization 17 Dec 2012

Tracking Not Required: Behavioral Targeting 11 Jun 2012

Web Privacy Measurement: Genesis of a Community 04 Jun 2012

There Is No Such Thing as Anonymous Online Tracking Jul 28, 2011

Privacy and the Market for Lemons, or How Websites Are Like Used Cars 18 Mar 2011

One Click Frauds and Identity Leakage: Two Trends on a Collision Course 22 Feb 2011

Facebook’s Instant Personalization: An Analysis of Fundamental Privacy Flaws 28 Sep 2010

“Do Not Track” Explained 20 Sep 2010

Yet Another Identity Stealing Bug. Will Creeping Normalcy be the Result? 01 Jun 2010

History Stealing: It’s All Shades of Grey 09 Mar 2010

Google Docs Identity Leak Bug Fixed 23 Feb 2010

How Google Docs Leaks Your Identity 22 Feb 2010

Ubercookies Part 2: History Stealing meets the Social Web 19 Feb 2010

Cookies, Supercookies and Ubercookies: Stealing the Identity of Web Visitors 18 Feb 2010

Web privacy	How to Protect Your Privacy When Using Online Therapy Apps NPR, Jul 18, 2022
Web privacy	Passwords: 75 Per Cent of the World's Top Websites Allow Bad Choices New Scientist, Jun 23, 2022

Web Privacy — Arvind Narayanan

Papers

Blog posts

Press