Welcome back...
This is a short list of user tracking techniques (based on browser cache poisoning) - which, for example, can be used to revive EverCookie.
Needless to say, this problem isn't new ... and yet, it's still easy to find ways to effectively compromise users' privacy.
- The first one, for majority of browsers, survives full browser cache removal !
- The second and third ones can still be tricky to kill, because of existing bugs in UI related to cache management and used cross-site tracking.
The potential of finding other approaches is also quite significant. Give it a shot...*
POCS:
- XHR Preflight Cache Poisoning
- HTTP 301 Permanent Redirect Cache Poisoning
- Plain SVG Cache Tracking Example
References:
*https://dev.chromium.org/Home/chromium-security/client-identification-mechanisms#TOC-Cached-objects
Author:
Piotr DuszyĆski (@drk1wi) http://duszynski.eu