[tor-talk] Profiling Tor users via keystrokes

Seth list at sysfu.com
Fri Jul 31 03:15:04 UTC 2015

On Thu, 30 Jul 2015 16:36:15 -0700, flapflap <flapflap at riseup.net> wrote:
> http://arstechnica.com/security/2015/07/how-the-way-you-type-can-shatter-anonymity-even-on-tor/
> says that apparently it's possible to deanonymise Tor users by analysing
> their keystrokes in input fields of websites.
> Is it valid to assume that such a technique is possible to be deployed
> by, for example, cloudflare? (needs JavaScript, has an input field)
> (or is it required for learning to always enter the same text by the
> same user?)
> Is there need for modifications in the Tor Browser Bundle/upstream  
> Firefox?

Back in the late 90's there was a company in the Seattle area called  
Biopassword [1] that sold a biometric typing cadence two factor  
authentication product for Windows systems. I demoed it and it was eerily  

Can only imagine where the technology is now.

[1] https://web.archive.org/web/20010201063600/http://www.biopassword.com/

More information about the tor-talk mailing list