[tor-talk] Profiling Tor users via keystrokes
Seth
list at sysfu.com
Fri Jul 31 03:15:04 UTC 2015
On Thu, 30 Jul 2015 16:36:15 -0700, flapflap <flapflap at riseup.net> wrote:
> http://arstechnica.com/security/2015/07/how-the-way-you-type-can-shatter-anonymity-even-on-tor/
> says that apparently it's possible to deanonymise Tor users by analysing
> their keystrokes in input fields of websites.
>
> Is it valid to assume that such a technique is possible to be deployed
> by, for example, cloudflare? (needs JavaScript, has an input field)
> (or is it required for learning to always enter the same text by the
> same user?)
>
> Is there need for modifications in the Tor Browser Bundle/upstream
> Firefox?
Back in the late 90's there was a company in the Seattle area called
Biopassword [1] that sold a biometric typing cadence two factor
authentication product for Windows systems. I demoed it and it was eerily
effective.
Can only imagine where the technology is now.
[1] https://web.archive.org/web/20010201063600/http://www.biopassword.com/
More information about the tor-talk
mailing list