Canvas Fingerprinting and its Repercussion
Ideally, the websites identify your browser by referring to the cookie, which is a temporary token like element with your recent browsing trends. However, the Canvas fingerprinting tracks and identifies visitors by using HTML5 canvas element instead of the traditional browser cookies. The websites are made to extract data from the HTML elements without the explicit permissions of the users. Firefox 58 is the first major browser to have incorporated a feature that will explicitly ask users for consent before identifying their browsers. With the Fingerprinting in place, the websites are capable of mining information about your version number, operating system, screen resolution, language, list of browser plugins and also the list of fonts you use. As far as Canvas Fingerprinting technique is concerned the browser will be asked to fetch something by using a hidden canvas element. The result is then passed through a hashing function and is ideally stored against an ID. The Fingerprinting technique varies from browser to browser, but the essentials remain the same. More complex the Fingerprinting method, easier it is to mine your browser data, including settings and preferences. Every browser and its settings differ from each other, and this serves as a premise for Canvas Fingerprinting technique. The more customised/personalized your browser is, the easier it is to identify the same. Needless to say, the abuse using Canvas Fingerprinting is on the rise, and the detail of personal data that can be mined from this method is unnerving.
The Other Side
In the meanwhile squashing the Fingerprinting technique in totality is not going to help either. There have been many apps and plugins that use the data from Fingerprinting to better their services. It is for this reason that Firefox has adopted an opt-in approach which will ask permissions from the user before allowing websites to fetch the data from HTML “