Need a mechanism to limit gyroscope data leakage for fingerprinting
Categories
(GeckoView :: General, enhancement, P3)
Tracking
(Not tracked)
People
(Reporter: colee, Unassigned)
References
(Blocks 1 open bug)
Details
(Whiteboard: [fingerprinting])
Our site permissions model does not currently seem to cover the gyroscope sensor. At least one user on Fenix 1.0 brought up the fact that the gyroscope can be used for browser fingerprinting. There should be some API mechanism for apps to control the gyro and similar onSensorChanged events.
There's a bunch of stuff exposed right now that can be used for fingerprinting. The mitigations for these are extensive. I'm not sure if it will make much sense to plug a single hole here. Ethan, maybe you or someone on your team has some guidance?
|
||
Comment 2•5 years ago
|
||
(In reply to James Willcox (:snorp) (jwillcox@mozilla.com) (he/him) from comment #1)
There's a bunch of stuff exposed right now that can be used for fingerprinting. The mitigations for these are extensive. I'm not sure if it will make much sense to plug a single hole here. Ethan, maybe you or someone on your team has some guidance?
We have implemented a lot of anti-fingerprinting patches to mitigate browser fingerprinting. All of them are being tracked under the meta bug 1329996 and controlled by a single pref "privacy.resistFingerprinting", which is off by default on Firefox.
Enabling resistFingerprinting will cause breakages. Even though we have also fixed a bunch of breakages (meta bug 1507517), there're still many remaining ones that would hamper the user experience.
I am wondering if we can test resistFingerprinting on GeckoView by simply flipping the pref.
|
|
||
Comment 3•5 years ago
|
||
BTW, we have a wiki page which provides an overview of fingerprinting resistance features.
https://wiki.mozilla.org/Security/Fingerprinting
|
||
Comment 4•5 years ago
|
||
This bug refers to the default behavior of the browser and not the resist fingerprinting setting.
At present we haven't figured out a path forward for this, although it is on our radar...
|
||
Comment 6•5 years ago
|
||
P3 until we have a plan for addressing fingerprinting outside resistFingerprinting mode on mobile.
|
||
Comment 7•5 years ago
|
||
Which of the Sensor APIs are supported in Fenix? It would be good to spoof or disable these when the resistFingerprinting pref is enabled.
|
|
||
Comment 8•5 years ago
|
||
(In reply to Arthur Edelstein [:arthur] from comment #7)
Which of the Sensor APIs are supported in Fenix? It would be good to spoof or disable these when the resistFingerprinting pref is enabled.
AFAIK, GeckoView (and thus Fenix) supports all the same sensor APIs as desktop Firefox. I would expect the resistFingerprinting pref checks in core Gecko to work in GeckoView on Android.
|
||
Updated•2 years ago
|
Description
•