{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,4]],"date-time":"2026-05-04T11:08:05Z","timestamp":1777892885471,"version":"3.51.4"},"reference-count":64,"publisher":"Privacy Enhancing Technologies Symposium Advisory Board","issue":"3","license":[{"start":{"date-parts":[[2021,4,27]],"date-time":"2021-04-27T00:00:00Z","timestamp":1619481600000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/creativecommons.org\/licenses\/by-nc-nd\/3.0"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2021,7,1]]},"abstract":"<jats:title>Abstract<\/jats:title>\n               <jats:p>Online tracking is a whack-a-mole game between trackers who build and monetize behavioral user profiles through intrusive data collection, and anti-tracking mechanisms that are deployed as browser extensions, DNS resolvers, or built-in to the browser. As a response to pervasive and opaque online tracking, more and more users adopt anti-tracking measures to preserve their privacy. Consequently, as the information that trackers can gather on users is being curbed, some trackers are looking for ways to evade these protections. In this paper we report on a large-scale longitudinal evaluation of an anti-tracking evasion scheme that leverages CNAME records to include tracker resources in a same-site context, which effectively bypasses anti-tracking measures that rely on fixed hostname-based block lists. Using historical HTTP Archive data we find that this tracking scheme is rapidly gaining traction, especially among high-traffic websites. Furthermore, we report on several privacy and security issues inherent to the technical setup of CNAME-based tracking that we detected through a combination of automated and manual analyses. We find that some trackers are using the technique against the Safari browser, which is known to include strict anti-tracking configurations. Our findings show that websites using CNAME trackers must take extra precautions to avoid leaking sensitive information to third parties.<\/jats:p>","DOI":"10.2478\/popets-2021-0053","type":"journal-article","created":{"date-parts":[[2021,4,29]],"date-time":"2021-04-29T01:49:47Z","timestamp":1619660987000},"page":"394-412","source":"Crossref","is-referenced-by-count":16,"title":["The CNAME of the Game: Large-scale Analysis of DNS-based Tracking Evasion"],"prefix":"10.56553","volume":"2021","author":[{"given":"Yana","family":"Dimova","sequence":"first","affiliation":[{"name":"imec-DistriNet, KU Leuven"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Gunes","family":"Acar","sequence":"additional","affiliation":[{"name":"imec-COSIC, KU Leuven"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Lukasz","family":"Olejnik","sequence":"additional","affiliation":[{"name":"European Data Protection Supervisor, independent researcher"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Wouter","family":"Joosen","sequence":"additional","affiliation":[{"name":"imec-DistriNet"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Tom","family":"Van Goethem","sequence":"additional","affiliation":[{"name":"imec-DistriNet"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"35752","published-online":{"date-parts":[[2021,4,27]]},"reference":[{"key":"2022062314364826225_j_popets-2021-0053_ref_001_w2aab3b7c40b1b6b1ab1ab1Aa","unstructured":"[1] 2019. Intelligent Tracking Prevention 2.1. https:\/\/webkit.org\/blog\/8613\/intelligent-tracking-prevention-2-1 [Online; accessed 24. Feb. 2021]."},{"key":"2022062314364826225_j_popets-2021-0053_ref_002_w2aab3b7c40b1b6b1ab1ab2Aa","unstructured":"[2] 2020. CNAME Cloaking and Bounce Tracking Defense. https:\/\/webkit.org\/blog\/11338\/cname-cloaking-and-bounce-tracking-defense [Online; accessed 23. Feb. 2021]."},{"key":"2022062314364826225_j_popets-2021-0053_ref_003_w2aab3b7c40b1b6b1ab1ab3Aa","unstructured":"[3] 2020. What\u2019s Brave Done For My Privacy Lately? Episode #6: Fighting CNAME Trickery | Brave Browser. https:\/\/brave.com\/privacy-updates-6 [Online; accessed 23. Feb. 2021]."},{"key":"2022062314364826225_j_popets-2021-0053_ref_004_w2aab3b7c40b1b6b1ab1ab4Aa","unstructured":"[4] 2021. 1598969 - Block trackers using CNAME Cloaking (1st-party tracker blocking). https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=1598969 [Online; accessed 24. Feb. 2021]."},{"key":"2022062314364826225_j_popets-2021-0053_ref_005_w2aab3b7c40b1b6b1ab1ab5Aa","unstructured":"[5] Lawrence Abrams. 2019. uBlock Origin Now Blocks Sneaky First-Party Trackers in Firefox. https:\/\/www.bleepingcomputer.com\/news\/security\/ublock-origin-now-blocks-sneaky-first-party-trackers-in-firefox\/."},{"key":"2022062314364826225_j_popets-2021-0053_ref_006_w2aab3b7c40b1b6b1ab1ab6Aa","doi-asserted-by":"crossref","unstructured":"[6] Gunes Acar, Christian Eubank, Steven Englehardt, Marc Juarez, Arvind Narayanan, and Claudia Diaz. 2014. The Web Never Forgets: Persistent Tracking Mechanisms in the Wild. In Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security (CCS \u201914). ACM, New York, NY, USA, 674\u2013689. https:\/\/doi.org\/10.1145\/2660267.266034710.1145\/2660267.2660347","DOI":"10.1145\/2660267.2660347"},{"key":"2022062314364826225_j_popets-2021-0053_ref_007_w2aab3b7c40b1b6b1ab1ab7Aa","doi-asserted-by":"crossref","unstructured":"[7] Gunes Acar, Marc Juarez, Nick Nikiforakis, Claudia Diaz, Seda G\u00fcrses, Frank Piessens, and Bart Preneel. 2013. FPDetective: dusting the web for fingerprinters. In Proceedings of the 2013 ACM SIGSAC conference on Computer & communications security. 1129\u20131140.10.1145\/2508859.2516674","DOI":"10.1145\/2508859.2516674"},{"key":"2022062314364826225_j_popets-2021-0053_ref_008_w2aab3b7c40b1b6b1ab1ab8Aa","unstructured":"[8] AdGuard. 2019. Disguised trackers threat and how we will address it. https:\/\/adguard.com\/en\/blog\/disguised-trackers.html."},{"key":"2022062314364826225_j_popets-2021-0053_ref_009_w2aab3b7c40b1b6b1ab1ab9Aa","unstructured":"[9] Adobe Experience Cloud. 2019. Adobe Experience Cloud Release Notes - October 2019. https:\/\/docs.adobe.com\/content\/help\/en\/release-notes\/experience-cloud\/previous\/2019\/10102019.html."},{"key":"2022062314364826225_j_popets-2021-0053_ref_010_w2aab3b7c40b1b6b1ab1ac10Aa","unstructured":"[10] HTTP Archive. 2020. State Of The Web Report. http:\/\/httparchive.org\/."},{"key":"2022062314364826225_j_popets-2021-0053_ref_011_w2aab3b7c40b1b6b1ab1ac11Aa","doi-asserted-by":"crossref","unstructured":"[11] Mika D Ayenson, Dietrich James Wambach, Ashkan Soltani, Nathan Good, and Chris Jay Hoofnagle. 2011. Flash cookies and privacy II: Now with HTML5 and ETag respawning. Available at SSRN 1898390 (2011).10.2139\/ssrn.1898390","DOI":"10.2139\/ssrn.1898390"},{"key":"2022062314364826225_j_popets-2021-0053_ref_012_w2aab3b7c40b1b6b1ab1ac12Aa","unstructured":"[12] Muhammad Ahmad Bashir, Sajjad Arshad, Engin Kirda, William Robertson, and Christo Wilson. 2018. How tracking companies circumvented ad blockers using websockets. In Proceedings of the Internet Measurement Conference 2018. ACM, 471\u2013477."},{"key":"2022062314364826225_j_popets-2021-0053_ref_013_w2aab3b7c40b1b6b1ab1ac13Aa","unstructured":"[13] Jason Bau, Jonathan Mayer, Hristo Paskov, and John C Mitchell. 2013. A promising direction for web tracking countermeasures. Proceedings of W2SP (2013)."},{"key":"2022062314364826225_j_popets-2021-0053_ref_014_w2aab3b7c40b1b6b1ab1ac14Aa","unstructured":"[14] Omar Benguerah. 2017. Setting first-party cookies by redirection. US Patent 9,723,051."},{"key":"2022062314364826225_j_popets-2021-0053_ref_015_w2aab3b7c40b1b6b1ab1ac15Aa","unstructured":"[15] Google Chrome. 2020. Cookies default to Same-Site=Lax. https:\/\/www.chromestatus.com\/feature\/5088147346030592."},{"key":"2022062314364826225_j_popets-2021-0053_ref_016_w2aab3b7c40b1b6b1ab1ac16Aa","unstructured":"[16] Cloudflare. 2020. Understanding the Cloudflare Cookies. https:\/\/support.cloudflare.com\/hc\/en-us\/articles\/200170156-Understanding-the-Cloudflare-Cookies."},{"key":"2022062314364826225_j_popets-2021-0053_ref_017_w2aab3b7c40b1b6b1ab1ac17Aa","unstructured":"[17] Romain Cointepas. 2019. CNAME Cloaking, the dangerous disguise of third-party trackers. https:\/\/medium.com\/nextdns\/cname-cloaking-the-dangerous-disguise-of-third-party-trackers-195205dc522a."},{"key":"2022062314364826225_j_popets-2021-0053_ref_018_w2aab3b7c40b1b6b1ab1ac18Aa","unstructured":"[18] Ha Dao, Johan Mazel, and Kensuke Fukuda. 2020. Characterizing CNAME Cloaking-Based Tracking on the Web. In Proceedings of IFIP\/IEEE Traffic Measurement Analysis Conference (TMA). 9 pages."},{"key":"2022062314364826225_j_popets-2021-0053_ref_019_w2aab3b7c40b1b6b1ab1ac19Aa","unstructured":"[19] Sanorita Dey, Nirupam Roy, Wenyuan Xu, Romit Roy Choudhury, and Srihari Nelakuditi. 2014. AccelPrint: Imperfections of Accelerometers Make Smartphones Trackable.. In NDSS. Citeseer."},{"key":"2022062314364826225_j_popets-2021-0053_ref_020_w2aab3b7c40b1b6b1ab1ac20Aa","unstructured":"[20] Disconnect. 2020. Privacy Solutions. https:\/\/disconnect.me\/."},{"key":"2022062314364826225_j_popets-2021-0053_ref_021_w2aab3b7c40b1b6b1ab1ac21Aa","unstructured":"[21] duckduckgo. 2020. tracker-radar-collector. https:\/\/github.com\/duckduckgo\/tracker-radar-collector [Online; accessed 10. Jun. 2020]."},{"key":"2022062314364826225_j_popets-2021-0053_ref_022_w2aab3b7c40b1b6b1ab1ac22Aa","unstructured":"[22] EasyPrivacy. 2020. Filter List That Completely Removes All Forms Of Tracking From The Internet. https:\/\/easylist.to\/index.html."},{"key":"2022062314364826225_j_popets-2021-0053_ref_023_w2aab3b7c40b1b6b1ab1ac23Aa","doi-asserted-by":"crossref","unstructured":"[23] Peter Eckersley. 2010. How unique is your web browser?. In International Symposium on Privacy Enhancing Technologies Symposium. Springer, 1\u201318.","DOI":"10.1007\/978-3-642-14527-8_1"},{"key":"2022062314364826225_j_popets-2021-0053_ref_024_w2aab3b7c40b1b6b1ab1ac24Aa","doi-asserted-by":"crossref","unstructured":"[24] Steven Englehardt and Arvind Narayanan. 2016. Online tracking: A 1-million-site measurement and analysis. In Proceedings of the 2016 ACM SIGSAC conference on computer and communications security. 1388\u20131401.10.1145\/2976749.2978313","DOI":"10.1145\/2976749.2978313"},{"key":"2022062314364826225_j_popets-2021-0053_ref_025_w2aab3b7c40b1b6b1ab1ac25Aa","doi-asserted-by":"crossref","unstructured":"[25] Steven Englehardt, Dillon Reisman, Christian Eubank, Peter Zimmerman, Jonathan Mayer, Arvind Narayanan, and Edward W Felten. 2015. Cookies that give you away: The surveillance implications of web tracking. In Proceedings of the 24th International Conference on World Wide Web. 289\u2013299.10.1145\/2736277.2741679","DOI":"10.1145\/2736277.2741679"},{"key":"2022062314364826225_j_popets-2021-0053_ref_026_w2aab3b7c40b1b6b1ab1ac26Aa","unstructured":"[26] Brent Fulgham. 2018. Protecting Against HSTS Abuse. https:\/\/webkit.org\/blog\/8146\/protecting-against-hsts-abuse."},{"key":"2022062314364826225_j_popets-2021-0053_ref_027_w2aab3b7c40b1b6b1ab1ac27Aa","unstructured":"[27] Raymond Hill. 2020. uBlock Origin - 1.25.0. https:\/\/github.com\/gorhill\/uBlock\/releases\/tag\/1.25.0."},{"key":"2022062314364826225_j_popets-2021-0053_ref_028_w2aab3b7c40b1b6b1ab1ac28Aa","doi-asserted-by":"crossref","unstructured":"[28] Umar Iqbal, Steven Englehardt, and Zubair Shafiq. 2020. Fingerprinting the Fingerprinters: Learning to Detect Browser Fingerprinting Behaviors. arXiv preprint arXiv:2008.04480 (2020).10.1109\/SP40001.2021.00017","DOI":"10.1109\/SP40001.2021.00017"},{"key":"2022062314364826225_j_popets-2021-0053_ref_029_w2aab3b7c40b1b6b1ab1ac29Aa","unstructured":"[29] Samy Kamkar. 2010. Evercookie-virtually irrevocable persistent cookies. His Blog 9 (2010)."},{"key":"2022062314364826225_j_popets-2021-0053_ref_030_w2aab3b7c40b1b6b1ab1ac30Aa","unstructured":"[30] Arjaldo Karaj, Sam Macbeth, R\u00e9mi Berson, and Josep M Pujol. 2018. WhoTracks. Me: Shedding light on the opaque world of online tracking. arXiv preprint arXiv:1804.08959 (2018)."},{"key":"2022062314364826225_j_popets-2021-0053_ref_031_w2aab3b7c40b1b6b1ab1ac31Aa","unstructured":"[31] Mitja Kol\u0161ek. 2002. Session fixation vulnerability in web-based applications. Acros Security 7 (2002)."},{"key":"2022062314364826225_j_popets-2021-0053_ref_032_w2aab3b7c40b1b6b1ab1ac32Aa","doi-asserted-by":"crossref","unstructured":"[32] Balachander Krishnamurthy and Craig Wills. 2009. Privacy diffusion on the web: a longitudinal perspective. In Proceedings of the 18th international conference on World wide web. ACM, 541\u2013550.","DOI":"10.1145\/1526709.1526782"},{"key":"2022062314364826225_j_popets-2021-0053_ref_033_w2aab3b7c40b1b6b1ab1ac33Aa","doi-asserted-by":"crossref","unstructured":"[33] Victor Le Pochat, Tom Van Goethem, Samaneh Tajalizadehkhoob, Maciej Korczy\u00abski, and Wouter Joosen. 2019. Tranco: A Research-Oriented Top Sites Ranking Hardened Against Manipulation. In Proceedings of the 26th Annual Network and Distributed System Security Symposium (NDSS 2019). https:\/\/doi.org\/10.14722\/ndss.2019.2338610.14722\/ndss.2019.23386","DOI":"10.14722\/ndss.2019.23386"},{"key":"2022062314364826225_j_popets-2021-0053_ref_034_w2aab3b7c40b1b6b1ab1ac34Aa","unstructured":"[34] Adam Lerner, Anna Kornfeld Simpson, Tadayoshi Kohno, and Franziska Roesner. 2016. Internet jones and the raiders of the lost trackers: An archaeological study of web tracking from 1996 to 2016. In 25th {USENIX} Security Symposium ({USENIX} Security 16)."},{"key":"2022062314364826225_j_popets-2021-0053_ref_035_w2aab3b7c40b1b6b1ab1ac35Aa","unstructured":"[35] Scott Low and Joe Martin. 2020. Tracking Prevention in Microsoft Edge (Chromium). https:\/\/docs.microsoft.com\/en-us\/microsoft-edge\/web-platform\/tracking-prevention."},{"key":"2022062314364826225_j_popets-2021-0053_ref_036_w2aab3b7c40b1b6b1ab1ac36Aa","unstructured":"[36] Andrea Marchesini. 2019. Enable sameSite=lax by default on Nightly. https:\/\/bugzilla.mozilla.org\/show_bug.cgi?id=1604212."},{"key":"2022062314364826225_j_popets-2021-0053_ref_037_w2aab3b7c40b1b6b1ab1ac37Aa","doi-asserted-by":"crossref","unstructured":"[37] Vasilios Mavroudis, Shuang Hao, Yanick Fratantonio, Federico Maggi, Christopher Kruegel, and Giovanni Vigna. 2017. On the privacy and security of the ultrasound ecosystem. Proceedings on Privacy Enhancing Technologies 2017, 2 (2017), 95\u2013112.","DOI":"10.1515\/popets-2017-0018"},{"key":"2022062314364826225_j_popets-2021-0053_ref_038_w2aab3b7c40b1b6b1ab1ac38Aa","doi-asserted-by":"crossref","unstructured":"[38] Jonathan R Mayer and John C Mitchell. 2012. Third-party web tracking: Policy and technology. In 2012 IEEE Symposium on Security and Privacy. IEEE, 413\u2013427.","DOI":"10.1109\/SP.2012.47"},{"key":"2022062314364826225_j_popets-2021-0053_ref_039_w2aab3b7c40b1b6b1ab1ac39Aa","unstructured":"[39] Keaton Mowery and Hovav Shacham. 2012. Pixel perfect: Fingerprinting canvas in HTML5. Proceedings of W2SP (2012), 1\u201312."},{"key":"2022062314364826225_j_popets-2021-0053_ref_040_w2aab3b7c40b1b6b1ab1ac40Aa","unstructured":"[40] NextDNS. 2020. CNAME Cloaking Blocklist. https:\/\/github.com\/nextdns\/cname-cloaking-blocklist."},{"key":"2022062314364826225_j_popets-2021-0053_ref_041_w2aab3b7c40b1b6b1ab1ac41Aa","unstructured":"[41] NextDNS. 2020. NextDNS CNAME Cloaking Blocklist. https:\/\/github.com\/nextdns\/cname-cloaking-blocklist."},{"key":"2022062314364826225_j_popets-2021-0053_ref_042_w2aab3b7c40b1b6b1ab1ac42Aa","doi-asserted-by":"crossref","unstructured":"[42] Nick Nikiforakis, Alexandros Kapravelos, Wouter Joosen, Christopher Kruegel, Frank Piessens, and Giovanni Vigna. 2013. Cookieless monster: Exploring the ecosystem of web-based device fingerprinting. In 2013 IEEE Symposium on Security and Privacy. IEEE, 541\u2013555.","DOI":"10.1109\/SP.2013.43"},{"key":"2022062314364826225_j_popets-2021-0053_ref_043_w2aab3b7c40b1b6b1ab1ac43Aa","unstructured":"[43] Lukasz Olejnik and Claude Castelluccia. 2014. Analysis of openx-publishers cooperation. In In 7th Workshop on Hot Topics in Privacy Enhancing Technologies (HotPETs 2014)."},{"key":"2022062314364826225_j_popets-2021-0053_ref_044_w2aab3b7c40b1b6b1ab1ac44Aa","doi-asserted-by":"crossref","unstructured":"[44] Lukasz Olejnik, Tran Minh-Dung, and Claude Castelluccia. 2014. Selling off privacy at auction. In In Proceedings of the 2014 Symposium on Network and Distributed System Security.10.14722\/ndss.2014.23270","DOI":"10.14722\/ndss.2014.23270"},{"key":"2022062314364826225_j_popets-2021-0053_ref_045_w2aab3b7c40b1b6b1ab1ac45Aa","unstructured":"[45] Mike O\u2019Neill. 2015. Discovered In The Wild: A New Method Bypassing Safari\u2019s Third-Party Cookie Blocking. https:\/\/baycloud.com\/blog\/PostDetail?slug=discovered-in-the-wild-a-new-method-bypassing-safaris-third-party-cookie-blocking."},{"key":"2022062314364826225_j_popets-2021-0053_ref_046_w2aab3b7c40b1b6b1ab1ac46Aa","doi-asserted-by":"crossref","unstructured":"[46] Panagiotis Papadopoulos, Nicolas Kourtellis, and Evangelos Markatos. 2019. Cookie synchronization: Everything you always wanted to know but were afraid to ask. In The World Wide Web Conference. 1432\u20131442.10.1145\/3308558.3313542","DOI":"10.1145\/3308558.3313542"},{"key":"2022062314364826225_j_popets-2021-0053_ref_047_w2aab3b7c40b1b6b1ab1ac47Aa","unstructured":"[47] Olivier Poitrey. 2019. NextDNS first to support blocking of ALL third-party trackers disguised as first-party. https:\/\/medium.com\/nextdns\/nextdns-added-cname-uncloaking-support-becomes-the-first-cross-platform-solution-to-the-problem-e3f437f84342."},{"key":"2022062314364826225_j_popets-2021-0053_ref_048_w2aab3b7c40b1b6b1ab1ac48Aa","unstructured":"[48] Chrome DevTools Protocol. 2020. Instrument, Inspect, Debug And Profile Chromium. https:\/\/chromedevtools.github.io\/devtools-protocol\/."},{"key":"2022062314364826225_j_popets-2021-0053_ref_049_w2aab3b7c40b1b6b1ab1ac49Aa","unstructured":"[49] Rapid7. 2020. DNS \u2019ANY\u2019, \u2019A\u2019, \u2019AAAA\u2019, \u2019TXT\u2019, \u2019MX\u2019, and \u2019CNAME\u2019 responses for known forward DNS names. https:\/\/opendata.rapid7.com\/sonar.fdns_v2\/."},{"key":"2022062314364826225_j_popets-2021-0053_ref_050_w2aab3b7c40b1b6b1ab1ac50Aa","doi-asserted-by":"crossref","unstructured":"[50] Rapid7. 2020. DNS IPv4 PTR responses. https:\/\/opendata.rapid7.com\/sonar.rdns_v2\/.10.1016\/S1353-4858(20)30102-1","DOI":"10.1016\/S1353-4858(20)30102-1"},{"key":"2022062314364826225_j_popets-2021-0053_ref_051_w2aab3b7c40b1b6b1ab1ac51Aa","unstructured":"[51] Michael Schrank, Bastian Braun, Martin Johns, and Joachim Posegga. 2010. Session fixation\u2013the forgotten vulnerability? Sicherheit 2010. Sicherheit, Schutz und Zuverl\u00e4ssigkeit (2010)."},{"key":"2022062314364826225_j_popets-2021-0053_ref_052_w2aab3b7c40b1b6b1ab1ac52Aa","unstructured":"[52] SourcePoint. 2020. Consent Management Platform. https:\/\/help.sourcepoint.com\/en\/collections\/1255107-consent-management-platform."},{"key":"2022062314364826225_j_popets-2021-0053_ref_053_w2aab3b7c40b1b6b1ab1ac53Aa","unstructured":"[53] Alan Toner. 2017. Safari in Arms Race Against Trackers -Criteo Feels the Heat. https:\/\/www.eff.org\/deeplinks\/2017\/12\/arms-race-against-trackers-safari-leads-criteo-30."},{"key":"2022062314364826225_j_popets-2021-0053_ref_054_w2aab3b7c40b1b6b1ab1ac54Aa","unstructured":"[54] Security Trails. 2020. Robust APIs & Data Services for Security Teams. https:\/\/securitytrails.com\/."},{"key":"2022062314364826225_j_popets-2021-0053_ref_055_w2aab3b7c40b1b6b1ab1ac55Aa","doi-asserted-by":"crossref","unstructured":"[55] Pelayo Vallina, Victor Le Pochat, \u00c1lvaro Feal, Marius Paraschiv, Julien Gamba, Tim Burke, Oliver Hohlfeld, Juan Tapiador, and Narseo Vallina-Rodriguez. 2020. Mis-shapes, Mistakes, Misfits: An Analysis of Domain Classification Services. In Proceedings of the 2020 Internet Measurement Conference (IMC 2020). https:\/\/doi.org\/10.1145\/3419394.342366010.1145\/3419394.3423660","DOI":"10.1145\/3419394.3423660"},{"key":"2022062314364826225_j_popets-2021-0053_ref_056_w2aab3b7c40b1b6b1ab1ac56Aa","unstructured":"[56] Adam Warner. 2020. Pi-hole v5.0 is here! https:\/\/pi-hole.net\/2020\/05\/10\/pi-hole-v5-0-is-here\/."},{"key":"2022062314364826225_j_popets-2021-0053_ref_057_w2aab3b7c40b1b6b1ab1ac57Aa","unstructured":"[57] Mike West. 2020. Incrementally Better Cookies. https:\/\/tools.ietf.org\/html\/draft-west-cookie-incrementalism-01."},{"key":"2022062314364826225_j_popets-2021-0053_ref_058_w2aab3b7c40b1b6b1ab1ac58Aa","unstructured":"[58] WhoTracks.me. 2018. GDPR - What happened? https:\/\/whotracks.me\/blog\/gdpr-what-happened.html."},{"key":"2022062314364826225_j_popets-2021-0053_ref_059_w2aab3b7c40b1b6b1ab1ac59Aa","unstructured":"[59] Whoxy. 2020. WHOIS Lookup API for Domain Names. https:\/\/www.whoxy.com\/."},{"key":"2022062314364826225_j_popets-2021-0053_ref_060_w2aab3b7c40b1b6b1ab1ac60Aa","unstructured":"[60] John Wilander. 2020. Full Third-Party Cookie Blocking and More. https:\/\/webkit.org\/blog\/10218\/full-third-party-cookie-blocking-and-more\/."},{"key":"2022062314364826225_j_popets-2021-0053_ref_061_w2aab3b7c40b1b6b1ab1ac61Aa","unstructured":"[61] Marissa Wood. 2019. Today\u2019s Firefox Blocks Third-Party Tracking Cookies and Cryptomining by Default. https:\/\/blog.mozilla.org\/blog\/2019\/09\/03\/todays-firefox-blocks-third-party-tracking-cookies-and-cryptomining-by-default\/."},{"key":"2022062314364826225_j_popets-2021-0053_ref_062_w2aab3b7c40b1b6b1ab1ac62Aa","unstructured":"[62] Ting-Fang Yen, Yinglian Xie, Fang Yu, Roger Peng Yu, and Martin Abadi. 2012. Host Fingerprinting and Tracking on the Web: Privacy and Security Implications.. In NDSS, Vol. 62. 66."},{"key":"2022062314364826225_j_popets-2021-0053_ref_063_w2aab3b7c40b1b6b1ab1ac63Aa","unstructured":"[63] ZDNS. 2020. Command-line Utility That Provides High-speed DNS Lookups. https:\/\/github.com\/zmap\/zdns."},{"key":"2022062314364826225_j_popets-2021-0053_ref_064_w2aab3b7c40b1b6b1ab1ac64Aa","doi-asserted-by":"crossref","unstructured":"[64] Jiexin Zhang, Alastair R. Beresford, and Ian Sheret. 2019. SensorID: Sensor Calibration Fingerprinting for Smartphones. In Proceedings of the 40th IEEE Symposium on Security and Privacy (SP). IEEE.10.1109\/SP.2019.00072","DOI":"10.1109\/SP.2019.00072"}],"container-title":["Proceedings on Privacy Enhancing Technologies"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.sciendo.com\/pdf\/10.2478\/popets-2021-0053","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,7,20]],"date-time":"2022-07-20T16:31:36Z","timestamp":1658334696000},"score":1,"resource":{"primary":{"URL":"https:\/\/petsymposium.org\/popets\/2021\/popets-2021-0053.php"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,4,27]]},"references-count":64,"journal-issue":{"issue":"3","published-online":{"date-parts":[[2021,4,27]]},"published-print":{"date-parts":[[2021,7,1]]}},"alternative-id":["10.2478\/popets-2021-0053"],"URL":"https:\/\/doi.org\/10.2478\/popets-2021-0053","relation":{},"ISSN":["2299-0984"],"issn-type":[{"value":"2299-0984","type":"electronic"}],"subject":[],"published":{"date-parts":[[2021,4,27]]}}}