# PerfWeb: How to Violate Web Privacy with Hardware Performance Events

**Authors:** Berk Gulmezoglu, Andreas Zankl, Thomas Eisenbarth, Berk Sunar

arXiv: 1705.04437 · 2017-05-16

## TL;DR

This paper demonstrates that hardware performance events can be exploited to identify websites users visit in private modes, revealing significant privacy vulnerabilities and proposing mitigation strategies.

## Contribution

It introduces a novel attack method using hardware performance events and machine learning to infer visited websites in private browsing modes.

## Key findings

- Achieved up to 86.3% classification accuracy.
- Effective across different browsers and architectures.
- Proposed mitigation strategies to prevent such attacks.

## Abstract

The browser history reveals highly sensitive information about users, such as financial status, health conditions, or political views. Private browsing modes and anonymity networks are consequently important tools to preserve the privacy not only of regular users but in particular of whistleblowers and dissidents. Yet, in this work we show how a malicious application can infer opened websites from Google Chrome in Incognito mode and from Tor Browser by exploiting hardware performance events (HPEs). In particular, we analyze the browsers' microarchitectural footprint with the help of advanced Machine Learning techniques: k-th Nearest Neighbors, Decision Trees, Support Vector Machines, and in contrast to previous literature also Convolutional Neural Networks. We profile 40 different websites, 30 of the top Alexa sites and 10 whistleblowing portals, on two machines featuring an Intel and an ARM processor. By monitoring retired instructions, cache accesses, and bus cycles for at most 5 seconds, we manage to classify the selected websites with a success rate of up to 86.3%. The results show that hardware performance events can clearly undermine the privacy of web users. We therefore propose mitigation strategies that impede our attacks and still allow legitimate use of HPEs.

## Full text

_Full body text omitted from this summary view._ Fetch the complete paper as Markdown: https://tomesphere.com/paper/1705.04437/full.md

## Figures

14 figures with captions in the complete paper: https://tomesphere.com/paper/1705.04437/full.md

## References

64 references — full list in the complete paper: https://tomesphere.com/paper/1705.04437/full.md

---
Source: https://tomesphere.com/paper/1705.04437