Skip to Main content Skip to Navigation
Conference papers

Exploiting Innocuous Activity for Correlating Users Across Sites

Abstract : We study how potential attackers can identify accounts on different social network sites that all belong to the same user, exploiting only innocuous activity that inherently comes with posted content. We examine three specific features on Yelp, Flickr, and Twitter: the geo-location attached to a user's posts, the timestamp of posts, and the user's writing style as captured by language models. We show that among these three features the location of posts is the most powerful feature to identify accounts that belong to the same user in different sites. When we combine all three features, the accuracy of identifying Twitter accounts that belong to a set of Flickr users is comparable to that of existing attacks that exploit usernames. Our attack can identify 37% more accounts than using usernames when we instead correlate Yelp and Twitter. Our results have significant privacy implications as they present a novel class of attacks that exploit users' tendency to assume that, if they maintain different personas with different names, the accounts cannot be linked together; whereas we show that the posts themselves can provide enough information to correlate the accounts.
Complete list of metadatas

Cited literature [31 references]  Display  Hide  Download
Contributor : Oana Goga <>
Submitted on : Monday, June 3, 2013 - 6:31:34 PM
Last modification on : Friday, March 6, 2020 - 1:37:45 AM
Document(s) archivé(s) le : Tuesday, April 4, 2017 - 12:54:59 PM


Files produced by the author(s)



Oana Goga, Howard Lei, Sree Hari Krishnan Parthasarathi, Gerald Friedland, Robin Sommer, et al.. Exploiting Innocuous Activity for Correlating Users Across Sites. The 22nd International conference on World Wide Web, WWW'13, May 2013, Rio de Janeiro, Brazil. pp.447-458, ⟨10.1145/2488388.2488428⟩. ⟨hal-00827649⟩



Record views


Files downloads