IP Hiding is an Outdated Threat Model

From Whonix
Jump to navigation Jump to search

The concept of merely hiding IP addresses is considered outdated, belonging to the threat model of the 1990s. Modern privacy threats extend beyond IP address exposure.

Beyond IP Hiding[edit]

Hiding your identity is harder than just hiding your IP.

Hiding IP addresses is an important necessity but concealing one's identity requires more than just obscuring IP addresses. Simple IP address anonymization is insufficient because contemporary adversaries employ a variety of Data Collection Techniques such as browser fingerprinting that circumvent the need for IP addresses. This is evidenced by various Browser Tests, such as the Fingerprint.com Demoarchive.org, which illustrates that, as mentioned in "12% of the top 500 websites use Fingerprint.com's services".

Though most users feel anonymous when browsing the Web, their browsers constantly turn over unique information such as a list of installed plugins, screen resolution, and the user agent string. Taken together, such bits of information can uniquely identify many users even without cookies.

But this is now old tech; behavioral analytics firms have already moved on. Cookies, browser signatures, and IP addresses can all help identify particular machines and particular browsers—but how can you tell which human actually sits behind the terminal at a given moment? One way is by measuring the "cadence" of their typing.

[...]

So Scout used some Javascript timing features to watch how users type when they enter their login credentials for various services. Shanahan says that his algorithms need a minimum of 5 attempts at entering a phrase of at least 12 characters in order to generate a typing "cadence." By watching repeated logins, Scout could soon categorize these cadences into a digital pattern, then assign each pattern a serial number.

"As you're typing, you have a cadence and rhythm," Shanahan says, a rhythm that includes how long one holds down various keys and how long it takes to move between keys. Applying the technology to its data set of 20 million logins, Scout pulled out 175,000 unique patterns—thereby identifying 175,000 distinct users, even when they used the same login credentials on the same machine.Ars Technica: Firm uses typing cadence to finger unauthorized usersarchive.org (2010)

This is called Keystroke Deanonymization, which Whonix mitigates using Kloak.

The fact that IP hiding is insufficient is also being acknowledged by VPN providers such as Mullvad.

When you visit a website, you can be identified and tracked through your IP address, third-party cookies, all kinds of tracking scripts, and through so called browser fingerprints. That’s why masking your IP address is not enough to stop the data collection.Mullvad Browserarchive.org

To ensure user anonymity, Whonix provides Reliable IP Hiding as well as Full Spectrum Anti-Tracking Protection and is significantly safer than VPNsarchive.org, as detailed in the thorough Whonix versus VPNs comparison.

We believe security software like Whonix needs to remain open source and independent. Would you help sustain and grow the project? Learn more about our 12 year success story and maybe DONATE!