Slashdot Mirror

← Back to Stories (view on slashdot.org)

Verizon Injects Unique IDs Into HTTP Traffic

Posted by Soulskill on from the doing-the-wrong-thing-badly dept.

An anonymous reader writes: Verizon Wireless, the nation's largest wireless carrier, is now also a real-time data broker. According to a security researcher at Stanford, Big Red has been adding a unique identifier to web traffic. The purpose of the identifier is advertisement targeting, which is bad enough. But the design of the system also functions as a 'supercookie' for any website that a subscriber visits. "Any website can easily track a user, regardless of cookie blocking and other privacy protections. No relationship with Verizon is required. ...while Verizon offers privacy settings, they don’t prevent sending the X-UIDH header. All they do, seemingly, is prevent Verizon from selling information about a user." Just like they said they would.

2 of 206 comments (clear)

  1. Is there a way to prevent this? by Anonymous Coward · · Score: 5, Interesting

    This should be illegal. People have a right to try and avoid being tracked. There has to be a way to prevent this. I'm a sysadmin, not a network guru, so I will defer to those smarter than me here...

    1. Re:Is there a way to prevent this? by Anonymous Coward · · Score: 4, Interesting

      Unacceptable. Verizon licensed the spectrum from citizens, and therefore has certain obligations.

      This is what should occur. Make use of any spectrum contingent upon a series of consumer friendly policies. Failure to comply requires turning the spectrum and any technology that uses it or assists in its use over to auction. Then establish a rule that prohibits anyone over a pay grade access to any industry that uses spectrum for a predetermined duration.

      If you set the concequesnces high enough than ideas like this get shot down in the board room.