Beyond the Cookie
For decades, the HTTP cookie was the primary method of tracking users. But as privacy laws like GDPR and browser features like Safari's ITP clamped down on cookies, ad-tech companies evolved. Enter Browser Fingerprinting.
Fingerprinting relies on the unique configuration of your device. By querying hundreds of data points, a tracker can build a profile that is statistically unique to you.
The Data Points
What makes you unique? It's not one thing, but the combination:
- Canvas Fingerprinting: The browser is asked to render a hidden 3D shape or text. Differences in your graphics card (GPU) and drivers cause minute variations in the rendering. These artifacts create a unique hash.
- AudioContext: Similar to canvas, the way your audio hardware processes a sound signal is unique.
- Screen Resolution & Color Depth: The physical dimensions of your monitor.
- Installed Fonts: The specific list of fonts you have installed is often a dead giveaway.
- Battery Status API: Believe it or not, even your battery level can be used as a temporary identifier across tabs.
The Mathematics of Uniqueness
According to research by the Electronic Frontier Foundation (EFF), for the average browser, only one in 286,777 other browsers will share the same fingerprint. If you customize your browser heavily, you actually make yourself more unique.
Defense Strategies
Paradoxically, privacy tools can sometimes make you stand out more. The best defense against fingerprinting is "blending in."
- Use Standard Browsers: Firefox with "Resist Fingerprinting" enabled is a strong choice.
- Disable Javascript: Nuclear option. Breaks most of the web, but stops fingerprinting scripts cold.
- Virtualization: browsing inside a VM resets hardware characteristics.
Check your own fingerprint at AmIUnique.org.