[LRUG] Device fingerprinting

Rob Anderson rob.anderson at paymentcardsolutions.co.uk
Wed Nov 13 01:19:19 PST 2013


Hello LRUG

We are looking into the possibility of implementing some kind of device
fingerprinting so that we can reliably identify unique users of our site.

I am aware that this is a controversial practice and can be abused for all
kinds of nasty ad-tracking stuff, but in our case this is purely an
anti-fraud measure.  In other words, if we see lots of customers
transacting from the same device in a short space of time, we are probably
looking at ID theft, and can act / ban accordingly.  We're not trying to do
anything bad.

The EFF has a remarkably effective solution (https://panopticlick.eff.org/)
but it is (ironically) closed source, I guess because of ethical concerns.

There are also various commercial offerings which are eye-wateringly
expensive, at least the ones we've spoken to.

Does anyone have any advice?

Rob
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.lrug.org/pipermail/chat-lrug.org/attachments/20131113/9cb0a0f3/attachment-0003.html>


More information about the Chat mailing list