Skip to main content

Watching You Watch: The Tracking Ecosystem of Over-the-Top TV Streaming Devices

Author(s): Moghaddam, Hooman M; Acar, Gunes; Burgess, Ben; Mathur, Arunesh; Huang, Danny Y; et al

Download
To refer to this page use: http://arks.princeton.edu/ark:/88435/pr1kc15
Abstract: The number of Internet-connected TV devices has grown significantly in recent years, especially Over-the-Top ("OTT") streaming devices, such as Roku TV and Amazon Fire TV. OTT devices offer an alternative to multi-channel television subscription services, and are often monetized through behavioral advertising. To shed light on the privacy practices of such platforms, we developed a system that can automatically download OTT apps (also known as channels), and interact with them while intercepting the network traffic and performing best-effort TLS interception. We used this smart crawler to visit more than 2,000 channels on two popular OTT platforms, namely Roku and Amazon Fire TV. Our results show that tracking is pervasive on both OTT platforms, with traffic to known trackers present on 69% of Roku channels and 89% of Amazon Fire TV channels. We also discover widespread practice of collecting and transmitting unique identifiers, such as device IDs, serial numbers, WiFi MAC addresses and SSIDs, at times over unencrypted connections. Finally, we show that the countermeasures available on these devices, such as limiting ad tracking options and adblocking, are practically ineffective. Based on our findings, we make recommendations for researchers, regulators, policy makers, and platform/app developers.
Publication Date: Nov-2019
Citation: Mohajeri Moghaddam, Hooman, Gunes Acar, Ben Burgess, Arunesh Mathur, Danny Yuxing Huang, Nick Feamster, Edward W. Felten, Prateek Mittal, and Arvind Narayanan. "Watching You Watch: The Tracking Ecosystem of Over-the-Top TV Streaming Devices." Proceedings of the ACM SIGSAC Conference on Computer and Communications Security (2019), pp. 131-147. doi:10.1145/3319535.3354198
DOI: 10.1145/3319535.3354198
Pages: 131 - 147
Type of Material: Conference Article
Series/Report no.: CCS '19;
Journal/Proceeding Title: Proceedings of the ACM SIGSAC Conference on Computer and Communications Security
Version: Final published version. This is an open access article.



Items in OAR@Princeton are protected by copyright, with all rights reserved, unless otherwise indicated.