Unified Testing Platform

1. Research Overview

The study focuses on developing a risk-based user authentication mechanism based on browser fingerprinting technologies.

The core objective is to explore the expressive capability, stability, and privacy implications of browser fingerprinting for Web authentication, and to design a more secure and usable adaptive authentication framework.

All outcomes are for academic and research purposes only, including scholarly publications and conference presentations, with no commercial use involved.

2. Introduction to Browser Fingerprinting

A “browser fingerprint” refers to the combination of technical characteristics your browser and device reveal when visiting a website, such as screen size, installed fonts, or browser version. Individually, these details are ordinary; together, they create a highly distinctive digital signature.

This research aims to analyze such characteristics systematically and study how they can enhance intelligent and privacy-aware authentication systems.

3. Scope and Purpose of Data Collection

During voluntary participation, our system may automatically collect certain non-personal environment data for analytical purposes. The data collected may include:

• Basic browser info (User-Agent, version, OS, language)
• Display details (resolution, pixel ratio, color depth, viewport size)
• Time zone and locale
• Browser capability and API support data
• Fingerprints from Canvas, WebGL, and AudioContext technologies
• Interaction statistics (e.g., timing or behavioral variance) for stability evaluation

We do not collect personally identifiable information (name, email, IP, or login credentials), nor associate data with any user identity.

4. Data Storage, Security, and Access

All data are accessible only to authorized team members and are securely stored on Beihang University’s research servers. Security measures include encryption, access control, anonymization, and audit logging.

Data are retained only for the research duration and will be permanently deleted after completion. Publications include only aggregated results.

5. Voluntary Participation and Consent

Participation is completely voluntary. You may choose to “Agree” or “Decline” before any data collection begins. Choosing “Agree” indicates that you fully understand and consent to the use of anonymized fingerprint data solely for research purposes.

You may withdraw participation or request data deletion anytime by contacting the research team. Withdrawal will not cause any adverse consequence.

6. Ethical Standards and Compliance

This research complies with ethical review and international standards on privacy, data protection, and responsible academic research.

All study activities follow the principles of informed consent, minimal necessity, anonymization, and data transparency.

7. Contact Information

📧 23373306@buaa.edu.cn / andaul951@gmail.com

一、研究项目概述

本研究为基于浏览器指纹的风险自适应用户认证机制。

研究的核心目标是探索浏览器指纹技术在 Web 用户身份认证中的特征表达能力、稳定性与隐私影响，并在此基础上设计更具安全性与可用性的风险自适应认证系统。

研究成果仅用于科学研究与学术交流，包括论文发表、学术会议报告及国际学术期刊投稿，不涉及任何商业用途。

二、浏览器指纹简介

“浏览器指纹”是指您的浏览器和设备在访问网站时所透露的综合技术特征，如屏幕大小、系统字体、浏览器版本等。这些信息单独看平常，但组合后具有高度辨识度。

本研究旨在系统分析指纹特征，探索其在智能化和隐私友好的身份认证中的应用。

三、数据收集的范围与目的

在您自愿参与本实验的过程中，系统可能会自动收集部分与浏览器和设备环境相关的数据，用于科研分析和模型评估。包括但不限于：

• 浏览器信息（User-Agent、版本、操作系统、语言）
• 显示特征（分辨率、像素比、颜色深度、视口大小）
• 时区与地区信息
• 浏览器功能与 API 支持情况
• Canvas、WebGL、AudioContext 等技术生成的指纹特征
• 交互统计特征（时间间隔或行为波动）

研究团队不会主动收集任何个人身份信息（姓名、邮箱、账号、IP 地址等），也不会与用户身份建立关联。

四、数据存储、安全与访问控制

所有数据仅限授权的研究团队成员访问，并存储于北航研究服务器中。团队遵守严格的数据安全规范，包括加密存储、权限控制、匿名化与日志审计。

数据仅在科研项目执行期间保存，项目结束后将被彻底删除。研究报告中仅展示聚合后的统计结果。

五、自愿参与与知情同意

本研究完全基于自愿原则。您可以在数据采集前选择“同意”或“拒绝”。选择“同意”表示您已充分理解并授权研究团队在匿名化前提下使用相关数据。

您可随时联系研究团队撤回参与或删除数据，不会产生任何不利影响。

六、伦理规范与学术合规

本研究遵守科研伦理审查制度及国际学术界关于隐私保护、人类研究伦理与数据安全的标准。

所有研究活动遵循知情同意、最小必要性、匿名化与数据透明的原则，确保公正、安全与科研诚信。

七、联系方式

📧 23373306@buaa.edu.cn / andaul951@gmail.com