Profile picture
, 20 tweets, 30 min read
My Authors
Read all threads
When we watch TV, our TVs watch us back and track our habits. This practice has exploded recently since it hasn’t faced much public scrutiny. But in the last few days, not one but *three* papers have dropped that uncover the extent of tracking on TVs. Let me tell you about them.
The first paper looked at Roku and Amazon Fire TV. These platforms let you subscribe to “channels”, which are basically apps. As you can guess, they are loaded with trackers. Doubleclick alone is on 97.5% of Roku channels. tv-watches-you.princeton.edu/tv-tracking-ac…
There are some channels with over 50 trackers. Also, the majority of trackers were able to grab a unique ID such as MAC address. A few channels leaked email addresses to trackers and many leaked video titles⁠—often unencrypted, so your viewing history is exposed on the network.
Reverse engineering is hard. The paper was possible due to the hard work and ingenuity of the five PhD/postdoc authors Hooman Moghaddam, Gunes Acar, @baburges, @aruneshmathur, and @danny_y_huang. The other authors are @feamster, @EdFelten, @prateekmittal_, and me.
@baburges @aruneshmathur @danny_y_huang @feamster @EdFelten @prateekmittal_ The most technically challenging part of the paper was building a bot to automatically install thousands of channels, launch each channel, navigate to a video, watch it until encountering an ad, and collect data on everything that happens behind the scenes.
@baburges @aruneshmathur @danny_y_huang @feamster @EdFelten @prateekmittal_ Here’s a doozy: Roku has a “Limit Ad Tracking” option. Turning it on increased the number of tracking servers contacted 🙃 It did prevent Roku’s AD ID from being leaked, but a whole bunch of other unique IDs are available. Even Pi-hole wasn’t that effective at limiting tracking.
@baburges @aruneshmathur @danny_y_huang @feamster @EdFelten @prateekmittal_ The second paper is by researchers at Northeastern University and Imperial College London. They have an impresive testing setup! moniotrlab.ccis.neu.edu/wp-content/upl… Here’s a thread from one of the authors:
@baburges @aruneshmathur @danny_y_huang @feamster @EdFelten @prateekmittal_ They analyzed 81 IoT devices including five smart TVs. Their method was quite different from ours: they did controlled experiments. This is powerful: for example, they can test if devices phone home when someone starts talking or moving.
Good news: none of the TVs did.
Bad news:
@baburges @aruneshmathur @danny_y_huang @feamster @EdFelten @prateekmittal_ Some of their findings are what you’d intuitively expect: devices made by Chinese companies tend to talk to Chinese servers. Others findings are more surprising: Nearly all TVs they tested contacted Netflix, even though they never configured any TV with a Netflix account (?!?!)
@baburges @aruneshmathur @danny_y_huang @feamster @EdFelten @prateekmittal_ The third paper is from my colleagues @danny_y_huang Noah Apthorpe Gunes Acar @frankli714 @feamster (I wasn't involved). They built software called IoT Inspector that lets you examine your own IoT devices and, in exchange, contribute data for research. iot-inspector.princeton.edu
@baburges @aruneshmathur @danny_y_huang @feamster @EdFelten @prateekmittal_ @frankli714 It’s a really neat tool that I’ve tweeted before. Over 4,300 people have installed it and the team has just released their first set of findings using data on 45,000 devices, including nearly a thousand TVs from 19 vendors. arxiv.org/pdf/1909.09848…
@baburges @aruneshmathur @danny_y_huang @feamster @EdFelten @prateekmittal_ @frankli714 (By the way, what I love love love about the three papers released near-simultaneously is that we now have three different ways to interrogate Smart TVs and IoT devices. It bodes well for future efforts to uncover tracking and surveillance in our homes.)
@baburges @aruneshmathur @danny_y_huang @feamster @EdFelten @prateekmittal_ @frankli714 IoT inspector’s findings on TV tracking are consistent with the other 2 papers. In their sample, they find about half the TVs talked to tracking services (the authors tell me they think this is an undercount because many of the TVs were turned on only briefly during the study).
@baburges @aruneshmathur @danny_y_huang @feamster @EdFelten @prateekmittal_ @frankli714 One creepy finding in this study is that some TVs connect to Automatic Content Recognition services. ACR involves sending a “fingerprint” of your screen contents to a server, say once a second, for a Shazam-like algorithm to figure out what you’re watching to serve you ads.
@baburges @aruneshmathur @danny_y_huang @feamster @EdFelten @prateekmittal_ @frankli714 OK, so our TVs are watching us. Is that so bad? Well, TVs are going down the same road that turned the web & smartphone apps into a cesspit of surveillance. I worry that things like TVs ads emitting ultrasonic beacons for analytics will become more common. arstechnica.com/information-te…
@baburges @aruneshmathur @danny_y_huang @feamster @EdFelten @prateekmittal_ @frankli714 It’s unfortunate that TV platforms are turning to targeted ads as the main way to make money. To maximize revenue, they will likely turn to data mining and algorithmic personalization/persuasion to keep people glued to the screen as long as possible. digiday.com/media/rokus-ad…
@baburges @aruneshmathur @danny_y_huang @feamster @EdFelten @prateekmittal_ @frankli714 Unlike web tracking, our ability to control tracking on TVs is also limited, because TVs are closed platforms and there is no analog of browser extensions. And, in a familiar story, the law and regulations are easily worked around.
washingtonpost.com/technology/201…
@baburges @aruneshmathur @danny_y_huang @feamster @EdFelten @prateekmittal_ @frankli714 I'm sorry to leave this thread without a satisfying conclusion. It's not obvious what's the most effective way to push back against privacy intrusions in our homes. I think more awareness is a necessary first step, and I see the recent papers as progress. I hope more will follow.
@baburges @aruneshmathur @danny_y_huang @feamster @EdFelten @prateekmittal_ @frankli714 There are steps we can take. Stay away from vendors whose business model is targeted ads. Every device is a potential tracker; do your research before buying. Install tools that give you control, such as Pi-hole, even if imperfect. Install a monitoring tool on your home network.
@baburges @aruneshmathur @danny_y_huang @feamster @EdFelten @prateekmittal_ @frankli714 These individual steps are not enough: we need collective action. Researchers must keep doing our part; we look forward to teaming up with journalists, civil society organizations, and the public, so that we can choose our future, not sleepwalk into it one channel at a time.
Missing some Tweet in this thread? You can try to force a refresh.

Enjoying this thread?

Keep Current with Arvind Narayanan

Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

More from @random_walker see all

Profile picture
Arvind Narayanan
@random_walker
Four out of eight chapters of our book on fairness and machine learning are now available—halfway there! The newly released chapter is on testing systems for discrimination.. fairmlbook.org/testing.html

A few thoughts in this thread on why you might find this interesting and useful.
Algorithmic auditing has exploded in the last 5 years (there are about 50 studies in our references). This young community has a lot to learn from the classic audit studies that date back to the 70s. The entire first half of the chapter is on traditional tests for discrimination.
The algorithmic bias conversation needs to move beyond simple measures of disparity. We help the reader connect these measurements to moral notions of fairness, understand the harms that can result, and identify the sources and mechanisms that produce disparities.
Read 5 tweets
Profile picture
Arvind Narayanan
@random_walker
Today I want to take a break from sharing research to share a personal story instead. It’s a story about my name, why I once decided to quit academia, why I came back, what I learnt from it, and why I’m grateful to have an audience here on Twitter.
Near the end of my PhD, I had three main publications. I ran into someone at a conference whom I knew from previous events. He asked me about my work, and I briefly mentioned my papers. His reaction was something I didn’t expect…
He’d seen and liked my papers, but the name hadn’t registered. He didn’t realize the 3 papers had the same first author and that it was someone he knew. He was embarrassed and apologetic. If he’d known, he said, he’d have advocated for me at his school for a faculty position(!)
Read 14 tweets
Profile picture
Arvind Narayanan
@random_walker
Much of what’s being sold as "AI" today is snake oil. It does not and cannot work. In a talk at MIT yesterday, I described why this happening, how we can recognize flawed AI claims, and push back. Here are my annotated slides: cs.princeton.edu/~arvindn/talks…
Key point #1: AI is an umbrella term for a set of loosely related technologies. *Some* of those technologies have made genuine, remarkable, and widely-publicized progress recently. But companies exploit public confusion by slapping the “AI” label on whatever they’re selling.
Key point #2: Many dubious applications of AI involve predicting social outcomes: who will succeed at a job, which kids will drop out, etc. We can’t predict the future — that should be common sense. But we seem to have decided to suspend common sense when “AI” is involved.
Read 6 tweets

Related threads

Profile picture
Cyrus Toulabi
@CyrusToulabi
#WATCH: Mueller warns...Russia continues to attack our elections "AS WE SIT HERE."

Q: "Did you think that this was a single attempt...or did you find evidence to suggest [Russia will] try to do this again?"

MUELLER: "It wasn't a single attempt. They're doing it as we sit here."
#FLAG: Mueller fears that accepting #ElectionInterference is the "new normal."

Q: "Have we established...[that any candidate] aware of a hostile foreign power trying to influence an election has no duty to report?"

MUELLER: "I hope this is not the new normal, but I fear it is."
#REDFLAG: The NRCC, the committee to elect Republicans in the House, REFUSED to pledge not to accept/use hacked materials in 2020.

It wasn't a part of ANY coverage today, despite Mueller's warnings about #ElectionInterference and fear of the "new normal."
thedailybeast.com/rep-tom-emmers…
Read 7 tweets
Profile picture
Clara Jeffery
@ClaraJeffery
Instead of Black Friday shopping, how about helping this teacher in a low-income SF school that just got its budget cut by $170K and lost its learning specialist get some basic classroom supplies? She asking for pencils and gluesticks ffs: donorschoose.org/project/our-sc…
You can also pick another school to give to, sort by region, grade, type of request...lot of low-income schools in cold areas just trying to get their kids coats. @DonorsChoose donorschoose.org
You guys, we're about half way there. If you can spare even $10, that buys a lot of pencils. donorschoose.org/project/our-sc…
Read 215 tweets
Profile picture
Adam Walker
@MaleStylist
So after recent drama concerning influencers, “staged content” and unrealistic lifestyles, I wanted to discuss what our industry can learn from it.

[THREAD]

NOTE: I DO NOT CONDONE OR SUPPORT BULLYING, TROLLING OR DEATH THREATS MADE TO ANY INDIVIDUALS IN THIS/SIMILAR SITUATIONS.
Sifting through the vile and unwarranted bullying that was present in the comments section of the content, what I saw was a number of users complaining that this kind of content is wildly unachievable and has significantly lowered their own confidence/satisfaction.
It’s important for influencers/bloggers to understand that we have a responsibility to our audience and the balance between revenue and audience satisfaction is a delicate one.

Any “influence” over our audience has a certain moral responsibility that comes with it.
Read 16 tweets
Profile picture
Funmi Oyatogun
@funmioyatogun
Something amazing is happening. I was live on @BBC & still cannot believe it. However, it is the progress of African tourism that is giving me shivers. I set out to make maps, share guides & build travel solutions via @TVPAdventures. But something else is happening.

[A Thread]
1. I know that Africans find it difficult to travel the continent because of three challenges: poor information, high travel costs and the hassle of putting together all the elements of a trip together. That's why people like @TVPAdventures because we are solving all 3!
2. The first time I wrote a trending Twitter thread, I was in shock! I knew that people would love the story but I didn't realise how useful the guide would be to so many people. Here's my first trending trend on Oke - Ado Awaye and the suspended lake.

Read 14 tweets

Trending hashtags

#PascoProud #Kafarzita #Trump #SAA #LOL #Posterity #MainstreamMedia #Darbasiyah #RussianAirDefenses #DECECTIVE #ILLEGALLY #BradyaBunch #Update #SyrianAirForce #priorities #Legendary #HaveANiceDay #ContinentalOilCompany #JustSaying #WhiteHelmets #Hezbollah #patterns #stalking #TurkishMilitary #FalseFlag
Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!