JShelter од Libor Polčák

What is JShelter?

JShelter is a browser extension to give back control over what your browser is doing. A JavaScript-enabled web page can access much of the browser's functionality, with little control over this process available to the user: malicious websites can uniquely identify you through fingerprinting and use other tactics for tracking your activity. JShelter aims to improve the privacy and security of your web browsing.

How does it work?

Similarly to a firewall that controls network connections, JShelter controls the APIs provided by the browser, restricting the data that javascript code executed on visited web pages can see, gather, and possibly misuse. JShelter adds a safety layer that allows the user to choose if a certain APIs should be forbidden on a site, or if it should be allowed with restrictions, such as reducing the precision of geolocation to the city area. This layer can also aid as a countermeasure against attacks targeting the browser, operating system or hardware.

Please see the FAQ (https://jshelter.org/faq/) and our blog (https://jshelter.org/blog/) for more information about the extension.

What is the threat model?

See https://jshelter.org/threatmodel/

Do you have a paper that explains the extension?

Yes, see https://arxiv.org/abs/2204.01392