Looking forward to heading to Washington, D.C. for the @PET_Symposium starting tomorrow! It's always a highlight of the year.

This time, I'm especially excited for several reasons: one of my PhD students will be presenting a paper, and we will also be showcasing two posters. On top of that, I have the pleasure of organizing this year’s poster session, which features over 25 high-quality contributions from researchers around the world. I’ll also be chairing the session Web Tracking II.

As always, I’m looking forward to the intense discussions, fresh ideas, and the chance to reconnect with many familiar faces from the PETS community. See you in D.C.!

🚀 Calling all privacy researchers!

The @PET_Symposium 2025 Call for Posters is now open (https://petsymposium.org/2025/cfposters.php)!

Present your new ideas & ongoing research at the Privacy Enhancing Technologies Symposium in Washington, DC (July 14–19).

📅 Submit by June 24 (visa support deadline: May 13).

🏆 News this year: a Best Poster Award!

🔗 Submit now: https://submit.petsymposium.org/posters2025/

#PETS2025 #Privacy #PETS 'Poster #research #PETS25

🔍 New Research on Regional Filter Lists in the Web 🔍

I'm excited to share our latest work, "Understanding Regional Filter Lists: Efficacy and Impact," which has been published at the @PET_Symposium (PETS) 2025! 🚀

Ad blockers and tracking protection mechanisms rely on filter lists to block unwanted content and trackers. In addition to global lists, there are numerous regional filter lists created for specific countries or language regions. But how well do they actually perform?

In our large-scale study, we visited over 1.8 million web pages, analyzed 207 million HTTP requests, and examined 579 GB of data. Our findings reveal:

🔹 Regional lists often block less than expected – and sometimes even perform worse than general lists.
🔹 Only 7% of the rules in these lists are truly effective – showing significant room for optimization.
🔹 Regional lists don’t necessarily enhance privacy where they are intended to – some are even more effective in other regions.

Our results question the actual benefit of regional lists and suggest that the privacy community should work on better, optimized solutions.

📄 Read the full paper: https://petsymposium.org/popets/2025/popets-2025-0063.php

Christian Böttger, Nurullah Demir, Jan Hörnemann, Bhupendra Acharya, @tho, Norbert Pohlmann, @pizzahax

Are you planning to attend (virtually or physically) #IMC23 next week? Be sure to attend our (@nrllah @thorstenholz @chwress @pizzahax @ProfPohlmann ) talk on the similarity of Web measurements in the Security and Privacy session on Wednesday, the 25th!

In our paper, we perform a large-scale web measurement (1.7M page visits) and discuss the differences and similarities between multiple measurements. We find that differences in the result exist even if a website is crawled using the same setup in parallel from two machines.

However, we found significant differences between first- and third-party components. While first-party components are loaded relatively stable and similar, third-party elements (e.g., trackers) make up a significant part of the cases of observed variances.

Finally, what we learned in our study that (1) Drawing conclusions based on loading dependencies is error-prone, (2) An understanding of whether the phenomenon of interest is present in the dynamic or static content of a page is vital for planning the experiments, and (3) Our approach confirms that researchers should use different profiles and execute multiple measurements to assess the potential of ‘randomized’ findings.