Browse Definitions :
Definition

respawning cookie

A respawning cookie is a standard HTTP cookie backed up by data stored in additional files that are used to rebuild the original cookie when the user visits the originating site again.

Cookies can typically be blocked by private browsing modes on web browsers, browser settings to deny cookies or deletion by anti-malware software. As users found about cookies, many raised concerns about tracking. Disclosure of the use of cookies did not quiet this discontent and the use of standard cookies can still be a hot issue.

 A 2009 study,” Flash Cookies and Privacy,” showed that cookies were reappearing or “respawning” after deletion. The paper revealed that 50 percent of the 100 top websites were using a method of tagging user  browsers with a unique identifier that could not be easily deleted. That method is known as  persistent identification element (PIE). PIE uses JavaScript and Flash to create a tracking substitute. The storage technique is the same as that used for standard cookie data. Because of the backup data, HTTP cookies that are deleted can respawn.

 There are a couple of methods used to create respawning cookies. Flash cookies, also known as local storage objects (LSO) can be used to create a duplicated tracking record from which the original cookie is rebuilt. Flash cookies are less known and more hidden in the operating system than regular HTTP cookies.  As a result, they are less frequently deleted.  Because Flash cookies lack an expiration date and have a much larger file size (100KB max versus HTTP cookies 4K), they can be exploited to indefinitely store the tracking info that would be lost in the denied or deleted cookies while also storing much more information.

 HTML5 local storage and cache cookies through entity tags (ETags) are another method used to respawn HTTP cookies. ETags can store the same info as HTTP cookies. Again, the sites recognize the PIE and use covert backup to enable reconstitution of the cookie data.

Either of these methods offer members of a consumer tracking firm’s subscriber base more complete information about consumer comings and goings and, thus, interests that can inform marketing efforts.

Newer versions of Flash include options to delete the info required for respawning cookies. Previously, third-party utilities were required to remove them.  

The term respawning comes from multiplayer first-person shooter computer games. In these games, when your character dies, you can usually hit a key to restart and have the character “respawn” and reappear in another location.

This was last updated in October 2014

Continue Reading About respawning cookie

SearchCompliance
  • ISO 31000 Risk Management

    The ISO 31000 Risk Management framework is an international standard that provides businesses with guidelines and principles for ...

  • pure risk

    Pure risk refers to risks that are beyond human control and result in a loss or no loss with no possibility of financial gain.

  • risk reporting

    Risk reporting is a method of identifying risks tied to or potentially impacting an organization's business processes.

SearchSecurity
  • plaintext

    In cryptography, plaintext is usually ordinary readable text before it is encrypted into ciphertext or after it is decrypted.

  • black hat hacker

    A black hat hacker has been historically used to describe one who has malicious intent -- such as theft of information, fraud or ...

  • cookie poisoning

    Cookie poisoning is a type of cyber attack in which a bad actor hijacks, forges, alters or manipulates a cookie to gain ...

SearchHealthIT
SearchDisasterRecovery
  • What is risk mitigation?

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • fault-tolerant

    Fault-tolerant technology is a capability of a computer system, electronic system or network to deliver uninterrupted service, ...

  • synchronous replication

    Synchronous replication is the process of copying data over a storage area network, local area network or wide area network so ...

SearchStorage
  • Remote Direct Memory Access (RDMA)

    Remote Direct Memory Access (RDMA) is a technology that enables two networked computers to exchange data in main memory without ...

  • storage (computer storage)

    Data storage is the collective methods and technologies that capture and retain digital information on electromagnetic, optical ...

  • storage medium (storage media)

    In computers, a storage medium is a physical device that receives and retains electronic data for applications and users and ...

Close