Device fingerprinting is a widely used technique that allows a third party to identify a particular device. Applications of device fingerprinting include authentication, attacker identification, or software license binding. Device fingerprinting is also used on the web as a method for identifying users. Unfortunately, one of its most widespread uses is to identify users visiting different websites and thus build their browsing history. This constitutes a specific type of web tracking that poses a threat to users' privacy. While many anti-tracking solutions have been proposed, all of them block or tamper with device fingerprinting techniques rather than just blocking their web tracking application. Therefore, users may be limited in their experience while using a website. In this paper, we propose \textit{Privacy-preserving Client-side Fingerprinting} (PCF), a new method that allows device fingerprinting on the web, while blocks the possibility of performing web tracking. To this end, PCF is built upon fingerprinting transparency: any website ought to declare its fingerprinting scripts while users will compute them in a privacy-preserving manner, limiting the resultant fingerprints for each different domain and, therefore, making web tracking not feasible.

翻译：设备指纹识别是一种广泛使用的技术，允许第三方识别特定设备。其应用包括身份认证、攻击者识别或软件许可绑定。设备指纹识别也被用于网络环境中作为识别用户的方法。不幸的是，其最广泛的用途之一是识别访问不同网站的用户，从而构建其浏览历史。这构成了一种特定的网络追踪类型，对用户隐私构成威胁。尽管已有许多反追踪解决方案被提出，但它们都选择阻止或篡改设备指纹识别技术，而非仅阻断其网络追踪应用。因此，用户在使用网站时可能受到体验限制。本文提出\textit{隐私保护的客户端指纹识别}（PCF），一种新方法，允许在网络环境中进行设备指纹识别，同时阻断实施网络追踪的可能性。为此，PCF建立在指纹透明性的基础上：任何网站应声明其指纹脚本，而用户将以隐私保护的方式计算这些脚本，限制每个不同域生成的最终指纹，从而使网络追踪不可行。