RBP: a website fingerprinting obfuscation method against intelligent fingerprinting attacks
نویسندگان
چکیده
Abstract Edge computing has developed rapidly in recent years due to its advantages of low bandwidth overhead and delay, but it also brings challenges data security privacy. Website fingerprinting (WF) is a passive traffic analysis attack that threatens website privacy which poses great threat user’s web security. It collects network packets generated while user accesses website, then uses series techniques discover patterns infer the type accesses. Many anonymous networks such as Tor can meet need hide identity from users activities, they are threatened by WF attacks. In this paper, we propose obfuscation method against intelligent attacks, called Random Bidirectional Padding (RBP). novel defense technology based on time sampling random bidirectional padding, covert real distribution destroy Inter-Arrival Time (IAT) features sequence increase difference between datasets with virtual padding. We evaluate state-of-the-art attacks scenarios, show effectiveness.
منابع مشابه
Walkie-Talkie: An Efficient Defense Against Passive Website Fingerprinting Attacks
Website fingerprinting (WF) is a traffic analysis attack that allows an eavesdropper to determine the web activity of a client, even if the client is using privacy technologies such as proxies, VPNs, or Tor. Recent work has highlighted the threat of website fingerprinting to privacy-sensitive web users. Many previously designed defenses against website fingerprinting have been broken by newer a...
متن کاملWalkie-Talkie: An Efficient Defense Against Passive Website Fingerprinting Attacks
Website fingerprinting (WF) is a traffic analysis attack that allows an eavesdropper to determine the web activity of a client, even if the client is using privacy technologies such as proxies, VPNs, or Tor. Recent work has highlighted the threat of website fingerprinting to privacy-sensitive web users. Many previously designed defenses against website fingerprinting have been broken by newer a...
متن کاملWebsite Fingerprinting using Traffic Analysis Attacks
Website fingerprinting is the act of recognizing web traffic through surveillance despite the use of encryption or anonymizing software. The overall idea is to leverage the fact that many web sites have specific request patterns, response byte counts, and other similar coarse features that are known beforehand. This information can be used to recognize and classify different website traffic des...
متن کاملMeasuring Information Leakage in Website Fingerprinting Attacks
Tor is a low-latency anonymity system intended to provide low-latency anonymous and uncensored network access against a local or network adversary. Because of the design choice to minimize traffic overhead (and increase the pool of potential users) Tor allows some information about the client’s connections to leak in the form of packet timing. Attacks that use (features extracted from) this inf...
متن کاملComparing Website Fingerprinting Attacks and Defenses
Website fingerprinting attacks allow a local, passive eavesdropper to identify a web browsing client’s destination web page by extracting noticeable and unique features from her traffic. Such attacks magnify the gap between privacy and security — a client who encrypts her communication traffic may still have her browsing behaviour exposed to lowcost eavesdropping. Previous authors have shown th...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Journal of Cloud Computing
سال: 2021
ISSN: ['2326-6538']
DOI: https://doi.org/10.1186/s13677-021-00244-8