Hidden Service Website Response Fingerprinting Attacks Based on Response Time Feature

Meng, Yitong; Fei, Jinlong

doi:10.1155/2020/8850472

Cited by 3 publications

(1 citation statement)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Al-Naami et al webpages in the same website, they proposed to use the local request and response sequence (LRRS) as features of Internet traffic in HTTP/1.1 or HTTP/2, the raw features were slid by several different sizes of convolutional layers to generate more features in the multi-grained scanning process and the resulting features were fed into cascade forests which had a multi-layer structure, each layer consisted of the Random Forest classifiers and the Completely-Random Forest classifiers. Meng et al [87] proposed a novel Website Response Fingerprinting (WRFP) Attack based on response time feature and extremely randomized tree algorithm. Ghiette et al [88] proposed a two-stage algorithm using MinHash and locality sensitive hashing in combination with the Jaccard similarity to improve the scalability of WF attacks.…”

Section: A Approachesmentioning

confidence: 99%

A Survey on Deep Learning for Website Fingerprinting Attacks and Defenses

Liu

2023

IEEE Access

View full text Add to dashboard Cite

The attacks and defenses on the information of which website pages are visited by users are important research subjects in the field of privacy enhancing technologies, they are termed as website fingerprinting (WF) attacks and defenses. Nowadays, deep learning is an important tool in many research areas, including WF attacks and defenses. In this paper, we offer a comprehensive survey on deep learning for WF attacks and defenses. After a brief introduction, we first summarize deep learning, WF attacks, and WF defenses. For deep learning, we review the common paradigms, architectures, and performance metrics. For WF attacks, we review the approaches, challenges and solutions. The approaches include deep learning, traditional machine learning, and other methods. Challenges and solutions cover multi-tab browsing, concept drift, and the base rate fallacy. For WF defenses, we review the strategies and approaches. Then, we survey deep learning for WF attacks, and deep learning for WF defenses. In deep learning for WF attacks, we survey in detail the deep learning paradigms, architectures of WF attack models, and the performance of several representative WF attack models, and look into the future. In deep learning for WF defenses, we survey the architecture, efficacy and overhead of deep learning models in WF defenses, and look into the future. In the end, we summarize this paper.

show abstract

Section: A Approachesmentioning

confidence: 99%

A Survey on Deep Learning for Website Fingerprinting Attacks and Defenses

Liu

2023

IEEE Access

View full text Add to dashboard Cite

show abstract

Bit-FP: A Traffic Fingerprinting Approach for Bitcoin Hidden Service Detection

Zou

Shi

Gao

et al. 2021

2021 IEEE Sixth International Conference on Data Science in Cyberspace (DSC)

View full text Add to dashboard Cite

Deep Nearest Neighbor Website Fingerprinting Attack Technology

Guo¹,

Fei²,

Meng³

2021

Security and Communication Networks

Self Cite

View full text Add to dashboard Cite

By website fingerprinting (WF) technologies, local listeners are enabled to track the specific website visited by users through an investigation of the encrypted traffic between the users and the Tor network entry node. The current triplet fingerprinting (TF) technique proved the possibility of small sample WF attacks. Previous research methods only concentrate on extracting the overall features of website traffic while ignoring the importance of website local fingerprinting characteristics for small sample WF attacks. Thus, in the present paper, a deep nearest neighbor website fingerprinting (DNNF) attack technology is proposed. The deep local fingerprinting features of websites are extracted via the convolutional neural network (CNN), and then the k-nearest neighbor (k-NN) classifier is utilized to classify the prediction. When the website provides only 20 samples, the accuracy can reach 96.2%. We also found that the DNNF method acts well compared to the traditional methods in coping with transfer learning and concept drift problems. In comparison to the TF method, the classification accuracy of the proposed method is improved by 2%–5% and it is only dropped by 3% when classifying the data collected from the same website after two months. These experiments revealed that the DNNF is a more flexible, efficient, and robust website fingerprinting attack technology, and the local fingerprinting features of websites are particularly important for small sample WF attacks.

show abstract

Hidden Service Website Response Fingerprinting Attacks Based on Response Time Feature

Cited by 3 publications

References 17 publications

A Survey on Deep Learning for Website Fingerprinting Attacks and Defenses

A Survey on Deep Learning for Website Fingerprinting Attacks and Defenses

Bit-FP: A Traffic Fingerprinting Approach for Bitcoin Hidden Service Detection

Deep Nearest Neighbor Website Fingerprinting Attack Technology

Contact Info

Product

Resources

About