Identifying Personal Information in Internet Traffic

Liu, Yabing; Song, Han Hee; Bermudez, Ignacio; Mislove, Alan; Baldi, Mario; Tongaonkar, Alok

doi:10.1145/2817946.2817947

Cited by 33 publications

(21 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Herein, we apply our proposed approach to the dataset and evaluate its performance by comparing it with the baseline approach [3]. We then present interesting findings on the users' PII via an in-depth analysis of the discovered SKs and values.…”

Section: Comparisonmentioning

confidence: 99%

“…A more serious offense is the trading of personal information to third parties by a few malicious applications without the users' permission. However, users are usually not mostly notified that their PII has been surreptitiously collected by malicious applications [3,4]. Therefore, users cannot inspect the information collected by the application and prevent privacy leaks.…”

Section: Introductionmentioning

confidence: 99%

“…These approaches do not effectively prevent PII transmission to the network because static analysis does not perform real-time detection of privacy leaks and dynamic analysis requires heavy instrumentation. Recently, an alternative has been proposed in which PII is identified on the network layer through traffic interception [3,[12][13][14][15].…”

Section: Introductionmentioning

confidence: 99%

“…Meanwhile, some data that are encrypted and obfuscated in the massive network traffic also interfere with the identification reliability. However, previous studies have used simple string matching methods with regular expressions, lexicon lists, and keyword semantics to identify the possible PII values [3]. In these approaches, PII requires a stable format that can be distinguished from other values, which can either be expressed by regular expressions (e.g., email) [17] or be summarized in a limited lexicon (e.g., city).…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Static tainting extraction approach based on information flow graph for personally identifiable information

Liu

Liao

Song

2020

Sci. China Inf. Sci.

View full text Add to dashboard Cite

Personally identifiable information (PII) is widely used for many aspects such as network privacy leak detection, network forensics, and user portraits. Internet service providers (ISPs) and administrators are usually concerned with whether PII has been extracted during the network transmission process. However, most studies have focused on the extractions occurring on the client side and server side. This study proposes a static tainting extraction approach that automatically extracts PII from large-scale network traffic without requiring any manual work and feedback on the ISP-level network traffic. The proposed approach does not deploy any additional applications on the client side. The information flow graph is drawn via a tainting process that involves two steps: inter-domain routing and intra-domain infection that contains a constraint function (CF) to limit the "over-tainting". Compared with the existing semantic-based approach that uses network traffic from the ISP, the proposed approach performs better, with 92.37% precision and 94.04% recall. Furthermore, three methods that reduce the computing time and the memory overhead are presented herein. The number of rounds is reduced to 0.0883%, and the execution time overhead is reduced to 0.0153% of the original approach.

show abstract

Section: Comparisonmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Static tainting extraction approach based on information flow graph for personally identifiable information

Liu

Liao

Song

2020

Sci. China Inf. Sci.

View full text Add to dashboard Cite

show abstract

“…Dynamic execution is a popular technique used for auditing [34,37,66,72] and validating [18,45,60,33] mobile apps. For example, a security auditor often monitors the network traffic generated by an app to ensure that user-sensitive info is sent encrypted over the network [45,60] and that it is sent to recognized third-party servers only [18,33]. It is common for the auditor to know which part of the app is responsible for the functionality of interest, but dynamically triggering that functionality is still a challenging task.…”

Section: Problem Statementmentioning

confidence: 99%

Goal-Driven Exploration for Android Applications

Lai

Rubin

2019

2019 34th IEEE/ACM International Conference on Automated Software Engineering (ASE)

View full text Add to dashboard Cite

This thesis proposes a solution for automated goal-driven exploration of Android applications-a scenario in which a user, e.g., security auditor, needs to dynamically trigger the functionality of interest in an application, e.g., to check whether usersensitive info is only sent to recognized third-party servers. As the auditor might need to check hundreds or even thousands of apps, manually exploring each app to trigger the desired behavior is too time-consuming to be feasible. Existing automated application exploration and testing techniques are of limited help in this scenario as well, as their goal is mostly to identify faults by systematically exploring different app paths, rather than swiftly navigating to the target functionality. The goal-driven application exploration approach proposed in this thesis, called GOALEXPLORER, automatically generates an executable test script that directly triggers the functionality of interest. The core idea behind GOALEXPLORER is to first statically model the application UI screens and transitions between these screens, producing a Screen Transition Graph (STG). Then, GOALEXPLORER uses the STG to guide the dynamic exploration of the application to the particular target of interest: an Android activity, API call, or a program statement. The results of our empirical evaluation on 93 benchmark applications and 95 most popular GooglePlay applications show that the STG is substantially more accurate than other Android UI models and that GOALEXPLORER is able to trigger a target functionality much faster than existing application exploration.

show abstract

Who Leaks My Privacy: Towards Automatic and Association Detection with GDPR Compliance

Jia

Zhou

et al. 2019

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Identifying Personal Information in Internet Traffic

Cited by 33 publications

References 11 publications

Static tainting extraction approach based on information flow graph for personally identifiable information

Static tainting extraction approach based on information flow graph for personally identifiable information

Goal-Driven Exploration for Android Applications

Who Leaks My Privacy: Towards Automatic and Association Detection with GDPR Compliance

Contact Info

Product

Resources

About