PerfWeb: How to Violate Web Privacy with Hardware Performance Events

Gülmezoğlu, Berk; Zankl, Andreas; Eisenbarth, Thomas; Sunar, Berk

doi:10.1007/978-3-319-66399-9_5

Cited by 40 publications

(22 citation statements)

References 50 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This observation becomes more noticeable as we reduce the traces to lower than 20 where the accuracy becomes below to 80% for all the applied ML classification models. Another interesting observation is that Logit-RandomF classifier outperforms the previous work Perf-Web [9] for most of the training sizes (except when the number of traces for training drops to 5). When training traces is 50, Logit-RandomF classifier achieves the highest classification accuracy and F-measure, 91% and 0.901 respectively.…”

Section: A ML Classification Models Comparisonmentioning

confidence: 83%

“…Once the side-channel information is collected, MLbased classification is leveraged to infer users' visited website information. There are three popular threat models targeting stealing users' browsing history, including native attack model [9], malicious website attack model [31], and hardware attack model [5].…”

Section: A Website Fingerprinting Attacksmentioning

confidence: 99%

“…It also enhances systems' security by providing microarchitectural information of malware, side-channel attacks, and building detectors based on the events' information [7], [16], [50]. However, recent studies have shown the suitability of such HPCs-based classification for spying on users' behaviors and violating users' privacy [9], [25]. Such privacy breach attacks gain access to HPCs via Perf tool which is a Linux-based low-level performance monitoring tool and provides considerable functionality and abstraction in the kernel, making the interface straightforward for ordinary users [1], [6].…”

Section: B Hardware Performance Counters (Hpcs)mentioning

confidence: 99%

“…Though effective, they only work for attacks deployed through malicious websites. Furthermore, advanced attacks [9] can be deployed in native code and bypass such detection systems. [27] randomizes properties, like offsetHeight and plugins, to the JavaScript environment, which generates different fingerprints even for the same website and increases non-determinism for attackers.…”

Section: Related Workmentioning

confidence: 99%

“…The Tor Browser based on the Firefox web browser further protects users by disabling features that may be used for tracking users.Despite considerable progress on developing users' privacy protections mechanisms, there are still a number of recent privacy violation attacks that rely on the application of Machine Learning (ML) algorithms that are trained with computer systems' side-channel information collected when a website is open. These attacks stem from existing sidechannel vulnerabilities like systems power analysis [20], CPU activity [4], on-chip cache memories [31], memory footprints [13], storage [17], and hardware events [9]. In this work, we comprehensively reviewed the existing studies on web browser fingerprinting attacks and identified some important challenges associated with these methods that could potentially result in underestimation of the security threats.…”

Section: Introductionmentioning

confidence: 99%

See 4 more Smart Citations

Leaked-Web: Accurate and Efficient Machine Learning-Based Website Fingerprinting Attack through Hardware Performance Counters

Wang

2021

Preprint

View full text Add to dashboard Cite

Users' website browsing history contains sensitive information, like health conditions, political interests, financial situations, etc. In order to cope with the potential website behavior leakage and enhance the browsing security, some defense mechanisms such as SSH tunnels and anonymity networks (e.g., Tor) have been proposed. Nevertheless, some recent studies have demonstrated the possibility of inferring website fingerprints based on important usage information such as traffic, cache usage, memory usage, CPU activity, power consumption, and hardware performance counters information. However, existing website fingerprinting attacks demand high sampling rate which causes high performance overheads and large network traffic, and/or they require launching an additional malicious website by the user which is not guaranteed. As a result, such drawbacks make the existing attacks more noticeable to users and corresponding fingerprinting detection mechanisms. In response, in this work we propose Leaked-Web, a novel accurate and efficient machine learning-based website fingerprinting attack through processor's Hardware Performance Counters (HPCs). Leaked-Web efficiently collects hardware performance counters in users' computer system at a significantly low granularity monitoring rate and sends the samples to the remote attack's server for further classification. Leaked-Web examines the web browsers' microarchitectural features using various advanced machine learning algorithms ranging from classical, boosting, deep learning, and time-series models. Our experimental results indicate that Leaked-Web based on a LogitBoost ML classifier using only the top 4 HPC features achieves 91% classification accuracy outperforming the state-of-the-art attacks by nearly 5%. Furthermore, our proposed attack obtains a negligible performance overhead (only <1%) which is around 12% lower than the existing hardware-assisted website fingerprinting attacks.

show abstract

Section: A ML Classification Models Comparisonmentioning

confidence: 83%