flowprint semi supervised mobile app fingerprinting on
play

FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted - PowerPoint PPT Presentation

May 21, 2023 •250 likes •771 views

FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic Thijs van Ede , Riccardo Bortolameotti, Andrea Continella, Jingjing Ren, Daniel J. Dubois, Martina Lindorfer, David Choffnes, Maarten van Steen and Andreas Peter

  1. FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic Thijs van Ede , Riccardo Bortolameotti, Andrea Continella, Jingjing Ren, Daniel J. Dubois, Martina Lindorfer, David Choffnes, Maarten van Steen and Andreas Peter Contact: t.s.vanede@utwente.nl UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic

  2. Monitoring network traffic Internet ● Apps communicate with the internet . . . UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 2

  3. Monitoring network traffic Internet ● Apps communicate with the internet ● Can we infer mobile app usage from network traffic? . . . UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 2

  4. Monitoring network traffic Internet ● Apps communicate with the internet ● Can we infer mobile app usage from network traffic? ● Traffic is encrypted . . . UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 2

  5. Monitoring network traffic Internet ● Apps communicate with the internet ● Can we infer mobile app usage from network traffic? ● Traffic is encrypted ● Apps consist of modules Authentication CDN Firebase Analytics Advertisement ... UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 2

  6. Monitoring network traffic Internet ● Apps communicate with the internet ● Can we infer mobile app usage from network traffic? ● Traffic is encrypted ● Apps consist of modules ● Modules are shared by apps, leading to homogeneous traffic Authentication CDN Firebase Analytics Advertisement ... UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 2

  7. Monitoring network traffic Internet ● Apps communicate with the internet ● Can we infer mobile app usage from network traffic? ● Traffic is encrypted ● Apps consist of modules ● Modules are shared by apps, leading to homogeneous traffic ● Generated traffic depends on dynamic user input Authentication CDN Firebase Analytics Advertisement ... UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 2

  8. Monitoring network traffic Internet ● Apps communicate with the internet ● Can we infer mobile app usage from network traffic? ● Traffic is encrypted ● Apps consist of modules ● Modules are shared by apps, leading to homogeneous traffic ● Generated traffic depends on dynamic user input ● Apps on the device evolve over time Authentication CDN Firebase Analytics Advertisement ... UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 2

  9. Monitoring network traffic Internet ● Apps communicate with the internet ● Can we infer mobile app usage from network traffic? ● Traffic is encrypted ● Apps consist of modules ● Modules are shared by apps, leading to homogeneous traffic ● Generated traffic depends on dynamic user input ● Apps on the device evolve over time ○ Removal Authentication CDN Firebase Analytics Advertisement ... UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 2

  10. Monitoring network traffic Internet ● Apps communicate with the internet ● Can we infer mobile app usage from network traffic? ● Traffic is encrypted ● Apps consist of modules ● Modules are shared by apps, leading to homogeneous traffic ● Generated traffic depends on dynamic user input ● Apps on the device evolve over time ○ Removal Authentication CDN Firebase ○ Installation Analytics Advertisement ... UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 2

  11. Monitoring network traffic Internet ● Apps communicate with the internet ● Can we infer mobile app usage from network traffic? ● Traffic is encrypted ● Apps consist of modules ● Modules are shared by apps, leading to homogeneous traffic ● Generated traffic depends on dynamic user input ● Apps on the device evolve over time ○ Removal Authentication CDN Firebase ○ Installation Analytics Advertisement ... ○ Update UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 2

  12. Monitoring network traffic Internet ● Apps communicate with the internet ● Can we infer mobile app usage from network traffic? ● Traffic is encrypted Can we infer mobile app usage ● Apps consist of modules from network traffic without prior ● Modules are shared by apps, leading to homogeneous traffic knowledge of installed apps? ● Generated traffic depends on dynamic user input ● Apps on the device evolve over time ○ Removal Authentication CDN Firebase ○ Installation Analytics Advertisement ... ○ Update UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 2

  13. Intuition Apps are composed of a unique set of modules that each communicate with a relatively invariable set of network destinations UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 3

  14. Intuition Apps are composed of a unique set of modules that each communicate with a relatively invariable set of network destinations App X App Y Core logic CDN Authentication CDN Firebase Analytics Advertisement Advertisement UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 3

  15. Intuition Apps are composed of a unique set of modules that each communicate with a relatively invariable set of network destinations Server X App X App Y Core logic CDN Authentication CDN Firebase Analytics Advertisement Advertisement UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 3

  16. Intuition Apps are composed of a unique set of modules that each communicate with a relatively invariable set of network destinations CDN App X App Y Core logic CDN Authentication CDN Firebase Analytics Advertisement Advertisement UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 3

  17. Intuition Apps are composed of a unique set of modules CDN Authentication that each communicate with a relatively invariable set of network destinations Ad network Analytics CDN Firebase Server X App X App Y Core logic CDN Authentication CDN Firebase Analytics Advertisement Advertisement UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 3

  18. Intuition Apps are composed of a unique set of modules CDN Authentication that each communicate with a relatively invariable set of network destinations Ad network Analytics CDN Firebase Server X App X App Y Core logic CDN Authentication CDN Firebase Analytics Advertisement Advertisement UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 3

  19. Intuition Apps are composed of a unique set of modules CDN Authentication that each communicate with a relatively invariable set of network destinations Ad network Analytics CDN Firebase Server X App X App Y Core logic CDN Authentication CDN Firebase Analytics Advertisement Advertisement UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 3

  20. Intuition Apps are composed of a unique set of modules CDN Authentication that each communicate with a relatively invariable set of network destinations Ad How do we extract these network Analytics patterns without prior CDN Firebase knowledge of the apps? Server X App X App Y Core logic CDN Authentication CDN Firebase Analytics Advertisement Advertisement UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 3

  21. FlowPrint - Overview UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 4

  22. FlowPrint - Feature extraction For each flow in the network, we extract ● Originating device ● Destination (IP, port)-tuple ● TLS certificate ● Timestamps UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 5

  23. FlowPrint - Clustering In 5 minute batches, we cluster flows by network destination: ● Destination (IP, port)-tuple or ● TLS certificate CDN Authentication Ad network CDN Firebase Analytics UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 6

  24. FlowPrint - Clustering In 5 minute batches, we cluster flows by network destination: ● Destination (IP, port)-tuple or ● TLS certificate UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 6

  25. FlowPrint - Clustering In 5 minute batches, we cluster flows by network destination: ● Destination (IP, port)-tuple or ● TLS certificate ● Some of these clusters are shared UNIVERSITY OF TWENTE FlowPrint: Semi-Supervised Mobile-App Fingerprinting on Encrypted Network Traffic 6

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Semi-Supervised Learning Maria-Florina Balcan 03/30/2015 Readings: Semi-Supervised Learning.

Semi-Supervised Learning Maria-Florina Balcan 03/30/2015 Readings: Semi-Supervised Learning.

Semi-Supervised Learning Maria-Florina Balcan 03/30/2015 Readings: Semi-Supervised Learning. Encyclopedia of Machine Learning. Jerry Zhu, 2010 Combining Labeled and Unlabeled Data with Co- Training. Avrim Blum, Tom Mitchell. COLT

953 views • 45 slides
Semi-Supervised Kernel Mean Shift Clustering A Semi-Supervised Clustering Approach Motivation:

Semi-Supervised Kernel Mean Shift Clustering A Semi-Supervised Clustering Approach Motivation:

Semi-Supervised Kernel Mean Shift Clustering A Semi-Supervised Clustering Approach Motivation: Need for Supervision Data may not form clusters in Mapping to Feature Space Constraint Vector Input Points Clustering Projection the input

307 views • 27 slides
Unsupervised and Semi-supervised Learning of Structure Graham Neubig Site

Unsupervised and Semi-supervised Learning of Structure Graham Neubig Site

CS11-747 Neural Networks for NLP Unsupervised and Semi-supervised Learning of Structure Graham Neubig Site https://phontron.com/class/nn4nlp2020/ Supervised, Unsupervised, Semi-supervised Most models handled here are supervised learning

580 views • 39 slides
Unsupervised and Semi-supervised Learning of Structure Graham Neubig Site

Unsupervised and Semi-supervised Learning of Structure Graham Neubig Site

CS11-747 Neural Networks for NLP Unsupervised and Semi-supervised Learning of Structure Graham Neubig Site https://phontron.com/class/nn4nlp2018/ Supervised, Unsupervised, Semi-supervised Most models handled here are supervised learning

670 views • 32 slides
CS330 Paper Presentation: October 16th, 2019 Supervised Classification Semi-Supervised

CS330 Paper Presentation: October 16th, 2019 Supervised Classification Semi-Supervised

CS330 Paper Presentation: October 16th, 2019 Supervised Classification Semi-Supervised Classification: More realistic dataset Labelled Unlabelled Semi-Supervised Classification Most biologically plausible learning regime A familiar

650 views • 46 slides
Support Vector Machines (SVMs). Semi-Supervised Learning. Semi-Supervised SVMs.

Support Vector Machines (SVMs). Semi-Supervised Learning. Semi-Supervised SVMs.

Support Vector Machines (SVMs). Semi-Supervised Learning. Semi-Supervised SVMs. Maria-Florina Balcan 03/25/2015 Support Vector Machines (SVMs). One of the most theoretically well motivated and practically most e ff ective

792 views • 40 slides
Iterative Hybrid Algorithm for Semi-supervised Classification Martin SAVESKI Supervised by

Iterative Hybrid Algorithm for Semi-supervised Classification Martin SAVESKI Supervised by

Iterative Hybrid Algorithm for Semi-supervised Classification Martin SAVESKI Supervised by professor Thierry Arti` eres University Pierre and Marie Curie June 19, 2012 Martin SAVESKI Iterative Hybrid Algorithm for Semi-supervised

1.06k views • 26 slides
Particles Competition and Cooperation in Networks for Semi-Supervised Learning Fabricio Breve

Particles Competition and Cooperation in Networks for Semi-Supervised Learning Fabricio Breve

Particles Competition and Cooperation in Networks for Semi-Supervised Learning Fabricio Breve Department of Electrical & Computer Engineering University of Alberta Seminar - October 09, 2009 Contents Introduction Semi-Supervised

863 views • 40 slides
Semi-Supervised Local Fisher Semi-Supervised Local Fisher Discriminant Analysis Discriminant

Semi-Supervised Local Fisher Semi-Supervised Local Fisher Discriminant Analysis Discriminant

PAKDD2008 May 20-23, 2008 Semi-Supervised Local Fisher Semi-Supervised Local Fisher Discriminant Analysis Discriminant Analysis for Dimensionality Reduction for Dimensionality Reduction Masashi Sugiyama (Tokyo Tech.) Tsuyoshi Ide (IBM)

927 views • 36 slides
Tangent-Normal Adversarial Regularization for Semi-Supervised Learning Bing Yu , Jingfeng Wu

Tangent-Normal Adversarial Regularization for Semi-Supervised Learning Bing Yu , Jingfeng Wu

Tangent-Normal Adversarial Regularization for Semi-Supervised Learning Bing Yu , Jingfeng Wu , Jinwen Ma, Zhanxing Zhu Peking University Beijing Institute of Big Data Research June, 2019 Semi-supervised learning (SSL) Suppose we

201 views • 18 slides
Link prediction in graph construction for supervised and semi-supervised learning Lilian Berton,

Link prediction in graph construction for supervised and semi-supervised learning Lilian Berton,

Link prediction in graph construction for supervised and semi-supervised learning Lilian Berton, Jorge Valverde-Rebaza and Alneu de Andrade Lopes Laboratory of Computational Intelligence (LABIC) University of S ao Paulo (USP) Brazil July

398 views • 20 slides
Author Identification Using Semi-supervised Learning Ioannis Kourtis and Efstathios Stamatatos

Author Identification Using Semi-supervised Learning Ioannis Kourtis and Efstathios Stamatatos

Author Identification Using Semi-supervised Learning Ioannis Kourtis and Efstathios Stamatatos University of the Aegean Outline Introduction The proposed method Common n-grams SVM Semi-supervised learning Evaluation

533 views • 17 slides
Parallelizing Semi- ReDAS Lab Supervised Learning Algorithms with MapReduce Nick Gauthier

Parallelizing Semi- ReDAS Lab Supervised Learning Algorithms with MapReduce Nick Gauthier

Parallelizing Semi- ReDAS Lab Supervised Learning Algorithms with MapReduce Nick Gauthier Advisor: Dr. Rakesh Verma COMPUTER SCIENCE Motivation Semi-supervised learning(SSL) algorithms are slow when working with large-scale data.

801 views • 14 slides
Semi-supervised Semantic Role Labeling Hagen Frstenau Department of Computational Linguistics

Semi-supervised Semantic Role Labeling Hagen Frstenau Department of Computational Linguistics

Frame Semantics A Semi-supervised approach to role labeling Summary Semi-supervised Semantic Role Labeling Hagen Frstenau Department of Computational Linguistics Saarland University (joint work with Mirella Lapata) FEAST meeting

594 views • 37 slides
Regularizing objective functionals in semi-supervised learning Dejan Slep cev Carnegie Mellon

Regularizing objective functionals in semi-supervised learning Dejan Slep cev Carnegie Mellon

Regularizing objective functionals in semi-supervised learning Dejan Slep cev Carnegie Mellon University February 9, 2018. . 1 / 47 References S.,Thorpe, Analysis of p-Laplacian regularization in semi-supervised learning , arxiv

742 views • 48 slides
Mutual information deep regularization for semi- supervised segmentation J. Peng, M. Pedersoli,

Mutual information deep regularization for semi- supervised segmentation J. Peng, M. Pedersoli,

MIDL 2020 presentation Mutual information deep regularization for semi- supervised segmentation J. Peng, M. Pedersoli, C. Desrosiers Outline We proposed a semi-supervised segmentation method for medical image regularized by Mutual Information

256 views • 13 slides
Reactive Systems Why now? Electronic Commerce Era Multicore Era Cloud Era Backlash to the BOFH

Reactive Systems Why now? Electronic Commerce Era Multicore Era Cloud Era Backlash to the BOFH

Reactive Systems Why now? Electronic Commerce Era Multicore Era Cloud Era Backlash to the BOFH Era Rails, JEE, or X are just not good enough! Rails, JEE, or X are just not good enough! Simultaneous Invention/Evolution Successful systems

1.38k views • 92 slides
Captivity-induced Evolution: Role of Humans in Modifying Virulence R. Mazzoni M. Niemiller

Captivity-induced Evolution: Role of Humans in Modifying Virulence R. Mazzoni M. Niemiller

Captivity-induced Evolution: Role of Humans in Modifying Virulence R. Mazzoni M. Niemiller Matthew J. Gray University of Tennessee Center for Wildlife Health Department of Forestry, Wildlife and Fisheries Outline I. Virulence Evolution II.

409 views • 6 slides
Beyond Unit Testing Steve Loughran Julio Guijarro HP Laboratories, Bristol, UK steve.loughran

Beyond Unit Testing Steve Loughran Julio Guijarro HP Laboratories, Bristol, UK steve.loughran

Beyond Unit Testing Steve Loughran Julio Guijarro HP Laboratories, Bristol, UK steve.loughran at hpl.hp.com julio.guijarro at hpl.hp.com About Us Julio Guij arro Research scientist at HP Laboratories on Grid-S cale Deployment Leads t

1.14k views • 31 slides
Outline CSci 5271 Bernsteins perspective Introduction to Computer Security Day 8: Defensive

Outline CSci 5271 Bernsteins perspective Introduction to Computer Security Day 8: Defensive

Outline CSci 5271 Bernsteins perspective Introduction to Computer Security Day 8: Defensive programming and design, Announcements intermission part 2 Stephen McCamant Techniques for privilege separation University of Minnesota, Computer

577 views • 5 slides
Supersymmetry Search Supersymmetry Search in Trilepton in Trilepton Final States Final States

Supersymmetry Search Supersymmetry Search in Trilepton in Trilepton Final States Final States

Supersymmetry Search Supersymmetry Search in Trilepton in Trilepton Final States Final States at ATLAS: at ATLAS: Backgrounds from Secondary Leptons Backgrounds from Secondary Leptons from from b-Decays -Decays and Systematic

420 views • 30 slides
Correlation in Extensive-Form Games: Saddle-Point Formulation and Benchmarks Gabriele Farina 1

Correlation in Extensive-Form Games: Saddle-Point Formulation and Benchmarks Gabriele Farina 1

Correlation in Extensive-Form Games: Saddle-Point Formulation and Benchmarks Gabriele Farina 1 Chun Kai Ling 1 Fei Fang 2 Tuomas Sandholm 1,3,4,5 1 Computer Science Department, Carnegie Mellon University 2 Institute for Software Research, Carnegie

2.22k views • 30 slides
Concurrency www.thoughts-on-java.org Databases try to isolate concurrent transactions

Concurrency www.thoughts-on-java.org Databases try to isolate concurrent transactions

Concurrency www.thoughts-on-java.org Databases try to isolate concurrent transactions Concurrency Mechanism and isolation levels are database specific Hibernate inherits concurrency control from the database Uses database features

232 views • 7 slides
ECONOMY 2019 ECONOMIC IMPACT REPORT Photo By: Bill Monaghan 41/32/5 Southeastern PA is the

ECONOMY 2019 ECONOMIC IMPACT REPORT Photo By: Bill Monaghan 41/32/5 Southeastern PA is the

DRIVES THE ECONOMY 2019 ECONOMIC IMPACT REPORT Photo By: Bill Monaghan 41/32/5 Southeastern PA is the Commonwealths key economic engine. THE FIVE COUNTIES GENERATE 41% OF STATES ECONOMIC ACTIVITY WITH 32% OF ITS POPULATION ON 5% OF ITS

606 views • 31 slides

More recommend