using traffic analysis
play

using Traffic Analysis Attacks Salini S K What is Traffic Analysis - PowerPoint PPT Presentation

Feb 18, 2023 •717 likes •1.15k views

Website Fingerprinting using Traffic Analysis Attacks Salini S K What is Traffic Analysis What is Traffic Analysis Wiki says What is Traffic Analysis Wiki says Process of intercepting and examining messages in order to deduce

  1. Website Fingerprinting using Traffic Analysis Attacks Salini S K

  2. What is Traffic Analysis

  3. What is Traffic Analysis Wiki says……

  4. What is Traffic Analysis Wiki says…… • Process of intercepting and examining messages in order to deduce information from patterns in communication. • Can be performed even when the messages are encrypted.

  5. Why do I care? • Your privacy is compromised – Attacker knows the site you are visiting – He knows how long you stay in the same site • Attacker can poison DNS cache accordingly and you may end up giving your credentials to a malicious site.

  6. Client making request to a webpage Unaware user Encrypted

  7. Client making request to a webpage Unaware user But not safe

  8. Attacker intercepts traffic

  9. Attacker intercepts traffic Attaaackk…

  10. Attacker intercepts traffic Can See • Packet length • Bandwidth • Average packets transferred/sec

  11. What will I do?

  12. What will I do? • Visit different websites and collect traffic traces (Data collection phase)

  13. What will I do? • Visit different websites and collect traffic traces (Data collection phase) • Extract features from training dataset (Training phase)

  14. What will I do? • Visit different websites and collect traffic traces (Data collection phase) • Extract features and train dataset (Training phase) • Test on random dataset. (Testing phase)

  15. What will I do? • Visit different websites and collect traffic traces (Data collection phase) • Extract features and train dataset (Training phase) • Test on random dataset. (Testing phase) Use machine learning

  16. What will I do? • Visit different websites and collect traffic traces (Data collection phase) • Extract features and train dataset (Training phase) • Test on random dataset. (Testing phase) 3 simple(???) steps

  17. Websites fingerprinted…

  18. Step 1

  19. Step 1 • Data collection:

  20. Step 1 • Data collection: - Used airodump-ng for collecting WPA- encrypted data - Used Wireshark to filter out traffic from a specific host

  21. Step 2

  22. Step 2 • Feature extraction

  23. Features considered… • Packet length • Inter-arrival time • Upstream Bandwidth • Downstream Bandwidth • Average Packets sent/sec • Average Packets received/sec

  24. Why such features?

  25. Why such features? - deduced based on trail and error method

  26. Bandwidth distribution for various websites

  27. Distribution of Average packet transferred/sec for various websites

  28. Step 3

  29. Step 3 • Training and Testing

  30. Step 3 • Training and Testing Used machine learning classifiers -Naïve Bayes Simple -Naïve Bayes -Decision tree

  31. Accuracy of Classification- using various classifiers Classifier Naïve Bayes 90% 100% 83% 89% 99% Simple Naïve Bayes 89% 100% 90% 89% 99% (without SD) Naïve Bayes 99% 100% 99% 100% 100% (with SD) Decision tree 80% 100% 80% 90% 90% (Rankers Search) Decision Tree 100% 100% 100% 100% 100% (Best first Search) SD- Supervised Discretion

  32. Question: Can we train the system using the traffic profiles collected from one browser and test it on the traffic profiles collected from some other browser?

  33. Question: Can we train the system using the traffic profiles collected from one browser and test it on the traffic profiles collected from some other browser? NOOO…. Coz.,

  34. vs

  35. vs

  36. vs

  37. Then how can this attack be made useful?

  38. Then how can this attack be made useful? • Use Browser Fingerprinting

  39. Then how can this attack be made useful? • Use Browser Fingerprinting Reference :Browser Fingerprinting from Coarse Traffic Summaries : Techiniques and Implications – by Yen et. al.

  40. Limitation and Future Work • Assumes that user is going to visit only a single website at a time. But in practice, users can visit multiple websites. • Can be extended to other websites and other browsers by using similar methods.

  41. Thank You

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Interactive traffic analysis and Interactive traffic analysis and visualization with Wisconsin

Interactive traffic analysis and Interactive traffic analysis and visualization with Wisconsin

Interactive traffic analysis and Interactive traffic analysis and visualization with Wisconsin Netpy visualization with Wisconsin Netpy Cristian Estan, Garret Magin University of Wisconsin-Madison USENIX LISA, 19 December 2005 Traffic

345 views • 18 slides
1 THE ANALYSIS OF TRAFFIC SAFETY THE ANALYSIS OF TRAFFIC SAFETY 3. Classification of stop

1 THE ANALYSIS OF TRAFFIC SAFETY THE ANALYSIS OF TRAFFIC SAFETY 3. Classification of stop

AGENDA AGENDA 1. The role and significance of public transport and tram transport in urban areas 2. Goal and stages of the study 1 THE ANALYSIS OF TRAFFIC SAFETY THE ANALYSIS OF TRAFFIC SAFETY 3. Classification of stop stations at tram stops

169 views • 4 slides
Traffic Classifier Real Time Classification and Analysis of T1/E1 Traffic 818 West Diamond Avenue

Traffic Classifier Real Time Classification and Analysis of T1/E1 Traffic 818 West Diamond Avenue

Traffic Classifier Real Time Classification and Analysis of T1/E1 Traffic 818 West Diamond Avenue - Third Floor, Gaithersburg, MD 20878 Phone: (301) 670-4784 Fax: (301) 670-9187 Email: info@gl.com Website: http://www.gl.com 1 1 Traffic

228 views • 11 slides
ICmyNet.Flow: NetFlow based traffic investigation analysis traffic investigation, analysis, and

ICmyNet.Flow: NetFlow based traffic investigation analysis traffic investigation, analysis, and

ICmyNet.Flow: NetFlow based traffic investigation analysis traffic investigation, analysis, and reporting Slavko Gajin slavko.gajin@ rcub.bg.ac.rs AMRES Academic Network of Serbia RCUB - Belgrade University Computer Center ETF

641 views • 46 slides
Network Traffic Characterization Srinidhi Varadarajan Traffic Analysis: Introduction

Network Traffic Characterization Srinidhi Varadarajan Traffic Analysis: Introduction

Network Traffic Characterization Srinidhi Varadarajan Traffic Analysis: Introduction Youve just invented the greatest protocol does everything including tying your shoelaces. What now? Need to know how it performs. Is it

510 views • 13 slides
High Speed Traffic Analysis for High-Speed Traffic Analysis for Security: Challenges &

High Speed Traffic Analysis for High-Speed Traffic Analysis for Security: Challenges &

High Speed Traffic Analysis for High-Speed Traffic Analysis for Security: Challenges & Approaches Security: Challenges & Approaches C-DAC Asia-Pacific Advanced Network 32 nd Meeting, India Habitat Centre, New Delhi APAN 32nd Meeting,

647 views • 28 slides
Traffic Analysis The Most Powerful and Least Understood Attack Methods Raven Alder, Riccardo

Traffic Analysis The Most Powerful and Least Understood Attack Methods Raven Alder, Riccardo

Traffic Analysis The Most Powerful and Least Understood Attack Methods Raven Alder, Riccardo Bettati, Jon Callas, Nick Matthewson 1 What is Traffic Analysis? Signals intelligence that ignores content Information for analysis is the

355 views • 14 slides
my.SWISSTRAFFIC Automated Traffic Collection & Analysis FULLY AUTOMATED TRAFFIC DATA

my.SWISSTRAFFIC Automated Traffic Collection & Analysis FULLY AUTOMATED TRAFFIC DATA

my.SWISSTRAFFIC Automated Traffic Collection & Analysis FULLY AUTOMATED TRAFFIC DATA COLLECTION AND ANALYTICS There is a high demand for reliable Traffic Data but Static data single-purpose data Invasive costly deployment &

404 views • 18 slides
ANALYSIS ETI2506 Sunday, 23 October 2016 1 WHERE ARE WE IN THE CURRICULUM? 2 GOAL OF TRAFFIC

ANALYSIS ETI2506 Sunday, 23 October 2016 1 WHERE ARE WE IN THE CURRICULUM? 2 GOAL OF TRAFFIC

IN INTRODUCTION TO TRAFFIC ANALYSIS ETI2506 Sunday, 23 October 2016 1 WHERE ARE WE IN THE CURRICULUM? 2 GOAL OF TRAFFIC ANALYSIS 1. Except for user terminals, the telephone network is composed of a variety of common 45 Trunks equipment

385 views • 17 slides
Internet Traffic: Analysis, Modeling with real-world aspects Pierre B ORGNAT CNRS ENS Lyon,

Internet Traffic: Analysis, Modeling with real-world aspects Pierre B ORGNAT CNRS ENS Lyon,

Traffic Measurement Analysis & Robust Methods Modeling Anomaly Detection Traffic Classification Conclusion + Internet Traffic: Analysis, Modeling with real-world aspects Pierre B ORGNAT CNRS ENS Lyon, Laboratoire de Physique (UMR

716 views • 60 slides
Road traffic safety analysis at U-turns on Thai highways using Traffic Conflict Technique at

Road traffic safety analysis at U-turns on Thai highways using Traffic Conflict Technique at

A presentation on Road traffic safety analysis at U-turns on Thai highways using Traffic Conflict Technique at ICTCT workshop 2014 Karlsruhe, Germany 16 th Oct 2014 Presented by: Inder Pal MEEL ipmeel@gmail.com 2014-10-16 Contents

417 views • 29 slides
Rendezvous-based Traffic Rendezvous-based Traffic Classification, Measurement, Classification,

Rendezvous-based Traffic Rendezvous-based Traffic Classification, Measurement, Classification,

Rendezvous-based Traffic Rendezvous-based Traffic Classification, Measurement, Classification, Measurement, and Analysis and Analysis ISC/CAIDA Data Collaboration Workshop October 22, 2012 David Plonka & Paul Barford

1.33k views • 26 slides
Broadband traffic analysis (update) Kensuke Fukuda (NII) Kenjiro Cho (IIJ) Hiroshi Esaki

Broadband traffic analysis (update) Kensuke Fukuda (NII) Kenjiro Cho (IIJ) Hiroshi Esaki

Broadband traffic analysis (update) Kensuke Fukuda (NII) Kenjiro Cho (IIJ) Hiroshi Esaki (u-tokyo) Akira Kato (u-tokyo) Outline Macro-level residential user traffic traffic pattern and growth Flow-level residential user traffic

550 views • 24 slides
Probably the worlds best stateful traffic generation and analysis platform 2 1 2 4 5 3

Probably the worlds best stateful traffic generation and analysis platform 2 1 2 4 5 3

1 Probably the worlds best stateful traffic generation and analysis platform 2 1 2 4 5 3 OVERVIEW TYPES OF TESTS HARDWARE SOFTWARE KEY FEATURES LEARN MORE 3 OVERVIEW Vulcan generates stateful Ethernet traffic to analyze how

349 views • 34 slides
Probably the worlds best stateless traffic generation and analysis platform 2 1 2 4 5 6

Probably the worlds best stateless traffic generation and analysis platform 2 1 2 4 5 6

1 Probably the worlds best stateless traffic generation and analysis platform 2 1 2 4 5 6 3 OVERVIEW TYPES OF TESTS HARDWARE SOFTWARE AUTOMATION KEY FEATURES LEARN MORE 3 OVERVIEW Valkyrie is a full-featured stateless traffic

720 views • 43 slides
Modelling Traffic on Motorways: State-of-the-Art, Numerical Data Analysis, and Dynamic Traffic

Modelling Traffic on Motorways: State-of-the-Art, Numerical Data Analysis, and Dynamic Traffic

Modelling Traffic on Motorways: State-of-the-Art, Numerical Data Analysis, and Dynamic Traffic Assignment Sven Maerivoet sven.maerivoet@esat.kuleuven.be Department of Electrical Engineering ESAT-SCD (SISTA) Katholieke Universiteit Leuven

526 views • 50 slides
On Improving Website Connectivity by Using Web-Log Data Streams Edmond HaoCun Wu 1 , Michael

On Improving Website Connectivity by Using Web-Log Data Streams Edmond HaoCun Wu 1 , Michael

On Improving Website Connectivity by Using Web-Log Data Streams Edmond HaoCun Wu 1 , Michael KwokPo Ng 1 , and Joshua ZheXue Huang 2 1 Department of Mathematics, The University of Hong Kong hcwu@hkusua.hku.hk,mng@maths.hku.hk 2 E-Business

137 views • 13 slides
AESP-SE WEB CONFERENCE SERIES AUGUST TOPIC: INNOVATIVE MARKETING APPROACHES Jamie Farmer, Brand

AESP-SE WEB CONFERENCE SERIES AUGUST TOPIC: INNOVATIVE MARKETING APPROACHES Jamie Farmer, Brand

ALABAMA, ARKANSAS, FLORIDA, GEORGIA, KENTUCKY, LOUISIANA, MISSISSIPPI, NORTH CAROLINA, SOUTH CAROLINA, TENNESSEE, & VIRGINIA AESP-SE WEB CONFERENCE SERIES AUGUST TOPIC: INNOVATIVE MARKETING APPROACHES Jamie Farmer, Brand Strategy

564 views • 17 slides
Modern Defense Tooling Artificial intelligence as a defense platform Ameen Altajer Modern

Modern Defense Tooling Artificial intelligence as a defense platform Ameen Altajer Modern

Modern Defense Tooling Artificial intelligence as a defense platform Ameen Altajer Modern Defense Tooling A drastic change in the modern AI landscape The work of both DeepMind and OpenAI is a testament of how things drastically changed Modern

700 views • 15 slides
Ubuntu Home Hacks Allison Randal Shiftboard, Inc. Rules Open Source Open Hardware

Ubuntu Home Hacks Allison Randal Shiftboard, Inc. Rules Open Source Open Hardware

Ubuntu Home Hacks Allison Randal Shiftboard, Inc. Rules Open Source Open Hardware Cheap Real Virtual Explore tech Fun v1.0 Sarah Eureka's Self Actuated Residential Automated Habitat Home Automation

577 views • 30 slides
VANDERBILT TRAFFIC CALMING STUDY SECOND WORKSHOP April 9, 2015 Joseph M. Corradino, AICP Salman

VANDERBILT TRAFFIC CALMING STUDY SECOND WORKSHOP April 9, 2015 Joseph M. Corradino, AICP Salman

VANDERBILT TRAFFIC CALMING STUDY SECOND WORKSHOP April 9, 2015 Joseph M. Corradino, AICP Salman Rathore, P.E. TRAFFIC CALMING TODAY Introduction Define Good Planning Purpose and Need for Study Discussion Data Collection

406 views • 25 slides
P. Nikolaou & L. Dimitriou Lab for Transport Engineering University of Cyprus Road Traffic

P. Nikolaou & L. Dimitriou Lab for Transport Engineering University of Cyprus Road Traffic

Appraisal of Non-Motorized Road Traffic Levels in Cyprus, taking into account socio-demographic and Economic Characteristics P. Nikolaou & L. Dimitriou Lab for Transport Engineering University of Cyprus Road Traffic Fatalities are one of

1.67k views • 37 slides
Intelligence Center UNCLASSIFIED//FOR OFFICIAL USE ONLY Traffic Partnership with IACP and

Intelligence Center UNCLASSIFIED//FOR OFFICIAL USE ONLY Traffic Partnership with IACP and

Statewide Terrorism & Intelligence Center UNCLASSIFIED//FOR OFFICIAL USE ONLY Traffic Partnership with IACP and IDOT Direct Access to IDOT data Responds to RFIs for traffic and crash information Emphasis on Fatalities and

319 views • 9 slides
A PROACTIVE APPROACH TO ROAD SAFETY ANALYSIS Charles Chung (Brisk Synergies) Franz Loewenherz

A PROACTIVE APPROACH TO ROAD SAFETY ANALYSIS Charles Chung (Brisk Synergies) Franz Loewenherz

A PROACTIVE APPROACH TO ROAD SAFETY ANALYSIS Charles Chung (Brisk Synergies) Franz Loewenherz (City of Bellevue) James Barr (Miovision) LEARNING OBJECTIVES 1. How can we use traffic conflict analytics to inform proactive actions for improved

1.33k views • 94 slides

More recommend