English
Related papers

Related papers: Limitless HTTP in an HTTPS World: Inferring the Se…

200 papers

Achieving situational awareness is a challenging process in current HTTPS-dominant web traffic. In this paper, we propose a new approach to encrypted web traffic monitoring. First, we design a method for correlating host-based and network…

Cryptography and Security · Computer Science 2022-06-23 Stanislav Špaček , Petr Velan , Pavel Čeleda , Daniel Tovarňák

With the popularity of mobile devices, such as smartphones, tablets, users prefer visiting Web pages on mobile devices. Meanwhile, HTTP(S) plays as the major protocol to deliver Web contents, and has served the Web well for more than 15…

Networking and Internet Architecture · Computer Science 2017-12-04 Yi Liu

The use of secure connections using HTTPS as the default means, or even the only means, to connect to web servers is increasing. It is being pushed from both sides: from the bottom up by client distributions and plugins, and from the top…

Networking and Internet Architecture · Computer Science 2017-06-12 George Michaelson , Matthew Roughan , Jonathan Tuke , Matt P. Wand , Randy Bush

Web attacks, i.e. attacks exclusively using the HTTP protocol, are rapidly becoming one of the fundamental threats for information systems connected to the Internet. When the attacks suffered by web servers through the years are analyzed,…

Cryptography and Security · Computer Science 2007-05-23 Gonzalo Alvarez , Slobodan Petrovic

HTTP client hints are a set of standardized HTTP request headers designed to modernize and potentially replace the traditional user agent string. While the user agent string exposes a wide range of information about the client's browser and…

Cryptography and Security · Computer Science 2024-05-24 Stephan Wiefling , Marian Hönscheid , Luigi Lo Iacono

Protecting users' privacy over the Internet is of great importance; however, it becomes harder and harder to maintain due to the increasing complexity of network protocols and components. Therefore, investigating and understanding how data…

Networking and Internet Architecture · Computer Science 2021-09-14 Mahdi Jafari Siavoshani , Amir Hossein Khajepour , Amirmohammad Ziaei , Amir Ali Gatmiri , Ali Taheri

In recent years there has been a dramatic increase in the number of malware attacks that use encrypted HTTP traffic for self-propagation or communication. Antivirus software and firewalls typically will not have access to encryption keys,…

Cryptography and Security · Computer Science 2023-12-11 Anish Singh Shekhawat , Fabio Di Troia , Mark Stamp

Browser fingerprinting is an invasive and opaque stateless tracking technique. Browser vendors, academics, and standards bodies have long struggled to provide meaningful protections against browser fingerprinting that are both accurate and…

Cryptography and Security · Computer Science 2020-08-12 Umar Iqbal , Steven Englehardt , Zubair Shafiq

HTTP headers are commonly used to establish web communications, and some of them are relevant for security. However, we have only little information about the usage and support of security-relevant headers in mobile applications. We…

Cryptography and Security · Computer Science 2021-11-08 Pascal Gadient , Oscar Nierstrasz , Mohammad Ghafari

If two or more identical HTTPS clients, located at different geographic locations (regions), make an HTTPS request to the same domain (e.g. example.com), on the same day, will they receive the same HTTPS security guarantees in response? Our…

Cryptography and Security · Computer Science 2020-10-21 Eman Salem Alashwali , Pawel Szalachowski , Andrew Martin

Revelations of large scale electronic surveillance and data mining by governments and corporations have fueled increased adoption of HTTPS. We present a traffic analysis attack against over 6000 webpages spanning the HTTPS deployments of 10…

Cryptography and Security · Computer Science 2014-03-04 Brad Miller , Ling Huang , A. D. Joseph , J. D. Tygar

DNS over TLS (DoT) and DNS over HTTPS (DoH) encrypt DNS to guard user privacy by hiding DNS resolutions from passive adversaries. Yet, past attacks have shown that encrypted DNS is still sensitive to traffic analysis. As a consequence, RFC…

Cryptography and Security · Computer Science 2019-07-03 Jonas Bushart , Christian Rossow

The paper presents an analysis of the main mechanisms of decryption of SSL/TLS traffic. Methods and technologies for detecting malicious activity in encrypted traffic that are used by leading companies are also considered. Also, the…

Cryptography and Security · Computer Science 2019-04-18 Tamara Radivilova , Lyudmyla Kirichenko , Dmytro Ageyev , Maxim Tawalbeh , Vitalii Bulakh

Tor provides low-latency anonymous and uncensored network access against a local or network adversary. Due to the design choice to minimize traffic overhead (and increase the pool of potential users) Tor allows some information about the…

Cryptography and Security · Computer Science 2019-06-06 Shuai Li , Huajun Guo , Nicholas Hopper

Website fingerprinting (WF) attacks identify the websites visited over anonymized connections by analyzing patterns in network traffic flows, such as packet sizes, directions, or interval times using a machine learning classifier. Previous…

Cryptography and Security · Computer Science 2024-07-30 Chuxu Song , Zining Fan , Hao Wang , Richard Martin

As of February, 2015, HTTP/2, the update to the 16-year-old HTTP 1.1, is officially complete. HTTP/2 aims to improve the Web experience by solving well-known problems (e.g., head of line blocking and redundant headers), while introducing…

Networking and Internet Architecture · Computer Science 2015-07-24 Matteo Varvello , Kyle Schomp , David Naylor , Jeremy Blackburn , Alessandro Finamore , Kostantina Papagiannaki

The domain name system (DNS) that maps alphabetic names to numeric Internet Protocol (IP) addresses plays a foundational role for Internet communications. By default, DNS queries and responses are exchanged in unencrypted plaintext, and…

Cryptography and Security · Computer Science 2024-07-08 Minzhao Lyu , Hassan Habibi Gharakheili , Vijay Sivaraman

Most previous scene text spotting methods rely on high-quality manual annotations to achieve promising performance. To reduce their expensive costs, we study semi-supervised text spotting (SSTS) to exploit useful information from unlabeled…

Computer Vision and Pattern Recognition · Computer Science 2025-04-15 Dongliang Luo , Hanshen Zhu , Ziyang Zhang , Dingkang Liang , Xudong Xie , Yuliang Liu , Xiang Bai

Encryption on the internet with the shift to HTTPS has been an important step to improve the privacy of internet users. However, there is an increasing body of work about extracting information from encrypted internet traffic without having…

Computer Vision and Pattern Recognition · Computer Science 2024-05-17 Arwin Gansekoele , Tycho Bot , Rob van der Mei , Sandjai Bhulai , Mark Hoogendoorn

Cryptographic protocols aim at securing communications over insecure networks such as the Internet, where dishonest users may listen to communications and interfere with them. A secure communication has a different meaning depending on the…

Cryptography and Security · Computer Science 2016-11-10 Stéphanie Delaune , Lucca Hirschi