English
Related papers

Related papers: Encrypted DNS --> Privacy? A Traffic Analysis Pers…

200 papers

Tor, a widely utilized privacy network, enables anonymous communication but is vulnerable to flow correlation attacks that deanonymize users by correlating traffic patterns from Tor's ingress and egress segments. Various defenses have been…

Cryptography and Security · Computer Science 2025-10-21 Minjae Seo , Myoungsung You , Jaehan Kim , Taejune Park , Seungwon Shin , Jinwoo Kim

Online voting enables individuals to participate in elections remotely, offering greater efficiency and accessibility in both governmental and organizational settings. As this method gains popularity, ensuring the security of online voting…

Cryptography and Security · Computer Science 2025-09-22 Anastasiia Belousova , Francesco Marchiori , Mauro Conti

We introduce NinjaDoH, a novel DNS over HTTPS (DoH) protocol that leverages the InterPlanetary Name System (IPNS), along with public cloud infrastructure, to create a censorship-resistant moving target DoH service. NinjaDoH is specifically…

Cryptography and Security · Computer Science 2024-11-06 Scott Seidenberger , Marc Beret , Raveen Wijewickrama , Murtuza Jadliwala , Anindya Maiti

The Domain Name System (DNS) is a critical service that enables domain names to be converted to IP addresses (or vice versa); consequently, it is generally permitted through enterprise security systems (e.g., firewalls) with little…

Networking and Internet Architecture · Computer Science 2024-10-28 Minzhao Lyu , Hassan Habibi Gharakheili , Craig Russell , Vijay Sivaraman

Distributed Denial-of-Service (DDoS) attacks represent a persistent threat to modern telecommunications networks: detecting and counteracting them is still a crucial unresolved challenge for network operators. DDoS attack detection is…

Networking and Internet Architecture · Computer Science 2021-11-05 Damu Ding , Marco Savi , Domenico Siracusa

Distributed Denial-of-Service (DDoS) attacks exhaust resources, leaving a server unavailable to legitimate clients. The Domain Name System (DNS) is a frequent target of DDoS attacks. Since DNS is a critical infrastructure service,…

Cryptography and Security · Computer Science 2022-09-16 A S M Rizvi , Jelena Mirkovic , John Heidemann , Wesley Hardaker , Robert Story

High-bandwidth covert channels pose significant risks to sensitive and proprietary information inside company networks. Domain Name System (DNS) tunnels provide a means to covertly infiltrate and exfiltrate large amounts of information…

Cryptography and Security · Computer Science 2010-04-27 Kenton Born , David Gustafson

Recent work in traffic analysis has shown that traffic patterns leaked through side channels can be used to recover important semantic information. For instance, attackers can find out which website, or which page on a website, a user is…

Cryptography and Security · Computer Science 2011-09-02 Xun Gong , Negar Kiyavash , Nabíl Schear , Nikita Borisov

DDoS attacks are simple, effective, and still pose a significant threat even after more than two decades. Given the recent success in machine learning, it is interesting to investigate how we can leverage deep learning to filter out…

Cryptography and Security · Computer Science 2020-12-15 Wesley Joon-Wie Tann , Jackie Tan Jin Wei , Joanna Purba , Ee-Chien Chang

The Tor anonymity network has been shown vulnerable to traffic analysis attacks by autonomous systems and Internet exchanges, which can observe different overlay hops belonging to the same circuit. We aim to determine whether network path…

Cryptography and Security · Computer Science 2015-03-05 Joshua Juen , Aaron Johnson , Anupam Das , Nikita Borisov , Matthew Caesar

Enterprise Networks are growing in scale and complexity, with heterogeneous connected assets needing to be secured in different ways. Nevertheless, virtually all connected assets use the Domain Name System (DNS) for address resolution, and…

Cryptography and Security · Computer Science 2022-05-19 Jawad Ahmed

Today, Internet offers many critical applications. So, it becomes very crucial for Internet service providers to ensure traceability of operations and to secure data exchange. Since all these communications are based on the use of the…

Cryptography and Security · Computer Science 2012-08-01 Kaouthar Chetioui , Ghizlane Orhanou , Said El Hajji , Abdelmajid Lakbabi

DNS, one of the fundamental protocols of the TCP/IP stack, has evolved over the years to protect against threats and attacks. This study examines the risks associated with DNS and explores recent advancements that contribute towards making…

Cryptography and Security · Computer Science 2023-12-11 Levente Csikor , Dinil Mon Divakaran

Internet censors seek ways to identify and block internet access to information they deem objectionable. Increasingly, censors deploy advanced networking tools such as deep-packet inspection (DPI) to identify such connections. In response,…

Networking and Internet Architecture · Computer Science 2016-11-15 Lucas Dixon , Thomas Ristenpart , Thomas Shrimpton

Attacks on Internet routing are typically viewed through the lens of availability and confidentiality, assuming an adversary that either discards traffic or performs eavesdropping. Yet, a strategic adversary can use routing attacks to…

Networking and Internet Architecture · Computer Science 2020-08-13 Yixin Sun , Maria Apostolaki , Henry Birge-Lee , Laurent Vanbever , Jennifer Rexford , Mung Chiang , Prateek Mittal

The domain name system (DNS) is one of the most important components of today's Internet, and is the standard naming convention between human-readable domain names and machine-routable IP addresses of Internet resources. However, due to the…

Networking and Internet Architecture · Computer Science 2020-06-30 Aminollah Khormali , Jeman Park , Hisham Alasmary , Afsah Anwar , David Mohaisen

Several encryption proposals for DNS have been presented since 2016, but their adoption was not comprehensively studied yet. This research measured the current adoption of DoH (DNS over HTTPS), DoT (DNS over TLS), and DoQ (DNS over QUIC)…

Cryptography and Security · Computer Science 2021-07-12 Sebastián García , Karel Hynek , Dmtrii Vekshin , Tomáš Čejka , Armin Wasicek

In recent years there has been a dramatic increase in the number of malware attacks that use encrypted HTTP traffic for self-propagation or communication. Antivirus software and firewalls typically will not have access to encryption keys,…

Cryptography and Security · Computer Science 2023-12-11 Anish Singh Shekhawat , Fabio Di Troia , Mark Stamp

Traffic analysis is a type of attack on secure communications systems, in which the adversary extracts useful patterns and information from the observed traffic. This paper improves and extends an efficient traffic analysis attack, called…

Cryptography and Security · Computer Science 2017-10-03 Navid Emamdoost , Mohammad Sadeq Dousti , Rasool Jalili

The DNS infrastructure is infamous for facilitating reflective amplification attacks. Various countermeasures such as server shielding, access control, rate limiting, and protocol restrictions have been implemented. Still, the threat…

Cryptography and Security · Computer Science 2025-10-23 Maynard Koch , Florian Dolzmann , Thomas C. Schmidt , Matthias Wählisch