English
Related papers

Related papers: Encrypted DNS --> Privacy? A Traffic Analysis Pers…

200 papers

Internet censorship continues to impact billions of people worldwide, and measurement of it remains an important focus of research. However, most Internet censorship measurements have focused solely on the IPv4 Internet infrastructure. Yet,…

Networking and Internet Architecture · Computer Science 2025-08-12 Jack Wampler , Hammas Bin Tanveer , Rishab Nithyanand , Eric Wustrow

Destination IP prefix-based routing protocols are core to Internet routing today. Internet autonomous systems (AS) possess fixed IP prefixes, while packets carry the intended destination AS's prefix in their headers, in clear text. As a…

Networking and Internet Architecture · Computer Science 2018-04-06 Lu Yu , Qing Wang , Geddings Barrineau , Jon Oakley , Richard R. Brooks , Kuang-Ching Wang

Smart DNS (SDNS) services advertise access to "geofenced" content (typically, video streaming sites such as Netflix or Hulu) that is normally inaccessible unless the client is within a prescribed geographic region. SDNS is simple to use and…

Cryptography and Security · Computer Science 2020-12-16 Rahel A. Fainchtein , Adam J. Aviv , Micah Sherr , Stephen Ribaudo , Armaan Khullar

In this paper we introduce an intrusion detection system for Denial of Service (DoS) attacks against Domain Name System (DNS). Our system architecture consists of two most important parts: a statistical preprocessor and a neural network…

Cryptography and Security · Computer Science 2009-12-10 Samaneh Rastegari , M. Iqbal Saripan , Mohd Fadlee A. Rasid

Traffic analysis attacks can counteract end-to-end encryption and use leaked communication metadata to reveal information about communicating parties. With an ever-increasing amount of traffic by an ever-increasing number of networked…

Cryptography and Security · Computer Science 2023-03-02 Mohsen Shirali , Tobias Tefke , Ralf C. Staudemeyer , Henrich C. Poehls

Online tracking is a whack-a-mole game between trackers who build and monetize behavioral user profiles through intrusive data collection, and anti-tracking mechanisms, deployed as a browser extension, built-in to the browser, or as a DNS…

Cryptography and Security · Computer Science 2021-03-08 Yana Dimova , Gunes Acar , Lukasz Olejnik , Wouter Joosen , Tom Van Goethem

TLS stripping attacks expose sensitive web traffic by forcing secure HTTPS connections to fall back to unencrypted HTTP. At present, protection against these attacks relies on website operators explicitly opting into security by deploying…

Cryptography and Security · Computer Science 2026-05-29 Aaron van Diepen , Adrian Zapletal , Fernando Kuipers

In this paper we propose a novel approach to identify anomalies in DNS traffic. The traffic time-points data is transformed to a string, which is used by new fast appproximate string matching algorithm to detect anomalies. Our approach is…

Cryptography and Security · Computer Science 2019-05-24 Roni Mateless , Michael Segal

DNS is one of the cornerstones of the Internet. Nowadays, a substantial fraction of DNS queries are handled by public resolvers (e.g., Google Public DNS and Cisco's OpenDNS) rather than ISP nameservers. This behavior makes it difficult for…

Networking and Internet Architecture · Computer Science 2025-05-09 Patrick Sattler , Johannes Zirngibl , Fahad Hilal , Oliver Gasser , Kevin Vermeulen , Georg Carle , Mattijs Jonker

Privacy protection mechanisms are a fundamental aspect of security in cryptocurrency systems, particularly in decentralized networks such as Bitcoin. Although Bitcoin addresses are not directly associated with real-world identities, this…

Cryptography and Security · Computer Science 2026-03-19 Shihan Zhang , Bing Han , Chuanyong Tian , Ruisheng Shi , Lina Lan , Qin Wang

Security and Privacy are crucial in modern Internet services. Transport Layer Security (TLS) has largely addressed the issue of security. However, information about the type of service being accessed goes in plain-text in the initial…

Cryptography and Security · Computer Science 2022-07-06 Vinod S. Khandkar , Manjesh K. Hanawal , Sameer G Kulkarni

As the size and source of network traffic increase, so does the challenge of monitoring and analysing network traffic. Therefore, sampling algorithms are often used to alleviate these scalability issues. However, the use of high entropy…

Cryptography and Security · Computer Science 2019-05-29 Fran Casino , Kim-Kwang Raymond Choo , Constantinos Patsakis

Internet traffic classification has become more important with rapid growth of current Internet network and online applications. There have been numerous studies on this topic which have led to many different approaches. Most of these…

Tor hidden services allow running Internet services while protecting the location of the servers. Their main purpose is to enable freedom of speech even in situations in which powerful adversaries try to suppress it. However, providing…

Cryptography and Security · Computer Science 2014-11-18 Alex Biryukov , Ivan Pustogarov , Fabrice Thill , Ralf-Philipp Weinmann

With the growing realization that current Internet protocols are reaching the limits of their senescence, a number of on-going research efforts aim to design potential next-generation Internet architectures. Although they vary in maturity…

Networking and Internet Architecture · Computer Science 2012-08-08 Paolo Gasti , Gene Tsudik , Ersin Uzun , Lixia Zhang

Tor onion services rely on long-lived introduction circuits to support anonymous rendezvous between clients and services. Although Tor incorporates defenses against traffic analysis, the introduction protocol retains deterministic routing…

Cryptography and Security · Computer Science 2026-04-27 Nicolas Constantinides

In this paper, an analytical model for DDoS attacks detection is proposed, in which propagation of abrupt traffic changes inside public domain is monitored to detect a wide range of DDoS attacks. Although, various statistical measures can…

Cryptography and Security · Computer Science 2012-04-26 B. B. Gupta , R. C. Joshi , Manoj Misra

Distributed Denial-of-Service (DDoS) attacks are usually launched through the $botnet$, an "army" of compromised nodes hidden in the network. Inferential tools for DDoS mitigation should accordingly enable an early and reliable…

Information Theory · Computer Science 2016-09-12 Vincenzo Matta , Mario Di Mauro , Maurizio Longo

Website fingerprinting attacks enable an adversary to infer which website a victim is visiting, even if the victim uses an encrypting proxy, such as Tor. Previous work has shown that all proposed defenses against website fingerprinting…

Cryptography and Security · Computer Science 2014-01-24 Xiang Cai , Rishab Nithyanand , Rob Johnson

Network tomography plays a crucial role in network monitoring and management, where network topology serves as the fundamental basis for various tomography tasks including traffic matrix estimation and link performance inference. The…

Cryptography and Security · Computer Science 2025-05-08 Chengze Du , Jibin Shi , Hui Xu , Guangzhen Yao