English
Related papers

Related papers: Active TLS Stack Fingerprinting: Characterizing TL…

200 papers

Network fingerprinting is used to identify applications, provide insight into network traffic, and detect malicious activity. With the broad adoption of TLS, traditional fingerprinting techniques that rely on clear-text data are no longer…

Cryptography and Security · Computer Science 2020-09-07 Blake Anderson , David McGrew

TLS 1.3 marks a significant departure from previous versions of the Transport Layer Security protocol (TLS). The new version offers a simplified protocol flow, more secure cryptographic primitives, and new features to improve performance,…

Cryptography and Security · Computer Science 2019-08-07 Ralph Holz , Johanna Amann , Abbas Razaghpanah , Narseo Vallina-Rodriguez

Analyzing users' Internet traffic data and activities has a certain impact on users' experiences in different ways, from maintaining the quality of service on the Internet and providing users with high-quality recommendation systems to…

Networking and Internet Architecture · Computer Science 2020-09-22 Aida Ramezani , Amirhossein Khajehpour , Mahdi Jafari Siavoshani

In webpage fingerprinting, an on-path adversary infers the specific webpage loaded by a victim user by analysing the patterns in the encrypted TLS traffic exchanged between the user's browser and the website's servers. This work studies…

Cryptography and Security · Computer Science 2023-10-30 Vasilios Mavroudis , Jamie Hayes

Protecting users' privacy over the Internet is of great importance; however, it becomes harder and harder to maintain due to the increasing complexity of network protocols and components. Therefore, investigating and understanding how data…

Networking and Internet Architecture · Computer Science 2021-09-14 Mahdi Jafari Siavoshani , Amir Hossein Khajepour , Amirmohammad Ziaei , Amir Ali Gatmiri , Ali Taheri

Passive operating system fingerprinting reveals valuable information to the defenders of heterogeneous private networks; at the same time, attackers can use fingerprinting to reconnoiter networks, so defenders need obfuscation techniques to…

Cryptography and Security · Computer Science 2017-06-27 Blake Anderson , David McGrew

We use positional-unigram byte models along with maximum likelihood for generalized TLS fingerprinting and empirically show that it is robust to cipher stunting. Our approach creates a set of positional-unigram byte models from client hello…

Cryptography and Security · Computer Science 2024-05-14 Hector A. Valdez , Sean McPherson

Critical networked services enable significant revenue for network operators and, in turn, are regulated by Service Level Agreements (SLAs). In order to ensure SLAs are being met, service levels need to be monitored. One technique for this…

Networking and Internet Architecture · Computer Science 2021-05-19 Jéferson C. Nobre , Lisandro Z. Granville , Alberto G. Prieto , Alexander Clemm

Malicious domains are part of the landscape of the internet but are becoming more prevalent and more dangerous to both companies and individuals. They can be hosted on variety of technologies and serve an array of content, ranging from…

Cryptography and Security · Computer Science 2024-10-08 Amanda Thomson , Leandros Maglaras , Naghmeh Moradpoor

In this paper, we introduce Clid, a Transport Layer Security (TLS) client identification tool based on unsupervised learning on domain names in the server name indication (SNI) field. Clid aims to provide some information on a wide range of…

Networking and Internet Architecture · Computer Science 2024-10-04 Ihyun Nam , Gerry Wan

Transport Layer Security (TLS) is the base for many Internet applications and services to achieve end-to-end security. In this paper, we provide guidance on how to measure TLS deployments, including X.509 certificates and Web PKI. We…

Networking and Internet Architecture · Computer Science 2024-02-01 Pouyan Fotouhi Tehrani , Eric Osterweil , Thomas C. Schmidt , Matthias Wählisch

Website fingerprinting enables an attacker to infer which web page a client is browsing through encrypted or anonymized network connections. We present a new website fingerprinting technique based on random decision forests and evaluate…

Cryptography and Security · Computer Science 2016-02-22 Jamie Hayes , George Danezis

Traffic monitoring is essential for network management tasks that ensure security and QoS. However, the continuous increase of HTTPS traffic undermines the effectiveness of current service-level monitoring that can only rely on unreliable…

Cryptography and Security · Computer Science 2020-08-20 Wazen M. Shbair , Thibault Cholez , Jerome Francois , Isabelle Chrisment

Browser fingerprinting is the identification of a browser through the network traffic captured during communication between the browser and server. This can be done using the HTTP protocol, browser extensions, and other methods. This paper…

Cryptography and Security · Computer Science 2024-10-29 Sandhya Aneja , Nagender Aneja

Secure communication is an integral feature of many Internet services. The widely deployed TLS protects reliable transport protocols. DTLS extends TLS security services to protocols relying on plain UDP packet transport, such as VoIP or IoT…

Networking and Internet Architecture · Computer Science 2019-04-26 Sebastian Gallenmüller , Dominik Schöffmann , Dominik Scholz , Fabien Geyer , Georg Carle

As Large Language Models (LLMs) become increasingly integrated into many technological ecosystems across various domains and industries, identifying which model is deployed or being interacted with is critical for the security and…

Cryptography and Security · Computer Science 2025-07-09 Saeif Alhazbi , Ahmed Mohamed Hussain , Gabriele Oligeri , Panos Papadimitratos

As LLM-based agents increasingly browse the web on users' behalf, a natural question arises: can websites passively identify which underlying model powers an agent? Doing so would represent a significant security risk, enabling targeted…

Cryptography and Security · Computer Science 2026-05-15 William Lugoloobi , Samuelle Marro , Jabez Magomere , Joss Wright , Chris Russell

The ongoing trend to move industrial appliances from previously isolated networks to the Internet requires fundamental changes in security to uphold secure and safe operation. Consequently, to ensure end-to-end secure communication and…

Cryptography and Security · Computer Science 2022-06-02 Markus Dahlmanns , Johannes Lohmöller , Jan Pennekamp , Jörn Bodenhausen , Klaus Wehrle , Martin Henze

Time-to-Live data in the IP header offers two interesting characteristics: First, different IP stacks pick different start TTL values. Second, each traversed router should decrement the TTL value. The combination of both offers host and…

Networking and Internet Architecture · Computer Science 2016-06-27 Quirin Scheitle , Oliver Gasser , Paul Emmerich , Georg Carle

We explored leveraging state-of-the-art deep learning, big data, and natural language processing to enhance the detection of vulnerable web server versions. Focusing on improving accuracy and specificity over rule-based systems, we…

Cryptography and Security · Computer Science 2024-04-02 Patrick Darwinkel
‹ Prev 1 2 3 10 Next ›