Measuring the Security of Website Fingerprinting Defences

2019
Student project

Website fingerprinting (WF) attacks can compromise a user’s online privacy, by learning network traffic patterns generated by websites through machine learning (ML) techniques. Such attacks remain unaffected by encryption and even defeat anonymity services such as Tor. They thereby make it possible to determine the browsing behaviour of a user, which can lead to tracking and surveillance. In this project, we study the security of ALPaCA, a server-side WF defence which protects webpages at the application layer. Traditionally, evaluating the security of a WF defence is done at the network level, against state-of-the-art WF attacks. We on the other hand chose to measure the security of ALPaCA at the application level. While doing so is possible for ALPaCA, it is in general not the case for other WF defences that operate at the network layer. To quantify security, we estimate the Bayes error, which is the smallest probability of error achievable by a WF adversary for any classification algorithm they may use. We then show that evaluation at the application level i) gives consistent security results with the ones obtained at the network level, ii) gives stronger security guarantees, iii) is more efficient from a data collection perspective and therefore allows us to iv) compare the performance of the three variants of ALPaCA for several choices of parameters.

About this result

This page is automatically generated and may contain information that is not correct, complete, up-to-date, or relevant to your search query. The same applies to every other page on this website. Please make sure to verify the information with EPFL's official sources.

2019
Student project

Abstract

Official source

https://infoscience.epfl.ch/record/289258?ln=en

About this result

Related concepts (35)

Related publications (58)

Related MOOCs (10)

Application layer

An application layer is an abstraction layer that specifies the shared communications protocols and interface methods used by hosts in a communications network. An application layer abstraction is specified in both the Internet Protocol Suite (TCP/IP) and the OSI model. Although both models use the same term for their respective highest-level layer, the detailed definitions and purposes are different. In the Internet protocol suite, the application layer contains the communications protocols and interface methods used in process-to-process communications across an Internet Protocol (IP) computer network.

Transport layer

In computer networking, the transport layer is a conceptual division of methods in the layered architecture of protocols in the network stack in the Internet protocol suite and the OSI model. The protocols of this layer provide end-to-end communication services for applications. It provides services such as connection-oriented communication, reliability, flow control, and multiplexing. The details of implementation and semantics of the transport layer of the Internet protocol suite, which is the foundation of the Internet, and the OSI model of general networking are different.

Session layer

In the seven-layer OSI model of computer networking, the session layer is layer 5. The session layer provides the mechanism for opening, closing and managing a session between end-user application processes, i.e., a semi-permanent dialogue. Communication sessions consist of requests and responses that occur between applications. Session-layer services are commonly used in application environments that make use of remote procedure calls (RPCs). An example of a session-layer protocol is the OSI protocol suite session-layer protocol, also known as X.

Smart Cities, Management of Smart Urban Infrastructures

Learn about the principles of management of urban infrastructures in the era of Smart Cities. The introduction of Smart urban technologies into legacy infrastructures has already resulted and will con

Smart Cities, Management of Smart Urban Infrastructures

Non-volatile data storage medium and system

Martin Vetterli, Yves Bellouard, Ruben Ricca

A data storage medium (2) comprising a stacked plurality of layers (9), each layer composed of a layer material selected from a group comprising at least two different dielectric materials, adjacent layers being formed of different materials, and at least ...

2023

A hybrid Selective Laser Sintering based process for the additive manufacturing of architectured composites

Erwan Philippe Guenier

Additive Manufacturing also commonly referred as 3D printing has been given a lot of interest lately. Market is growing exponentially and the aim for obtaining more complex and ready-to use parts is emerging. All the 3D printing processes consist in buildi ...

EPFL2023

A review of the security vulnerabilities and countermeasures in the Internet of Things solutions: A bright future for the Blockchain

Jan Van Herle, Hossein Pourrahmani

The current advances in the Internet of Things (IoT) and the solutions being offered by this technology have accounted IoT among the top ten technologies that will transform the global economy by 2030. IoT is a state-of-the-art paradigm that has developed ...

2023