会议专题

Obfuscating Encrypted Web Traffic with Combined Objects

查看全文→
  Web traffic demonstrates a sequence of request-response transactions during web page visiting.On one hand, the browser re trieves the basic HTML file and then issues requests in sequence for ob jects in HTML document.On the other hand, the server returns related objects in sequence as responses.This makes the traffic of a web page demonstrate pattern features different from other pages.Traffic analysis techniques can extract these features and identify web pages effectively even if the traffic is encrypted.In this paper, we propose a countermea sure method, CoOBJ, to defend against traffic analysis by obfuscating web traffic with combined objects.We compose some objects into a single object, the combined object, and force the object requests and responses on combined objects.By randomly composing objects with different ob jects, the traffic for a given web page is variable and exhibits different traffic patterns in different visits.We have implemented a proof of con cept prototype and validate the CoOBJ countermeasure with some state of the art traffic analysis techniques.

Encrypted Web Traffic Web Page Identification Traffic Analysis Combined Object

Yi Tang Piaoping Lin Zhaokai Luo

School of Mathematics and Information Science Guangzhou University,Guangzhou 510006,China ; Key Labo School of Mathematics and Information Science Guangzhou University,Guangzhou 510006,China School of Computer Engineering and Science Shanghai University,Shanghai 200072,China

国际会议

The 10th International Conference on Information Security Practice and Experience(ISPEC 2014)(第十届信息安全实践国际会议)

福州

英文

90-104

2014-05-05(万方平台首次上网日期,不代表论文的发表时间)