ProFi: Scalable and Efficient Website Fingerprinting

Website Fingerprinting (WFP) attacks infer the websites or webpages a user is visiting from encrypted traffic. To date, it remains uncertain if WFP can attack many users from a central location in an online scenario. We close this gap with PROFI, a WFP attack that detects websites based on the initial TLS connection from the client to the server using at most the connection’s first 30 packets. PROFI achieves a precision and recall of 86.51% and 85.35% in a closed-world, and 68.90% and 78.71% in an open-world scenario, which is competitive to state-of-the-art (SoA) WFP attacks, while taking a fraction of the time of SoA attacks to classify a webpage. Further, we implement PROFI as a micro service-based prototype and evaluate the attack in an online scenario with real traffic traces. We show that PROFI can monitor up to 100 websites at 10 G, corresponding to up to 424 webpages per second. We also show that PROFI has the potential to interfere with a victim’s webpage access.

• Publication year

  2024

• Venue

  IEEE Transactions on Network and Service Management

• Publication date

  2024-02-01

• Fields of study

  Computer Science

• Identifiers
  DOI 10.1109/TNSM.2023.3318508
• External record

  Open on Semantic Scholar

• Source metadata

  Semantic Scholar

• No claims are published for this paper.

• No concepts are published for this paper.

• ditto: WAN Traffic Obfuscation at Line Rate

  2022cited by this paper
• FENXI: Fast In-Network Analytics

  2021influential reference
• Programmable Switches for in-Networking Classification

  2021cited by this paper
• When Deep Learning May Not Be The Right Tool For Traffic Classification

  2021cited by this paper
• Hiding the Lengths of Encrypted Messages via Gaussian Padding

  2021cited by this paper
• A Look Behind the Curtain: Traffic Classification in an Increasingly Encrypted Web

  2021cited by this paper
• A Real-time Defense against Website Fingerprinting Attacks

  2021cited by this paper
• Domain name encryption is not enough: privacy leakage via IP-based website fingerprinting

  2021influential reference
• Zero-delay Lightweight Defenses against Website Fingerprinting

  2020cited by this paper
• Towards CRISP-ML(Q): A Machine Learning Process Model with Quality Assurance Methodology

  2020cited by this paper
• More Realistic Website Fingerprinting Using Deep Learning

  2020influential reference
• On Landing and Internal Web Pages: The Strange Case of Jekyll and Hyde in Web Performance Measurement

  2020cited by this paper
• Issues and Requirements for Server Name Identification (SNI) Encryption in TLS

  2020cited by this paper
• Does domain name encryption increase users' privacy?

  2020influential reference
• An Overview of Web Robots Detection Techniques

  2020cited by this paper
• High Precision Open-World Website Fingerprinting

  2020cited by this paper
• Shortcut learning in deep neural networks

  2020cited by this paper
• Revisiting Assumptions for Website Fingerprinting Attacks

  2019influential reference
• Adversarial attacks against profile HMM website fingerprinting detection model

  2019cited by this paper
• Triplet Fingerprinting: More Practical and Portable Website Fingerprinting with N-shot Learning

  2019cited by this paper
• Do Switches Dream of Machine Learning?: Toward In-Network Classification

  2019cited by this paper
• On the Importance of Encrypted-SNI (ESNI) to Censorship Circumvention

  2019cited by this paper
• Webpage Fingerprinting using Only Packet Length Information

  2019cited by this paper
• Towards the Deployment of Machine Learning Solutions in Network Traffic Classification: A Systematic Survey

  2019cited by this paper
• DNS Queries over HTTPS (DoH)

  2018cited by this paper
• In-network Neural Networks

  2018cited by this paper
• Deep Fingerprinting: Undermining Website Fingerprinting Defenses with Deep Learning

  2018cited by this paper
• Can the Network be the AI Accelerator?

  2018cited by this paper
• Looking for hypergiants in peeringDB

  2018cited by this paper
• A Multi-tab Website Fingerprinting Attack

  2018influential reference
• Var-CNN: A Data-Efficient Website Fingerprinting Attack Based on Deep Learning

  2018influential reference
• Website Fingerprinting Defenses at the Application Layer

  2017cited by this paper
• Measuring Latency Variation in the Internet

  2016cited by this paper
• OpenNetVM: A Platform for High Performance Network Service Chains

  2016cited by this paper
• Specification for DNS over Transport Layer Security (TLS)

  2016cited by this paper
• On Realistically Attacking Tor with Website Fingerprinting

  2016influential reference
• Fingerprinting Attack on Tor Anonymity using Deep Learning

  2016cited by this paper
• A novel Website Fingerprinting attack against multi-tab browsing behavior

  2015cited by this paper
• Confidentiality in the Face of Pervasive Surveillance: A Threat Model and Problem Statement

  2015cited by this paper
• Blocking-resistant communication through domain fronting

  2015cited by this paper
• Effective Attacks and Provable Defenses for Website Fingerprinting

  2014cited by this paper
• Data Mining Practical Machine Learning Tools and Techniques

  2014influential reference
• Transport Layer Security (TLS) Application-Layer Protocol Negotiation Extension

  2014cited by this paper
• MoonGen: A Scriptable High-Speed Packet Generator

  2014cited by this paper
• A Critical Evaluation of Website Fingerprinting Attacks

  2014cited by this paper
• A Systematic Approach to Developing and Evaluating Website Fingerprinting Defenses

  2014influential reference
• Peek-a-Boo, I Still See You: Why Efficient Traffic Analysis Countermeasures Fail

  2012cited by this paper
• Machine learning - a probabilistic perspective

  2012cited by this paper
• Predicted Packet Padding for Anonymous Web Browsing Against Traffic Analysis Attacks

  2012cited by this paper
• Touching from a distance: website fingerprinting attacks and defenses

  2012influential reference
• SkypeMorph: protocol obfuscation for Tor bridges

  2012cited by this paper
• HTTPOS: Sealing Information Leaks with Browser-side Obfuscation of Encrypted Flows

  2011cited by this paper
• Can encrypted traffic be identified without port numbers, IP addresses and payload inspection?

  2011cited by this paper
• Website fingerprinting in onion routing based anonymization networks

  2011influential reference
• Web content cartography

  2011cited by this paper
• Fingerprinting websites using remote traffic analysis

  2010cited by this paper
• Estimating routing symmetry on single links by passive flow measurements

  2010cited by this paper
• Internet inter-domain traffic

  2010cited by this paper
• Levenshtein Distance: Information theory, Computer science, String (computer science), String metric, Damerau?Levenshtein distance, Spell checker, Hamming distance

  2009cited by this paper
• Probabilistic Graphical Models: Principles and Techniques - Adaptive Computation and Machine Learning

  2009influential reference
• A survey of techniques for internet traffic classification using machine learning

  2008cited by this paper
• The Transport Layer Security (TLS) Protocol Version 1.3

  2008influential reference
• On Web Browsing Privacy in Anonymized NetFlows

  2007cited by this paper
• Inferring the source of encrypted HTTP connections

  2006cited by this paper
• On Inferring Application Protocol Behaviors in Encrypted Network Traffic

  2006cited by this paper
• Statistical Identi cation of Encrypted Web Browsing TraÆc

  2002cited by this paper
• Fingerprinting Websites Using Traffic Analysis

  2002cited by this paper
• A Quantitative Analysis and Performance Study for Similarity-Search Methods in High-Dimensional Spaces

  1998cited by this paper
• Hidden Markov models in computational biology. Applications to protein modeling.

  1993cited by this paper

• Our Digital Traces in Cybersecurity: Bridging the Gap Between Anonymity and Identification

  2025cites this paper
• Inter-Flow Spatio-Temporal Correlation Analysis Based Website Fingerprinting Using Graph Neural Network

  2024cites this paper