From Traces to Packets: Realistic Deep Learning Based Multi-Tab Website Fingerprinting Attacks

IF 6.6 1区计算机科学 Q1 Multidisciplinary

Tsinghua Science and Technology Pub Date : 2024-12-09 DOI:10.26599/TST.2024.9010073

Haoyu Yin;Yingjian Liu;Zhongwen Guo;Yu Wang

{"title":"From Traces to Packets: Realistic Deep Learning Based Multi-Tab Website Fingerprinting Attacks","authors":"Haoyu Yin;Yingjian Liu;Zhongwen Guo;Yu Wang","doi":"10.26599/TST.2024.9010073","DOIUrl":null,"url":null,"abstract":"Recent advancements in deep learning (DL) have introduced new security challenges in the form of side-channel attacks. A prime example is the website fingerprinting attack (WFA), which targets anonymity networks like Tor, enabling attackers to unveil users' protected browsing activities from traffic data. While state-of-the-art WFAs have achieved remarkable results, they often rely on unrealistic single-website assumptions. In this paper, we undertake an exhaustive exploration of multi-tab website fingerprinting attacks (MTWFAs) in more realistic scenarios. We delve into MTWFAs and introduce MTWFA-SEG, a task involving the fine-grained packet-level classification within multi-tab Tor traffic. By employing deep learning models, we reveal their potential to threaten user privacy by discerning visited websites and browsing session timing. We design an improved fully convolutional model for MTWFA-SEG, which are enhanced by both network architecture advances and traffic data instincts. In the evaluations on interlocking browsing datasets, the proposed models achieve remarkable accuracy rates of over 68.6%, 71.8%, and 76.1% in closed, imbalanced open, and balanced open-world settings, respectively. Furthermore, the proposed models exhibit substantial robustness across diverse train-test settings. We further validate our designs in a coarse-grained task, MTWFA-MultiLabel, where they not only achieve state-of-the-art performance but also demonstrate high robustness in challenging situations.","PeriodicalId":48690,"journal":{"name":"Tsinghua Science and Technology","volume":"30 2","pages":"830-850"},"PeriodicalIF":6.6000,"publicationDate":"2024-12-09","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=10786942","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Tsinghua Science and Technology","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10786942/","RegionNum":1,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"Multidisciplinary","Score":null,"Total":0}

引用次数: 0

Abstract

Recent advancements in deep learning (DL) have introduced new security challenges in the form of side-channel attacks. A prime example is the website fingerprinting attack (WFA), which targets anonymity networks like Tor, enabling attackers to unveil users' protected browsing activities from traffic data. While state-of-the-art WFAs have achieved remarkable results, they often rely on unrealistic single-website assumptions. In this paper, we undertake an exhaustive exploration of multi-tab website fingerprinting attacks (MTWFAs) in more realistic scenarios. We delve into MTWFAs and introduce MTWFA-SEG, a task involving the fine-grained packet-level classification within multi-tab Tor traffic. By employing deep learning models, we reveal their potential to threaten user privacy by discerning visited websites and browsing session timing. We design an improved fully convolutional model for MTWFA-SEG, which are enhanced by both network architecture advances and traffic data instincts. In the evaluations on interlocking browsing datasets, the proposed models achieve remarkable accuracy rates of over 68.6%, 71.8%, and 76.1% in closed, imbalanced open, and balanced open-world settings, respectively. Furthermore, the proposed models exhibit substantial robustness across diverse train-test settings. We further validate our designs in a coarse-grained task, MTWFA-MultiLabel, where they not only achieve state-of-the-art performance but also demonstrate high robustness in challenging situations.

查看原文本刊更多论文

从痕迹到数据包：基于深度学习的多标签网站指纹攻击

深度学习（DL）的最新进展以侧信道攻击的形式引入了新的安全挑战。一个典型的例子是网站指纹攻击（WFA），它以Tor等匿名网络为目标，使攻击者能够从流量数据中揭示用户受保护的浏览活动。虽然最先进的wfa已经取得了显著的成果，但它们往往依赖于不切实际的单一网站假设。在本文中，我们在更现实的场景中对多标签网站指纹攻击（MTWFAs）进行了详尽的探索。我们深入研究了mtwfa并介绍了MTWFA-SEG，这是一项涉及多选项卡Tor流量中的细粒度包级分类的任务。通过采用深度学习模型，我们揭示了它们通过识别访问的网站和浏览会话时间来威胁用户隐私的潜力。我们设计了一种改进的MTWFA-SEG全卷积模型，该模型得到了网络架构进步和流量数据本能的增强。在互锁浏览数据集的评估中，所提出的模型在封闭、不平衡开放和平衡开放环境下的准确率分别超过68.6%、71.8%和76.1%。此外，所提出的模型在不同的列车测试设置中表现出实质性的鲁棒性。我们在粗粒度任务MTWFA-MultiLabel中进一步验证了我们的设计，它们不仅实现了最先进的性能，而且在具有挑战性的情况下表现出高鲁棒性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Tsinghua Science and Technology COMPUTER SCIENCE, INFORMATION SYSTEMSCOMPU-COMPUTER SCIENCE, SOFTWARE ENGINEERING

CiteScore

10.20

自引率

10.60%

发文量

2340

期刊介绍： Tsinghua Science and Technology (Tsinghua Sci Technol) started publication in 1996. It is an international academic journal sponsored by Tsinghua University and is published bimonthly. This journal aims at presenting the up-to-date scientific achievements in computer science, electronic engineering, and other IT fields. Contributions all over the world are welcome.