SCEP-TI: A side-channel attack on encrypted proxy video streams for video title identification

IF 4.6 2区计算机科学 Q1 COMPUTER SCIENCE, HARDWARE & ARCHITECTURE

Computer Networks Pub Date : 2025-08-22 DOI:10.1016/j.comnet.2025.111630

Yi Zhang , Zhenyu Xu , Xurui Ren , Hua Wu , Guang Cheng

{"title":"SCEP-TI: A side-channel attack on encrypted proxy video streams for video title identification","authors":"Yi Zhang , Zhenyu Xu , Xurui Ren , Hua Wu , Guang Cheng","doi":"10.1016/j.comnet.2025.111630","DOIUrl":null,"url":null,"abstract":"<div><div>With the widespread use of the Internet and the continuous development of streaming media technology, video streaming has increasingly become the main body of the entire Internet traffic. Although the video is encrypted during transmission, it may still be vulnerable to side-channel attacks. However, after the video is transmitted through proxy encapsulation, the accuracy of side-channel attack is greatly reduced. In the paper, we propose a side-channel attack on encrypted proxy video streams for title identification(SCEP-TI), which is a new attack method to identify video titles in encrypted proxy traffic based on side-channel features. We extract stable video segment features from encrypted proxy traffic based on DASH and HLS protocols, and SCEP-TI utilizes a convolutional neural network (CNN) model to accurately identify video titles. This method overcomes the traffic confusion caused by encrypted proxy encapsulation, the interference of a large amount of background traffic, and the limitation of unidirectional traffic in asymmetric routing scenarios. The experimental results show that SCEP-TI has higher accuracy in both closed-world and open-world scenarios, which is superior to the existing methods. Furthermore, to protect the privacy of the user, we propose two defense mechanisms. Our code is available at <span><span>https://github.com/Zzzyyzz/SCEP-TI</span><svg><path></path></svg></span>.</div></div>","PeriodicalId":50637,"journal":{"name":"Computer Networks","volume":"271 ","pages":"Article 111630"},"PeriodicalIF":4.6000,"publicationDate":"2025-08-22","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Computer Networks","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S1389128625005973","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE","Score":null,"Total":0}

引用次数: 0

Abstract

With the widespread use of the Internet and the continuous development of streaming media technology, video streaming has increasingly become the main body of the entire Internet traffic. Although the video is encrypted during transmission, it may still be vulnerable to side-channel attacks. However, after the video is transmitted through proxy encapsulation, the accuracy of side-channel attack is greatly reduced. In the paper, we propose a side-channel attack on encrypted proxy video streams for title identification(SCEP-TI), which is a new attack method to identify video titles in encrypted proxy traffic based on side-channel features. We extract stable video segment features from encrypted proxy traffic based on DASH and HLS protocols, and SCEP-TI utilizes a convolutional neural network (CNN) model to accurately identify video titles. This method overcomes the traffic confusion caused by encrypted proxy encapsulation, the interference of a large amount of background traffic, and the limitation of unidirectional traffic in asymmetric routing scenarios. The experimental results show that SCEP-TI has higher accuracy in both closed-world and open-world scenarios, which is superior to the existing methods. Furthermore, to protect the privacy of the user, we propose two defense mechanisms. Our code is available at https://github.com/Zzzyyzz/SCEP-TI.

查看原文本刊更多论文

sep - ti：用于视频标题识别的加密代理视频流的侧信道攻击

随着互联网的广泛使用和流媒体技术的不断发展，视频流越来越成为整个互联网流量的主体。虽然视频在传输过程中是加密的，但它仍然容易受到侧信道攻击。但是，通过代理封装传输视频后，侧信道攻击的精度大大降低。本文提出了一种对加密代理视频流进行标题识别的侧信道攻击方法（sep - ti），这是一种基于侧信道特征对加密代理流量中的视频标题进行识别的新攻击方法。我们基于DASH和HLS协议从加密的代理流量中提取稳定的视频片段特征，并利用卷积神经网络（CNN）模型准确识别视频标题。该方法克服了加密代理封装带来的流量混乱、大量后台流量的干扰以及非对称路由场景下单向流量的限制。实验结果表明，该方法在封闭世界和开放世界场景下都具有更高的精度，优于现有方法。此外，为了保护用户的隐私，我们提出了两种防御机制。我们的代码可在https://github.com/Zzzyyzz/SCEP-TI上获得。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Computer Networks 工程技术-电信学

CiteScore

10.80

自引率

3.60%

发文量

434

审稿时长

8.6 months

期刊介绍： Computer Networks is an international, archival journal providing a publication vehicle for complete coverage of all topics of interest to those involved in the computer communications networking area. The audience includes researchers, managers and operators of networks as well as designers and implementors. The Editorial Board will consider any material for publication that is of interest to those groups.