For Libraries For Publication Open Access Downloads About Us Contact Us
Paper Titles
Detecting Application-Layer Attacks Based on Hidden Semi-Markov Models
p.923
Economics of Information Security Investment Integrated with IDS and Attacker’s Behavior
p.928
Improve Testing and Pre-Evaluating Expert System by Computer Networks and Security
p.932
Predictive Algorithm of Network Delay Based on Robust Kalman Filter
p.937
Protecting User’s Privacy from Browser-Based Attacks
p.941
Research and Implementation of Intrusion Detection Based Genetic Algorithm
p.946
Right Transfer Method Based on Double HASH Chain
p.952
Security Protection and Solving Procedures of University Network
p.958
The Research of Resource Scheduling Model in Green Energy-Saving Computer Rooms
p.962

Protecting User’s Privacy from Browser-Based Attacks

Article Preview

Abstract:

Recently there has been a new kind of attacks, browser-based attacks, against anonymous communication systems, such as Tor. This kind of attacks exploits JavaScript in the browser or the HTML meta refresh to generate some predefined signals to correlate users and their visited websites. A novel and efficient defense against such attacks is proposed in this paper. Our main observation is that the attacker must generate enough signals from the client site (the browser) to correlate the user and the website while we can detect the attack at the client site. More specifically, when a user is browsing a specific website and a browser-based attack is in progress, the number of outgoing flows and the total byte counts generated by the browser should be much larger compared with the normal browsing behavior. So we can set up fingerprints (number of outgoing flows and total byte counts) for normal browsing of web pages for a period of time and utilize these fingerprints to detect browser-based attacks. We have also found that some JavaScript codes must be executed many times if the attacker uses JavaScript to communicate. We have modified the Mozilla Firefox JavaScript engine to audit execution times of JavaScript code to defend these attacks, including browser-based attacks.

You might also be interested in these eBooks
Information Technology Applications in Industry III View Preview

Info:

Periodical:

Applied Mechanics and Materials (Volumes 631-632)

Pages:

941-945

DOI:

https://doi.org/10.4028/www.scientific.net/AMM.631-632.941

Citation:

Cite this paper

Online since:

September 2014

Authors:

Gao Feng He*, Tao Zhang, Yuan Yuan Ma, Jia Xuan Fei

Keywords:

Anonymous Communication, Browser-Based Attacks, JavaScript, TOR

Export:

RIS, BibTeX

Price:

Permissions CCC:

Request Permissions

Permissions PLS:

Request Permissions

Сopyright:

© 2014 Trans Tech Publications Ltd. All Rights Reserved

Share:

Citation:

* - Corresponding Author

References

[1] D.L. Chaum, Untraceable Electronic Mail, Return Addresses, and Digital Pseudonyms, Communications of the ACM, vol. 24, 1981, p.422–426.

DOI: 10.1145/358549.358563

Google Scholar

[2] R. Dingledine, N. Mathewson, and P. Syverson, Tor: The Second-Generation Onion Router, Proceedings of the 13th USENIX Security Symposium, San Diego, CA, USA, 2004, pp.21-38.

DOI: 10.21236/ada465464

Google Scholar

[3] T.G. Abbott, K.I. Lai, M.R. Lieberman, and E.C. Price, Browser-Based Attacks on Tor, Proceedings of 7th Workshop on Privacy Enhancing Technologies, Springer Berlin, LNCS vol. 4776, 2007, pp.184-199.

DOI: 10.1007/978-3-540-75551-7_12

Google Scholar

[4] X.G. Wang, J.Z. Luo, M. Yang and Z. Ling, A potential HTTP-based Application-level Attack against Tor, Future Generation Computer Systems, vol . 27, 2011, pp.67-77.

DOI: 10.1016/j.future.2010.04.007

Google Scholar

[5] K.P. Dyer, S.E. Coull, T. Ristenpart and T. Shrimpton, Peek-a-boo, I Still See You: Why Efficient Traffic Analysis Countermeasures Fail, Proceedings of 2012 IEEE Symposium on Security and Privacy (S&P), Oakland, California, USA, 2012, pp.332-346.

DOI: 10.1109/sp.2012.28

Google Scholar

[6] O. Hallaraker and G. Vigna, Detecting malicious JavaScript code in Mozilla, Proceedings of 10th IEEE International Conference on Engineering of Complex Computer Systems (ICECCS05), Shanghai, China, June 16-20, 2005, pp.85-94.

DOI: 10.1109/iceccs.2005.35

Google Scholar

© 2025 Trans Tech Publications Ltd. All rights are reserved, including those for text and data mining, AI training, and similar technologies. For open access content, terms of the Creative Commons licensing CC-BY are applied.
Scientific.Net is a registered trademark of Trans Tech Publications Ltd.