• DocumentCode
    3503387
  • Title

    On effectiveness of link padding for statistical traffic analysis attacks

  • Author

    Fu, Xinwen ; Graham, Bryan ; Bettati, Riccardo ; Zhao, Wei

  • Author_Institution
    Dept. of Comput. Sci., Texas A&M Univ., College Station, TX, USA
  • fYear
    2003
  • fDate
    19-22 May 2003
  • Firstpage
    340
  • Lastpage
    347
  • Abstract
    Traffic analysis attacks aim at deriving mission critical information from the analysis of the traffic transmitted over a network. Countermeasures for such attacks are usually realized by properly "padding" the payload traffic so that the statistics of the overall traffic become significantly different from that of the payload traffic. In this paper, we propose a analytical framework for traffic analysis attacks based on statistical pattern recognition techniques. We study the effectiveness of countermeasures for traffic analysis attacks within our proposed framework. Two basic countermeasure strategies are (a) to pad the traffic with constant interarrival times of packets (CIT) or (b) to pad the traffic with variable interarrival times (VIT). Our experiments show that CIT countermeasures fail when the adversary uses sample variance or sample entropy of packet interarrival times for statistical analysis. On the other hand, VIT countermeasures are effective regardless of which sample statistics are used by the adversary. These observations are validated by analysis of detection rates based on sample distributions of packet interarrival times.
  • Keywords
    pattern recognition; statistical analysis; telecommunication security; telecommunication traffic; constant interarrival time; packet interarrival time; payload traffic; statistical analysis; statistical pattern recognition; statistical traffic analysis attacks; variable interarrival time; Entropy; Information analysis; Mission critical systems; Pattern analysis; Pattern recognition; Payloads; Statistical analysis; Statistical distributions; Statistics; Telecommunication traffic;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Distributed Computing Systems, 2003. Proceedings. 23rd International Conference on
  • ISSN
    1063-6927
  • Print_ISBN
    0-7695-1920-2
  • Type

    conf

  • DOI
    10.1109/ICDCS.2003.1203483
  • Filename
    1203483