Evaluating the Security of a DNS Query Obfuscation Scheme for Private Web Surfing

被引：0

作者：

Herrmann, Dominik ^{[1
]}

Maass, Max ^{[1
]}

Federrath, Hannes ^{[1
]}

机构：

[1] Univ Hamburg, Dept Comp Sci, Hamburg, Germany

来源：

ICT SYSTEMS SECURITY AND PRIVACY PROTECTION, IFIP TC 11 INTERNATIONAL CONFERENCE, SEC 2014 | 2014年 / 428卷

关键词：

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

The Domain Name System (DNS) does not provide query privacy. Query obfuscation schemes have been proposed to overcome this limitation, but, so far, they have not been evaluated in a realistic setting. In this paper we evaluate the security of a random set range query scheme in a real-world web surfing scenario. We demonstrate that the scheme does not sufficiently obfuscate characteristic query patterns, which can be used by an adversary to determine the visited websites. We also illustrate how to thwart the attack and discuss practical challenges. Our results suggest that previously published evaluations of range queries may give a false sense of the attainable security, because they do not account for any interdependencies between queries.

引用

页码：205 / 219

页数：15

共 50 条

[31] Evaluating the adequacy of private security industry regulation in Finland
Santonen, Teemu
Paasonen, Jyri
SECURITY JOURNAL, 2017, 30 (02) : 585 - 604
[32] Evaluating the impact of DNS and HTTP session characteristics on consumer ISP web traffic
But, Jason
Keller, Urs
Armitage, Grenville
TENCON 2005 - 2005 IEEE REGION 10 CONFERENCE, VOLS 1-5, 2006, : 346 - +
[33] Unobservable surfing on the World Wide Web: Is private information retrieval an alternative to the MIX based approach?
Kesdogan, D
Borning, M
Schmeink, M
PRIVACY ENHANCING TECHNOLOGIES, 2003, 2482 : 224 - 238
[34] A lightweight security scheme for query processing in clustered wireless sensor networks
Ghosal, Amrita
DasBit, Sipra
COMPUTERS & ELECTRICAL ENGINEERING, 2015, 41 : 240 - 255
[35] A Selective Re-Query Case Sensitive Encoding Scheme Against DNS Cache Poisoning Attacks
Jin Cao
Maode Ma
Xilei Wang
Haochen Liu
Wireless Personal Communications, 2017, 94 : 1263 - 1279
[36] A Selective Re-Query Case Sensitive Encoding Scheme Against DNS Cache Poisoning Attacks
Cao, Jin
Ma, Maode
Wang, Xilei
Liu, Haochen
WIRELESS PERSONAL COMMUNICATIONS, 2017, 94 (03) : 1263 - 1279
[37] Security Loophole and Improvement of Quantum Private Query Protocol Based on W State
Zhang, Xue
Qin, Sujuan
Zhang, Xuanwen
Yu, XiaoLing
Gao, Fei
Wen, Qiaoyan
INTERNATIONAL JOURNAL OF THEORETICAL PHYSICS, 2023, 62 (08)
[38] A Modified Query Algorithm for Private Data Security Facing E-commerce
Yin, Chunyong
Sun, Ruxia
Xue, Shengjun
PROCEEDINGS OF THE 2009 PACIFIC-ASIA CONFERENCE ON CIRCUITS, COMMUNICATIONS AND SYSTEM, 2009, : 585 - 587
[39] Security Loophole and Improvement of Quantum Private Query Protocol Based on W State
Xue Zhang
Sujuan Qin
Xuanwen Zhang
XiaoLing Yu
Fei Gao
Qiaoyan Wen
International Journal of Theoretical Physics, 62
[40] A URL Address Aware Classification of Malicious Websites for Online Security during Web-surfing
Chakraborty, Goutam
Lin, Tsai Tzung
2017 IEEE INTERNATIONAL CONFERENCE ON ADVANCED NETWORKS AND TELECOMMUNICATIONS SYSTEMS (ANTS), 2017,

← 1 2 3 4 5 →