 |
- Home
- Submit
-
Browse
- By laboratory
- By department
-
By researchteam
- ACES - Autonomic and Critical Embedded Systems
- CCN - Cybersecurity for Communication and Networking
- COMNUM - Communications numériques
- LinkC2S - Circuits et Systèmes de communication
- DIG - Data, Intelligence and Graphs
- DIVA - Design, Interaction, Visualization and Applications
- ECOGE - Economie Gestion
- GTO - Télécommunications Optiques
- IMAGES - Image, Modélisation, Analyse, GEométrie, Synthèse
- IQA - Information Quantique et Applications
- LabSoC - System on Chip
- MC2 - Mathématiques discrètes, Codage et Cryptographie
- MM- Multimédia
- RFM2 - Radio-Fréquences Microondes et Ondes Millimétriques
- RMS - Réseaux, Mobilité et Services
- S2A - Signal, Statistique et Apprentissage
- SID - Sociologie, Information-Communication Design
- SPE - Sociologie, Psychologie ergonomique
- SSH - Secure and Safe Hardware
- By doctype
- Browse by author
- Search
Conference papers
Attacking suggest boxes in web applications over https using stochastic side-channel algorithms
Alexander Schaub
1, 2
Emmanuel Schneider
Alexandros Hollender
Vinicius Calasans
Laurent Jolie
Robin Touillon
Annelie Heuser
1, 2, 3
Sylvain Guilley
3, 2
Olivier Rioul
1, 2
1
COMNUM - Communications Numériques
LTCI - Laboratoire Traitement et Communication de l'Information
Alexander Schaub 1, 2
Author
Emmanuel Schneider
Author
Alexandros Hollender
Author
Vinicius Calasans
Author
Laurent Jolie
Author
Robin Touillon
Author
Annelie Heuser 1, 2, 3
Mail :
Author IdHAL : annelie-heuser
Sylvain Guilley 3, 2
Mail :
Author IdHAL : sylvain-guilley ORCID : https://orcid.org/0000-0002-5044-3534
Olivier Rioul 1, 2
Mail :
Author IdHAL : rioul arXiv : https://arxiv.org/a/rioul ORCID : https://orcid.org/0000-0002-8681-8916
1
COMNUM - Communications Numériques (46 rue Barrault
75013 Paris - France)
- LTCI - Laboratoire Traitement et Communication de l'Information (46 rue Barrault F-75634 Paris Cedex 13 - France)
- Télécom ParisTech (46 rue Barrault 75634 Paris Cedex 13 - France)
- IMT - Institut Mines-Télécom [Paris] (37-39 Rue Dareau, 75014 Paris - France)
2
COMELEC - Département Communications & Electronique (46, rue Barrault
75013 Paris - France)
- Télécom ParisTech (46 rue Barrault 75634 Paris Cedex 13 - France)
3
SSH - Secure and Safe Hardware (46 rue Barrault
75013 Paris - France)
- LTCI - Laboratoire Traitement et Communication de l'Information (46 rue Barrault F-75634 Paris Cedex 13 - France)
- Télécom ParisTech (46 rue Barrault 75634 Paris Cedex 13 - France)
- IMT - Institut Mines-Télécom [Paris] (37-39 Rue Dareau, 75014 Paris - France)
Abstract : Web applications are subject to several types of attacks. In particular, side-channel attacks consist in performing a statistical analysis of the web traffic to gain sensitive information about a client. In this paper, we investigate how side-channel leaks can be used on search engines such as Google or Bing to retrieve the client’s search query. In contrast to previous works, due to payload randomization and compression, it is not always possible to uniquely map a search query to a web traffic signature and hence stochastic algorithms must be used. Finally, we present some methods to mitigate such side-channel leaks.
Document type :
Conference papers
Complete list of metadatas
https://hal.telecom-paris.fr/hal-02288408
Contributor : Telecomparis Hal <>
Submitted on : Saturday, September 14, 2019 - 6:46:58 PM
Last modification on : Wednesday, June 24, 2020 - 4:19:54 PM
Contributor : Telecomparis Hal <>
Submitted on : Saturday, September 14, 2019 - 6:46:58 PM
Last modification on : Wednesday, June 24, 2020 - 4:19:54 PM
Identifiers
- HAL Id : hal-02288408, version 1
Citation
Alexander Schaub, Emmanuel Schneider, Alexandros Hollender, Vinicius Calasans, Laurent Jolie, et al.. Attacking suggest boxes in web applications over https using stochastic side-channel algorithms. 9th International Conference on Risks and Security of Internet and Systems (CRISIS 2014), Aug 2014, Trente, Italy. ⟨hal-02288408⟩
Metrics
Record views
