On CHOW: Can nutmeg make you hallucinate?
BNET Business Network:
BNET
TechRepublic
ZDNet

FREE Registration is required

Overview:

The paper analyzes attacks that take advantage of the data length information leaked by HTTP transactions over the TLS protocol, in order to link clients with particular resources they might access on a web site. The threat model considered is a public news site that tries to protect the patterns of requests and submissions of its users by encrypting the HTTP connections using TLS, against an attacker that can observe all traffic. The paper shows how much information an attacker can infer about single requests and submissions knowing only their length. A Hidden Markov Model is then presented that analyzes sequences of requests and finds the most plausible resources accessed.

(Is this item miscategorized? Does it need more tags? Let us know.)

Format:PDFSize:139 KB
Date:Jan 2009
Pages:12

Top results from TCP - IP

White Paper Enterprise and Web 2.0 application support in a modern mainframe environment
White Paper CCNA Review Guide
White Paper Building Reliable IP Telephony Systems
White Paper TCP/IP Sleuthing--Troubleshooting TCP/IP Using Your Toolbox
White Paper The OSI Model: Understanding the Seven Layers of Computer Networks

» View all TCP - IP listings

advertisement

White Papers, Webcasts, and Resources

Featured Training Courses

advertisement

Returning users: Log In Here!

Already registered on BNET, TechRepublic, or ZDNet? Simply log in.

Free Membership: Sign Up Now!

Sign up for a free membership today and get instant and unlimited access to one of the largest databases of white papers, webcasts, and casestudies anywhere. Your FREE membership allows you to:

  • Download an unlimited amount of content, including classic and current white papers, case studies, webcasts and more
  • Track content on your chosen topics of interest
  • Receive targeted email alerts when your favorite content is added
  • Save content for future reading
  • Receive our member newsletter

When you register to access this library, you allow us to share your information with companies that produce products or services featured in the library--so that such companies may contact you with information and offers regarding their products and services. This enables us to keep the library a free service. As a library registrant, you will receive a complimentary subscription to the ZDNet white paper newsletter and e-mail Must-Read News Alerts. You can unsubscribe from these at any time. By clicking the Sign up button, you indicate that you agree to our Terms and Conditions and have read and understand our Privacy Policy (updated).