pith. sign in

arxiv: 2203.07806 · v2 · pith:C7WDZNOKnew · submitted 2022-03-15 · 💻 cs.CR

You get PADDING, everybody gets PADDING! You get privacy? Evaluating practical QUIC website fingerprinting protections for the masses

classification 💻 cs.CR
keywords defensespaddinguserstrafficadversariesbrowsefingerprintinginternet
0
0 comments X
read the original abstract

Website fingerprinting (WF) is a well-know threat to users' web privacy. New internet standards, such as QUIC, include padding to support defenses against WF. Previous work only analyzes the effectiveness of defenses when users are behind a VPN. Yet, this is not how most users browse the Internet. In this paper, we provide a comprehensive evaluation of QUIC-padding-based defenses against WF when users directly browse the web. We confirm previous claims that network-layer padding cannot provide good protection against powerful adversaries capable of observing all traffic traces. We further demonstrate that such padding is ineffective even against adversaries with constraints on traffic visibility and processing power. At the application layer, we show that defenses need to be deployed by both first and third parties, and that they can only thwart traffic analysis in limited situations. We identify challenges to deploy effective WF defenses and provide recommendations to address them.

This paper has not been read by Pith yet.

discussion (0)

Sign in with ORCID, Apple, or X to comment. Anyone can read and Pith papers without signing in.

Forward citations

Cited by 1 Pith paper

Reviewed papers in the Pith corpus that reference this work. Sorted by Pith novelty score.

  1. A Survey and Evaluation Framework for Secure DNS Resolution

    cs.CR 2025-09 accept novelty 6.0

    The paper creates a threat model and 14 properties for secure DNS, then uses a new evaluation framework to show that no single scheme covers the full resolution path but compatible schemes from different stages can be...