网络与信息安全学报 ›› 2021, Vol. 7 ›› Issue (4): 114-130.doi: 10.11959/j.issn.2096-109x.2021050

• 专栏Ⅱ:密码技术与应用 • 上一篇    下一篇

网络加密流量侧信道攻击研究综述

李玎1,2, 祝跃飞1,2, 芦斌1,2, 林伟1,2   

  1. 1 信息工程大学,河南 郑州 450001
    2 数学工程与先进计算国家重点实验室,河南 郑州 450001
  • 修回日期:2020-09-24 出版日期:2021-08-15 发布日期:2021-08-01
  • 作者简介:李玎(1992− ),男,河南郑州人,信息工程大学博士生,主要研究方向为网络信息安全、机器学习
    祝跃飞(1962− ),男,浙江杭州人,博士,信息工程大学教授、博士生导师,主要研究方向为信息安全、公钥密码
    芦斌(1983− ),男,河南郑州人,博士,信息工程大学副教授,主要研究方向为网络信息安全、机器学习
    林伟(1986− ),男,湖南常德人,博士,信息工程大学讲师,主要研究方向为软件保护与分析、网络信息安全
  • 基金资助:
    国家重点研发计划(2019QY1302)

Survey of side channel attack on encrypted network traffic

Ding LI1,2, Yuefei ZHU1,2, Bin LU1,2, Wei LIN1,2   

  1. 1 Information Engineering University, Zhengzhou 450001, China
    2 State Key Laboratory of Mathematical Engineering and Advanced Computing, Zhengzhou 450001, China
  • Revised:2020-09-24 Online:2021-08-15 Published:2021-08-01
  • Supported by:
    The National Key R&D Program of China(2019QY1302)

摘要:

网络加密流量侧信道攻击通过分析、提取网络应用通信过程中泄露的数据包长度、时间等侧信道信息,能够识别用户的身份和行为,甚至还原用户输入的原始数据。基于信息论建立了网络加密流量侧信道攻击模型,使用统一的模型框架分析了代表性的指纹攻击、击键攻击和语音攻击的方法和效果,讨论了基于隐藏数据包长度和时间信息的防御方法,结合技术发展前沿对未来可能的研究方向进行了展望。

关键词: 网络应用, 加密流量, 侧信道攻击, 信息增益

Abstract:

By analyzing and extracting information such as packet size and timing leaked during Web application communication, side channel attack on encrypted network traffic is able to recognize users' identity and behavior and even restore the original data entered by users.A model of side channel attack on encrypted network traffic according to information theory was developed.Based on the unified model, the methods and results of representative attacks such as fingerprinting attacks, keystroke attacks and speech attacks were analyzed in detail.Furthermore, defense methods of hiding packet size and timing information were discussed.At last, possible research directions were prospected with the frontiers of technology development.

Key words: web application, encrypted traffic, side channel attack, information gain

中图分类号: 

No Suggested Reading articles found!