An initial study of the effect of pipelining in hiding HTTP/2.0 response sizes

نویسنده

  • Ricardo Morla
چکیده

HTTP response size is a well-known side channel attack. With the deployment of HTTP/2.0, response size attacks are generally dismissed with the argument that pipelining and response multiplexing prevent eavesdroppers from finding out response sizes. Yet the extent to which pipelining and response multiplexing actually hide HTTP response sizes has not been adequately investigated. In this paper we set out to help understand the effect of pipelining in hiding the size of web objects on the Internet. We conduct an experiment that provides browser-side HTTP response sizes and network-captured TLS record sizes and show how the model that we propose for estimating response sizes from TLS record sizes improves response matching and attack performance. In this process we gather evidence on how different implementations of HTTP/2.0 web servers generate different sidechannel information and the limited amount of pipelining and response multiplexing used on the Internet today.

برای دانلود رایگان متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

Effect of Pipelining and Multiplexing in Estimating HTTP/2.0 Web Object Sizes

HTTP response size is a well-known side channel attack. With the deployment of HTTP/2.0, response size estimation attacks are generally dismissed with the argument that pipelining and response multiplexing prevent eavesdroppers from finding out response sizes. Yet the impact that pipelining and response multiplexing actually have in estimating HTTP response sizes has not been adequately investi...

متن کامل

Grain Size Effect on the Hot Deformation Processing Map of AISI 304 Austenitic Stainless Steel

In this study, the hot deformation processing map of AISI 304 austenitic stainless steel in two initial grain sizes of 15 and 40 μm was investigated. For this purpose, cylindrical samples were used in the hot compression test at the temperature range of 950-1100 °C and the strain rate of 0.005-0.5% s-1. At first, the relationship between the peak stress and Zener-Hollomon parameter w...

متن کامل

Study on transferred impulse and response of steel plate walls under various impulsive loading considering mesh size effects

The behavior of steel plate walls (SPWs) under various impulsive loadings and the effects of different mesh sizes are investigated in this paper. With the aim of accurately inspecting SPWs, a series of analyses with 250 models with different plate geometric assumptions and different blast impulsive loadings are performed to study the SPWs’ out-of-plane behavior. The mild steel material specific...

متن کامل

Bayesian Inference for Spatial Beta Generalized Linear Mixed Models

In some applications, the response variable assumes values in the unit interval. The standard linear regression model is not appropriate for modelling this type of data because the normality assumption is not met. Alternatively, the beta regression model has been introduced to analyze such observations. A beta distribution represents a flexible density family on (0, 1) interval that covers symm...

متن کامل

Nb2O5 Nanoparticles Synthesis by Chemical Surfactant-Free Methods: ltrasonic Assisted Approach

In this study, spherical Nb2O5 nanoparticles were synthesized by a novel chemical method as a simple, robust, surfactant-free, non-toxic and widely applicable approach. In order to investigate the effect of initial concentration on particle sizes, nanoparticles with different initial concentration were synthesized. Ultrasonic assisted method was applied and the effects of ultrasonic treat...

متن کامل

ذخیره در منابع من


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

عنوان ژورنال:
  • CoRR

دوره abs/1607.06709  شماره 

صفحات  -

تاریخ انتشار 2016