WCSE 2017
ISBN: 978-981-11-3671-9 DOI: 10.18178/wcse.2017.06.107

Fingerprinting Attack Based on SSH Anonymous Websites

Lu Han, Zhengmin Li, Zhengping Jin

Abstract— Internet criminals can carry out illegal and criminal activities through SSH anonymous communication system. However, the highest accuracy rate of the fingerprinting attack method based on SSH anonymous website is about 93%, which makes the perpetrators still have the opportunity to take advantage of this shortage which can be used to make a serious threat to the Internet. On the above issues, this paper proposed an efficient fingerprinting attack method, making the fingerprint attack accuracy rate reached 96.4%. This method is based on analyzing upstream traffic which over the SSH anonymous communication system with the use of the random forests classifier, the number of TCP requests, the number of packets, the size of packet, the packet sequence and so on as the classified characteristics, we have given sufficient evidence to verify the effectiveness of this fingerprinting attack method.

Index Terms— traffic analysis, anonymous communication, random forests, fingerprinting attack.

Lu Han
State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, CHINA
Zhengmin Li
National Computer Network Emergency Response Technical Team/Coordination Center of China, CHINA
Zhengping Jin
Institute of Information Engineering, Chinese Academy of Sciences, CHINA


Cite: Lu Han, Zhengmin Li, Zhengping Jin, "Fingerprinting Attack Based on SSH Anonymous Websites," Proceedings of 2017 the 7th International Workshop on Computer Science and Engineering, pp. 616-620, Beijing, 25-27 June, 2017.