ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Timing attacks on Web privacy
Full text PdfPdf (185 KB)
Source Conference on Computer and Communications Security archive
Proceedings of the 7th ACM conference on Computer and communications security table of contents
Athens, Greece
Pages: 25 - 32  
Year of Publication: 2000
ISBN:1-58113-203-4
Authors
Edward W. Felten  Secure Internet Programming Laboratory, Department of Computer Science, Princeton University, Princeton, NJ
Michael A. Schneider  Secure Internet Programming Laboratory, Department of Computer Science, Princeton University, Princeton, NJ
Sponsors
Greek Com Soc : Greek Computer Society
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
Athens U of Econ & Business : Athens University of Economics and Business
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 14,   Downloads (12 Months): 84,   Citation Count: 27
Additional Information:

references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/352600.352606
What is a DOI?

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
Paul Albitz, DNS and BIND, O'Reilly & Associates, Inc., Sebastopol, CA, 2001
 
2
ANONYMIZER. Web site at http://www.anonymizer.com.
 
3
Eran Gabber , Phillip B. Gibbons , Yossi Matias , Alain J. Mayer, How to Make Personalized Web Browising Simple, Secure, and Anonymous, Proceedings of the First International Conference on Financial Cryptography, p.17-32, February 24-28, 1997
 
4
David M. Martin Jr , Sivaramakrishnan Rajagopalan , Aviel D. Rubin, Blocking Java Applets at the Firewall, Proceedings of the 1997 Symposium on Network and Distributed System Security, p.16, February 10-11, 1997
 
5
NETSCAPE COMMUNICATIONS. Persistent client state: HTTP cookies. Web site at http://home.netscape.com/newsref/std/cookie spec.html.
6
Michael K. Reiter , Aviel D. Rubin, Crowds: anonymity for Web transactions, ACM Transactions on Information and System Security (TISSEC), v.1 n.1, p.66-92, Nov. 1998  [doi>10.1145/290163.290168]
 
7
The squid web proxy cache. Web site at http://squid.nlanr.net.
 
8
VOELKER, G. Personal communication.
 
9
WOLMAN, A., VOELKER, G., SHARMA, N., CARDWELL, N., BROWN, M., LANDRAY,T.,PINNEL, D., KARLIN, A., AND LEVY, H. Organization-based analysis of web-object sharing and caching. In Proc. of Second USENIX Symp. on Internet Technologies and Systems (Oct. 1999), pp. 25-36.
 
10
ZERO KNOWLEDGE SYSTEMS. Freedom 1.0. Web site at http://www.freedom.net.

CITED BY  27
Ruggero Lanotte , Andrea Maggiolo-Schettini , Simone Tini, Information flow in hybrid systems, ACM Transactions on Embedded Computing Systems (TECS), v.3 n.4, p.760-799, November 2004
R. Corin , S. Etalle , P. H. Hartel , A. Mader, Timed model checking of security protocols, Proceedings of the 2004 ACM workshop on Formal methods in security engineering, October 29-29, 2004, Washington DC, USA
Xinyuan Wang , Shiping Chen , Sushil Jajodia, Tracking anonymous peer-to-peer VoIP calls on the internet, Proceedings of the 12th ACM conference on Computer and communications security, November 07-11, 2005, Alexandria, VA, USA
Tadayoshi Fujiki , Eisuke Hanada , Tomomi Yamada , Yoshihiro Noda , Yasuaki Antoku , Naoki Nakashima , Yoshiaki Nose, A Tool for Improving the Web Accessibility of Visually Handicapped Persons, Journal of Medical Systems, v.30 n.2, p.83-89, April 2006
Shuo Chen , David Ross , Yi-Min Wang, An analysis of browser domain-isolation bugs and a light-weight transparent defense mechanism, Proceedings of the 14th ACM conference on Computer and communications security, October 28-31, 2007, Alexandria, Virginia, USA
Marc Rennhard , Sandro Rafaeli , Laurent Mathy , Bernhard Plattner , David Hutchison, Towards Pseudonymous e-Commerce, Electronic Commerce Research, v.4 n.1-2, p.83-111, January-April 2004
Moheeb Abu Rajab , Jay Zarfoss , Fabian Monrose , Andreas Terzis, A multifaceted approach to understanding the botnet phenomenon, Proceedings of the 6th ACM SIGCOMM on Internet measurement, October 25-27, 2006, Rio de Janeriro, Brazil
V. T. Lam , S. Antonatos , P. Akritidis , K. G. Anagnostakis, Puppetnets: misusing web browsers as a distributed attack infrastructure, Proceedings of the 13th ACM conference on Computer and communications security, October 30-November 03, 2006, Alexandria, Virginia, USA
Collin Jackson , Andrew Bortz , Dan Boneh , John C. Mitchell, Protecting browser state from web privacy attacks, Proceedings of the 15th international conference on World Wide Web, May 23-26, 2006, Edinburgh, Scotland
Markus Jakobsson , Sid Stamm, Invasive browser sniffing and countermeasures, Proceedings of the 15th international conference on World Wide Web, May 23-26, 2006, Edinburgh, Scotland
Jeffery C. Mogul , Yee Man Chan , Terence Kelly, Design, implementation, and evaluation of duplicate transfer detection in HTTP, Proceedings of the 1st conference on Symposium on Networked Systems Design and Implementation, p.4-4, March 29-31, 2004, San Francisco, California
David Martin , Andrew Schulman, Deanonymizing Users of the SafeWeb Anonymizing Service, Proceedings of the 11th USENIX Security Symposium, p.123-137, August 05-09, 2002
Guillaume Gardey , John Mullins , Olivier H. Roux, Non-Interference Control Synthesis for Security Timed Automata, Electronic Notes in Theoretical Computer Science (ENTCS), v.180 n.1, p.35-53, June, 2007
Andrew Bortz , Dan Boneh, Exposing private information by timing web applications, Proceedings of the 16th international conference on World Wide Web, May 08-12, 2007, Banff, Alberta, Canada
Damas P. Gruska, Network Information Flow, Fundamenta Informaticae, v.72 n.1-3, p.167-180, January 2006
Ariel Futoransky , Damián Saura , Ariel Waissbein, The ND2DB attack: database content extraction using timing attacks on the indexing algorithms, Proceedings of the first conference on First USENIX Workshop on Offensive Technologies, p.3-3, August 06, 2007, Boston, MA
Charles V. Wright , Fabian Monrose , Gerald M. Masson, On Inferring Application Protocol Behaviors in Encrypted Network Traffic, The Journal of Machine Learning Research, 7, p.2745-2769, 12/1/2006
Markus Jakobsson , Sid Stamm, Web Camouflage: Protecting Your Clients from Browser-Sniffing Attacks, IEEE Security and Privacy, v.5 n.6, p.16-24, November 2007
Felipe Saint-Jean , Aaron Johnson , Dan Boneh , Joan Feigenbaum, Private web search, Proceedings of the 2007 ACM workshop on Privacy in electronic society, October 29-29, 2007, Alexandria, Virginia, USA
Hüseyin Akcan , Torsten Suel , Hervé Brönnimann, Geographic web usage estimation by monitoring DNS caches, Proceedings of the first international workshop on Location and the web, p.85-92, April 22-22, 2008, Beijing, China
Damas P. Gruska, Observation Based System Security, Fundamenta Informaticae, v.79 n.3-4, p.335-346, August 2007
R. Corin , S. Etalle , P. H. Hartel , A. Mader, Timed analysis of security protocols, Journal of Computer Security, v.15 n.6, p.619-645, December 2007
Terri Oda , Glenn Wurster , P. C. van Oorschot , Anil Somayaji, SOMA: mutual approval for included content in web pages, Proceedings of the 15th ACM conference on Computer and communications security, October 27-31, 2008, Alexandria, Virginia, USA
Spiros Antonatos , Periklis Akritidis , Vinh The Lam , Kostas G. Anagnostakis, Puppetnets: Misusing Web Browsers as a Distributed Attack Infrastructure, ACM Transactions on Information and System Security (TISSEC), v.12 n.2, p.1-38, December 2008
Scott A. Crosby , Dan S. Wallach , Rudolf H. Riedi, Opportunities and Limits of Remote Timing Attacks, ACM Transactions on Information and System Security (TISSEC), v.12 n.3, p.1-29, January 2009
Damas P. Gruska, Probabilistic Information Flow Security, Fundamenta Informaticae, v.85 n.1-4, p.173-187, September 2008
Damas P. Gruska , Andrea Maggiolo-Schettini , Paolo Milazzo, Security in a Model for Long-running Transactions, Fundamenta Informaticae, v.85 n.1-4, p.189-203, September 2008

INDEX TERMS

Primary Classification:
  K. Computing Milieux
  K.4 COMPUTERS AND SOCIETY
      K.4.1 Public Policy Issues
          Subjects: Privacy

Additional Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS
      C.2.0 General
          Subjects: Security and protection (e.g., firewalls)

  H. Information Systems
  H.3 INFORMATION STORAGE AND RETRIEVAL
      H.3.5 On-line Information Services
          Subjects: Web-based services
  H.5 INFORMATION INTERFACES AND PRESENTATION (I.7)
      H.5.3 Group and Organization Interfaces

          Nouns: WEB

  K. Computing Milieux
  K.6 MANAGEMENT OF COMPUTING AND INFORMATION SYSTEMS


General Terms:
Design, Human Factors, Management, Measurement, Performance, Reliability, Security, Theory

Collaborative Colleagues:
Edward W. Felten: colleagues
Michael A. Schneider: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player