System and method for evaluating and enhancing source anonymity for encrypted web traffic
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method is provided for evaluating the effectiveness of data encryption for hiding the identity of the source of Web traffic. A signature is constructed from encrypted Web traffic for a Web page sent by a target Web site, and the signature is compared with archived traffic signatures obtained by accessing various Web pages of interest in advance. If the signature of the detected encrypted Web traffic matches a stored traffic signature beyond a pre-set statistical threshold, a positive match is found, and the source of the traffic is identified. Countermeasures for reducing the reliability of source identification based on traffic signature matching are provided.
39 Citations
32 Claims
-
1-25. -25. (canceled)
-
26. In a networking environment, a method for an Internet client to access a Web page, the Web page comprising a plurality of objects, the method comprising:
-
sending a request to access the Web page;
receiving a plurality of objects of the Web page, the received objects encrypted and padded;
decrypting the plurality of objects; and
removing padding from each decrypted object. - View Dependent Claims (27)
-
-
28. A computer-readable medium containing computer-executable instructions for a method for an Internet client to access a Web page, the Web page comprising a plurality of objects, the method comprising:
-
sending a request to access the Web page;
receiving a plurality of objects of the Web page, the received objects encrypted and padded;
decrypting the plurality of objects; and
removing padding from each decrypted object.
-
-
29. In a networking environment, a system for accessing a Web page, the Web page comprising a plurality of objects, the system comprising:
-
the Web page;
an Internet client configured for sending a request to access the Web page;
for receiving a plurality of objects of the Web page, the received objects encrypted and padded;
for decrypting the plurality of objects; and
for removing padding from each decrypted object; and
a Web server configured for receiving a request to access the Web page;
for padding each object of the Web page;
for encrypting the padded objects of the Web page; and
for transmitting the encrypted and padded objects. - View Dependent Claims (30)
-
-
31. A computer-readable medium having stored thereon a Web page data structure, the Web page data structure comprising:
-
a first data field containing data representing a first encrypted, padded object of a Web page; and
a second data field containing data representing a second encrypted, padded object of the Web page. - View Dependent Claims (32)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeMicrosoft Technology Licensing LLC (Microsoft Corporation)
-
Original AssigneeMicrosoft Corporation
-
InventorsSun, Oixiang, Simon, Daniel R., Wang, Yi-Min, Padmanabhan, Venkata N., Qiu, Lili, Russell, Wilfred
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current370/352
-
CPC Class CodesG06F 2221/2107 File encryptionG06F 2221/2119 Authenticating web pages, e...G06Q 20/10 specially adapted for elect...G06Q 20/102 Bill distribution or paymentsG06Q 20/1085 involving automatic teller ...G06Q 20/40 Authorisation, e.g. identif...H04L 63/0407 wherein the identity of one...H04L 63/1408 by monitoring network traff...
