HTTPS traffic analysis and client identification using passive SSL/TLS fingerprinting

Martin Husák; Milan Čermák; Tomas Jirsik; Pavel Čeleda

doi:https://doi.org/10.1186/s13635-016-0030-7

doi.org/10.1186/s13635-016-0030-7

HTTPS traffic analysis and client identification using passive SSL/TLS fingerprinting

,

,

..., Pavel Čeleda

13

Eurasip Journal on Information Security

Volume: 2016, Issue: 1

Published: Feb 26, 2016

Abstract

The encryption of network traffic complicates legitimate network monitoring, traffic analysis, and network forensics. In this paper, we present real-time lightweight identification of HTTPS clients based on network monitoring and SSL/TLS fingerprinting. Our experiment shows that it is possible to estimate the User-Agent of a client in HTTPS communication via the analysis of the SSL/TLS handshake. The fingerprints of SSL/TLS handshakes, including...

Paper Fields

Paper Details

Title

HTTPS traffic analysis and client identification using passive SSL/TLS fingerprinting

DOI

doi.org/10.1186/s13635-016-0030-7

Published Date

Feb 26, 2016

Journal

Eurasip Journal on Information Security

Volume

2016

Issue

1

Citation AnalysisPro

You’ll need to upgrade your plan to Pro

Looking to understand the true influence of a researcher’s work across journals & affiliations?

Scinapse’s Top 10 Citation Journals & Affiliations graph reveals the quality and authenticity of citations received by a paper.
Discover whether citations have been inflated due to self-citations, or if citations include institutional bias.

Learn more

Notes

History