Research on Browsers Recognition

doi:10.3969/j.issn.1671-1122.2016.03.006

Abstract

Abstract:

In recent years, with the high-speed development of Internet, network software has been the main target of the hacker. As the network software that users use most frequently, the safety and the service of the browser has always been the focus of attention, which is also a measure that users choose to use. On the one hand, recognizing the browsers can achieve system attacks according to corresponding loopholes of browsers and then open the gate for attackers. On the other hand, using the browsers recognition technology can further recognize the users, and then bring a better user experiences. Previous studies get browsers fingerprint information by implanting server-side scripts, and there are some people that use traffic analysis technology to recognize the browsers, but the recognition rate is relatively low. This paper derives trace information of thirteen browsers from the encryption transmission traffic, and processes trace information by three typical machine learning methods, in order to recognize the browsers. The experimental results show that the browsers can be recognized, and the recognition accuracy is as high as 100%. This means that the users must improve safety awareness, update the browser version, and install the latest patch to prevent system damages caused by the hackers using the original browsers vulnerabilities.

Key words: browser, encryption, kernel, trace, machine learning

CLC Number:

TP309

Zhouhui LI, Yanqun HUANG, Yi TANG. Research on Browsers Recognition[J]. Netinfo Security, 2016, 16(3): 34-39.

Figures/Tables 5

References 11

[1]	中国信息安全测评中心.中国国家信息安全漏洞库[EB/OL]..
[2]	肖梅,辛阳. 基于朴素贝叶斯算法的VoIP流量识别技术研究[J]. 信息网络安全,2015(10):74-79.
[3]	PETER E.How Unique Is Your Web Browser?[C]//Hannes Federrath,University of Regensburg. Privacy Enhancing Technologies Symposium,July 21-23, 2010,Berlin, Germany. New York:Springer,2010:1-18.
[4]	NICK N,ALEXANDROS K,WOUTER J,et al.Cookieless Monster: Exploring the Ecosystem of Web-based Device Fingerprinting[C]// International Computer Science Institute and Lawrence Berkeley National Laboratory. IEEE Symposium on Security and Privacy,May 19-22, 2013,San Francisco, California.Washington:IEEE CS,2013:541-555.
[5]	YU Jiangmin, ERIC C T.Identifying Web Browsers in Encrypted Communications[C]// ACM. Workshop on Privacy in the Electronic Society,November 3-5,2014, Scottsdale, Arizona, USA. New York:ACM,2014:135-138.
[6]	李天枫,姚欣,王劲松.大规模网络异常流量实时云监测平台研究[J]. 信息网络安全,2014(9):1-5.
[7]	刘熙. 浅析浏览器的工作原理[J]中国科技财富,2012(17):98-99.
[8]	KEVIN P D, SCOTT E C, TOMAS R, et al.Peek-a-Boo, I Still See You: Why Efficient Traffic Analysis Countermeasures Fail[C]// IEEE. IEEE Symposium on Security and Privacy,May 20-23 ,2012, San Francisco, USA.Washington:IEEE CS,2012:332-346.
[9]	DOMINIK H,ROLF W, HANNES F.Website Fingerprinting: Attacking Popular Privacy Enhancing Technologies with the Multinomial Naive-bayes Classifier[C]//ACM. CCSW,November 13-15, 2009,Chicago, USA. New York:ACM, 2009:31-42.
[10]	MARC L, BRIAN N L.Inferring the Source of Encrypted HTTP Connections[C]// ACM. ACM CCS,November 3-5, 2006,Alexandria, USA. New York:ACM, 2006:255-263.
[11]	陈学敏,沙灜. 基于浏览器测试组件的社交网络数据获取技术研究[J]. 信息网络安全,2015(5):56-61.

[1]	Chun GUO, Changqing CHEN, Guowei SHEN, Chaohui JIANG. A Ransomware Classification Method Based on Visualization [J]. Netinfo Security, 2020, 20(4): 31-39.
[2]	Zhizhou FU, Liming WANG, Ding TANG, Shuguang ZHANG. HBase Secondary Ciphertext Indexing Method Based on Homomorphic Encryption [J]. Netinfo Security, 2020, 20(4): 55-64.
[3]	Yifeng DU, Yuanbo GUO. A Dynamic Access Control Method for Fog Computing Based on Trust Value [J]. Netinfo Security, 2020, 20(4): 65-72.
[4]	Quan ZHOU, Ningbin YANG, Shumei XU. Fault - tolerant and Verifiable Public Key Searchable Encryption Scheme Based on FBDH Algorithm [J]. Netinfo Security, 2020, 20(3): 29-35.
[5]	Xinglong ZHANG, Yuting LI, Qingfeng CHENG, Lulu GUO. A Browser Security Model for Preventing TLS Protocol Downgrade Attacks [J]. Netinfo Security, 2020, 20(3): 65-74.
[6]	Yi ZHANG, Hongyan LIU, Hequn XIAN, Chengliang TIAN. A Cloud Storage Encrypted Data Deduplication Method Based on Authorization Records [J]. Netinfo Security, 2020, 20(3): 75-82.
[7]	Tengfei WANG, Manchun CAI, Tianliang LU, Ting YUE. IPv6 Network Attack Source Tracing Method Based on iTrace_v6 [J]. Netinfo Security, 2020, 20(3): 83-89.
[8]	Peng LIU, Qian HE, Wangyang LIU, Xu CHENG. CP-ABE Scheme Supporting Attribute Revocation and Outsourcing Decryption [J]. Netinfo Security, 2020, 20(3): 90-97.
[9]	Chunming TANG, Xuhui LIN. Protocol of Privacy-preserving Set Intersection Computation [J]. Netinfo Security, 2020, 20(1): 9-15.
[10]	Shengwei XU, Feijie WANG. Attribute-based Encryption Scheme Traced Under Multi-authority [J]. Netinfo Security, 2020, 20(1): 33-39.
[11]	Jinmiao WANG, Guowei WANG, Mei WANG, Ruijin ZHU. Achieving Privacy Preserving and Flexible Access Control in Fog Computing [J]. Netinfo Security, 2019, 19(9): 41-45.
[12]	Shengyu WANG, Jinmiao WANG, Qingfeng DONG, Ruijin ZHU. A Survey of Attribute-based Encryption Technology [J]. Netinfo Security, 2019, 19(9): 76-80.
[13]	Zewen MA, Yang LIU, Hongping XU, Hang YI. DoS Traffic Identification Technology Based on Integrated Learning [J]. Netinfo Security, 2019, 19(9): 115-119.
[14]	Jianhua LIU, Xiaokun ZHENG, Dong ZHENG, Zhangheng AO. Secure Attribute Based Encryption Enabled Cloud Storage System with Ciphertext Search [J]. Netinfo Security, 2019, 19(7): 50-58.
[15]	Zhongyuan QIN, Yin HAN, Qunfang ZHANG, Xuejin ZHU. An Improved Scheme of Multi-PKG Cloud Storage Access Control [J]. Netinfo Security, 2019, 19(6): 11-18.