The Model of Payload Authentication for HTTP Protocol Family

2021 ◽  
Author(s):  
Sergei Surkov
Keyword(s):  
Http Protocol

scholarly journals Hfinger: Malware HTTP Request Fingerprinting

Entropy ◽  
2021 ◽  
Vol 23 (5) ◽  
pp. 507
Author(s):  
Piotr Białczak ◽  
Wojciech Mazurczyk
Keyword(s):  
Real World ◽  
Network Traffic ◽  
Experimental Evaluation ◽  
Data Sets ◽  
Real World Data ◽  
Malicious Software ◽  
Default Mode ◽  
World Data ◽  
Effectiveness Analysis ◽  
Http Protocol

Malicious software utilizes HTTP protocol for communication purposes, creating network traffic that is hard to identify as it blends into the traffic generated by benign applications. To this aim, fingerprinting tools have been developed to help track and identify such traffic by providing a short representation of malicious HTTP requests. However, currently existing tools do not analyze all information included in the HTTP message or analyze it insufficiently. To address these issues, we propose Hfinger, a novel malware HTTP request fingerprinting tool. It extracts information from the parts of the request such as URI, protocol information, headers, and payload, providing a concise request representation that preserves the extracted information in a form interpretable by a human analyst. For the developed solution, we have performed an extensive experimental evaluation using real-world data sets and we also compared Hfinger with the most related and popular existing tools such as FATT, Mercury, and p0f. The conducted effectiveness analysis reveals that on average only 1.85% of requests fingerprinted by Hfinger collide between malware families, what is 8–34 times lower than existing tools. Moreover, unlike these tools, in default mode, Hfinger does not introduce collisions between malware and benign applications and achieves it by increasing the number of fingerprints by at most 3 times. As a result, Hfinger can effectively track and hunt malware by providing more unique fingerprints than other standard tools.

scholarly journals Http Relay Binding (webHttpRelayBinding) and Crud Contract

2019 ◽  
pp. 51-54
Author(s):  
Dr. Manish L Jivtode
Keyword(s):  
World Wide Web ◽  
Web Services ◽  
Web Service ◽  
World Wide ◽  
Distributed Applications ◽  
Configuration File ◽  
Representational State Transfer ◽  
State Transfer ◽  
Representational State ◽  
Http Protocol

The Broker Architecture became popular involving client and server. Representational State Transfer(REST) architecture is the architecture of World Wide Web. REST uses HTTP protocol based on Servlet and ASMX technology is replaced by WCF web service technology. SOAP and REST are two kinds of WCF web services. REST is lightweight compared to SOAP and hence emerged as the popular technology for building distributed applications in the cloud. In this paper, conducted by exposing a HTTP endpoint address, HTTP relay binding (webHttpRelayBinding) and CRUD contract through interface. The interface is decorated using WebGet and WebInvoke attributes. WCF configuration file created using XML tags for use with REST web service.

Website Fingerprinting in the Age of QUIC

2021 ◽  
Vol 2021 (2) ◽  
pp. 48-69
Author(s):  
Jean-Pierre Smith ◽  
Prateek Mittal ◽  
Adrian Perrig
Keyword(s):  
Transport Protocol ◽  
Limited Data ◽  
Web Traffic ◽  
Common Information ◽  
Feature Importance ◽  
The Common ◽  
Http Protocol

Abstract With the meteoric rise of the QUIC protocol, the supremacy of TCP as the de facto transport protocol underlying web traffic will soon cease. HTTP/3, the next version of the HTTP protocol, will not support TCP. Current website-fingerprinting literature has ignored the introduction of this new protocol to all modern browsers. In this work, we investigate whether classifiers trained in the TCP setting generalise to QUIC traces, whether QUIC is inherently more difficult to fingerprint than TCP, how feature importance changes between these protocols, and how to jointly classify QUIC and TCP traces. Experiments using four state-of-theart website-fingerprinting classifiers and our combined QUIC-TCP dataset of ~117,000 traces show that while QUIC is not inherently more difficult to fingerprint than TCP, TCP-trained classifiers may fail to detect up to 96% of QUIC visits to monitored URLs. Furthermore, classifiers that take advantage of the common information between QUIC and TCP traces for the same URL may outperform ensembles of protocol-specific classifiers in limited data settings.

Designing Security Properties-Centric Communication Protocols using a Component-Based Approach

2012 ◽  
Vol 3 (1) ◽  
pp. 1-16 ◽  
Author(s):  
N. Nobelis ◽  
K. Boudaoud ◽  
C. Delettre ◽  
M. Riveill
Keyword(s):  
Communication Protocols ◽  
Electronic Document ◽  
Security Properties ◽  
Http Protocol ◽  
High Level ◽  
Security Property ◽  
Security Components

Numerous communication protocols have been designed offering a set of security properties through the use of cryptographic tools to secure electronic document transfer. However, there is no clear match between the tools used and security properties they offer. To solve this problem, the authors propose to use a component-based approach; more specifically the authors introduce the notion of high-level security component where each component provides an atomic security property. This approach will facilitate the design of new protocols that fulfill any specific set of security properties by assembling the appropriate components. At the same time, users using a protocol designed with these security components will have the assurance that the protocol satisfies the security properties required for the electronic document transfer. The authors validate the approach by showing how the integrity property can be added to the HTTP protocol to design a security property-centric HTTPS and in this case an integrity-only HTTPS.

The covert channel over HTTP protocol

2016 ◽  
Author(s):  
Waldemar Graniszewski ◽  
Jacek Krupski ◽  
Krzysztof Szczypiorski
Keyword(s):  
Covert Channel ◽  
Http Protocol

scholarly journals Indonesia’s Public Application Programming Interface (API)

2019 ◽  
Vol 9 (2) ◽  
pp. 85-96
Author(s):  
Nur Aini Rakhmawati ◽  
Sayekti Harits Suryawan ◽  
Muhammad Ariful Furqon ◽  
Deny Hermansyah
Keyword(s):  
Web Service ◽  
Application Programming Interface ◽  
Data Format ◽  
Internet Users ◽  
The World ◽  
Application Programming ◽  
Open Api ◽  
Http Protocol ◽  
Access Data ◽  
Programming Interface

Indonesia places the fifth position of the most internet users in the world. Consequently, data transaction through HTTP protocol saw an increase. An open API can facilitate Indonesia's users to access data and build application through HTTP protocol. In this paper, 38 open APIs were investigated and classified by using five criteria, namely technology, authentication, scope, source, and approval request.   In general, the open APIs in Indonesia employ RESTful as a web service and JSON format as data format. In term of authentication,  API key is a common method in most of open APIs.

Sign in / Sign up

Export Citation Format

Share Document