Logo Politecnico di Torino
ITEN
WebThesis

Packet-Level eBPF Traffic Obfuscation for QUIC to Mitigate Website Fingerprinting

Wenhui Li

Packet-Level eBPF Traffic Obfuscation for QUIC to Mitigate Website Fingerprinting.

Rel. Alessio Sacco, Federico Rinaudi, Guido Marchetto. Politecnico di Torino, Corso di laurea magistrale in Cybersecurity, 2026

[thumbnail of Tesi_di_laurea]
Preview
 PDF (Tesi_di_laurea) - Tesi
Licenza: Creative Commons Attribution Non-commercial No Derivatives.
Download (7MB) | Preview

Abstract

Website Fingerprinting (WF) shows that encrypting content is not enough to protect browsing privacy. A passive observer can still infer visited sites by analyzing traffic patterns such as packet sizes, packet timing, direction, and burst structure. Recent deep learning methods make this inference easier and more robust, as they can learn directly from sequences of sizes and inter arrival times even under noisy network conditions. With the widespread use of QUIC and HTTP/3, these patterns remain observable at the network level and therefore continue to be a relevant side channel. This thesis presents a client-only countermeasure for QUIC and HTTP/3 traffic implemented with eBPF.

The system operates at packet level and requires no changes to applications or to the QUIC stack

Relatori

Alessio Sacco, Federico Rinaudi, Guido Marchetto

Anno Accademico

2025/26

Tipo di pubblicazione

Elettronica

Numero di pagine

60

Corso di laurea

Corso di laurea magistrale in Cybersecurity

Classe di laurea

Nuovo ordinamento > Laurea magistrale > LM-32 - INGEGNERIA INFORMATICA

URI

https://webthesis.biblio.polito.it/id/eprint/39711
Modifica (riservato agli operatori) Modifica (riservato agli operatori)
Logo Politecnico di Torino