{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,8,2]],"date-time":"2025-08-02T17:27:13Z","timestamp":1754155633501,"version":"3.41.2"},"reference-count":12,"publisher":"Emerald","issue":"2","license":[{"start":{"date-parts":[[2013,6,7]],"date-time":"2013-06-07T00:00:00Z","timestamp":1370563200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.emerald.com\/insight\/site-policies"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2013,6,7]]},"abstract":"<jats:sec><jats:title content-type=\"abstract-heading\">Purpose<\/jats:title><jats:p>It is increasingly difficult to ignore the importance of anonymity on the internet. Tor has been proposed as a reliable way to keep our identity secret from governments and organizations. This research evaluates its ability to protect our activity on the Web.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-heading\">Design\/methodology\/approach<\/jats:title><jats:p>Using traffic analysis over ACK packets among others, fingerprints of websites can be created and later on used to recognise Tor traffic.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-heading\">Findings<\/jats:title><jats:p>Tor does not add enough entropy to HTTP traffic, which allows us to recognise the access to static websites without breaking Tor's cryptography.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-heading\">Research limitations\/implications<\/jats:title><jats:p>This work shows that the method presented behaves well with a limited set of fingerprints. Further research should be performed on its reliability with larger sets.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-heading\">Social implications<\/jats:title><jats:p>Tor has been used by political dissidents and citizens in countries without freedom of speech to access banned websites such as Twitter or Facebook. This paper shows that it might be possible for their countries to know what they have done.<\/jats:p><\/jats:sec><jats:sec><jats:title content-type=\"abstract-heading\">Originality\/value<\/jats:title><jats:p>This paper shows that while Tor does a good work keeping the content of our communication, it is weak protecting the identity of the website being accessed.<\/jats:p><\/jats:sec>","DOI":"10.1108\/imcs-01-2013-0004","type":"journal-article","created":{"date-parts":[[2013,7,25]],"date-time":"2013-07-25T14:11:49Z","timestamp":1374761509000},"page":"73-90","source":"Crossref","is-referenced-by-count":3,"title":["Fingerprinting Tor"],"prefix":"10.1108","volume":"21","author":[{"given":"Pablo","family":"Carballude Gonz\u00e1lez","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"140","reference":[{"key":"key2022030920050147300_b1","unstructured":"BBC News (2008), \u201cWikipedia child image censored\u201d, available at: http:\/\/news.bbc.co.uk\/2\/hi\/uk_news\/7770456.stm (accessed 7 October 2012).."},{"key":"key2022030920050147300_b3","unstructured":"Cheng, H. and Avnur, R. (1998), \u201cTraffic analysis of SSL encrypted web browsing\u201d, s.l.: s.n."},{"key":"key2022030920050147300_b6","doi-asserted-by":"crossref","unstructured":"Herrmann, D., Wendolsky, R. and Federrath, H. (2009), \u201cWebsite fingerprinting: attacking popular privacy enhancing technologies with the multinomial na\u00efve\u2010bayes classifier\u201d, CCSW'09: ACM Workshop on Cloud Computing Security, Chicago, IL, USA, 13 November, s.n., pp. 31\u201042.","DOI":"10.1145\/1655008.1655013"},{"key":"key2022030920050147300_b9","doi-asserted-by":"crossref","unstructured":"Maci\u00e1\u2010Fern\u00e1ndez, G., Wang, Y., Rodr\u00edguez\u2010G\u00f3mez, R. and Kuzmanovic, A. (2010), ISP\u2010Enabled Behavioral Ad Targeting Without Deep Packet Inspection, IEEE, Piscataway, NJ.","DOI":"10.1109\/INFCOM.2010.5461963"},{"key":"key2022030920050147300_b12","unstructured":"(The) New York Times (2011), \u201cChina creates new agency for patrolling the internet\u201d, available at: www.nytimes.com\/2011\/05\/05\/world\/asia\/05china.html (accessed 7 October 2012).."},{"key":"key2022030920050147300_b11","unstructured":"Project, T.T. (2011), \u201cNew blocking activity from Iran\u201d, available at: https:\/\/blog.torproject.org\/blog\/new\u2010blocking\u2010activity\u2010iran (accessed 7 October 2012)."},{"key":"key2022030920050147300_frd1","doi-asserted-by":"crossref","unstructured":"C\u00e1ceres, R., Douglis, F., Feldmann, A., Glass, G. and Rabinovich, M. (1998), \u201cWeb proxy caching: the devil is in the details\u201d, Performance Evaluation Review, Vol. 26, pp. 11\u201015.","DOI":"10.1145\/306225.306230"},{"key":"key2022030920050147300_frd2","doi-asserted-by":"crossref","unstructured":"Chaum, D.L. (1981), \u201cUntraceable electronic mail, return addresses, and digital pseudonyms\u201d, Communications of the ACM, Vol. 24 No. 2, pp. 84\u201090.","DOI":"10.1145\/358549.358563"},{"key":"key2022030920050147300_frd3","doi-asserted-by":"crossref","unstructured":"Dusi, M., Gringoli, F. and Salgarelli, L. (2008), A Preliminary Look at the Privacy of SSH Tunnels, IEEE, St Thomas.","DOI":"10.1109\/ICCCN.2008.ECP.122"},{"key":"key2022030920050147300_frd4","doi-asserted-by":"crossref","unstructured":"Freedman, M.J. and Morris, R. (2002), Tarzan: A Peer\u2010to\u2010Peer Anonymizing Network Layer, ACM, New York, NY.","DOI":"10.1145\/586110.586137"},{"key":"key2022030920050147300_frd5","doi-asserted-by":"crossref","unstructured":"Hamzeh, K., Pall, G., Verthein, W., Taarud, J., Little, W. and Zorn, G. (1999), Point\u2010to\u2010Point Tunneling Protocol, RFC, available at: www.faqs.org\/rfcs\/rfc2637.html (accessed 7 October 2012).","DOI":"10.17487\/rfc2637"},{"key":"key2022030920050147300_frd6","unstructured":"Marlinspike, M. (2009), New Tricks For Defeating SSL in Practice, BlackHat, Las Vegas, NV."}],"container-title":["Information Management &amp; Computer Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/www.emeraldinsight.com\/doi\/full-xml\/10.1108\/IMCS-01-2013-0004","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/IMCS-01-2013-0004\/full\/xml","content-type":"application\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/www.emerald.com\/insight\/content\/doi\/10.1108\/IMCS-01-2013-0004\/full\/html","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,7,24]],"date-time":"2025-07-24T21:50:43Z","timestamp":1753393843000},"score":1,"resource":{"primary":{"URL":"http:\/\/www.emerald.com\/ics\/article\/21\/2\/73-90\/180530"}},"subtitle":[],"editor":[{"given":"Veniamin","family":"Ginodman","sequence":"first","affiliation":[],"role":[{"role":"editor","vocabulary":"crossref"}]}],"short-title":[],"issued":{"date-parts":[[2013,6,7]]},"references-count":12,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2013,6,7]]}},"alternative-id":["10.1108\/IMCS-01-2013-0004"],"URL":"https:\/\/doi.org\/10.1108\/imcs-01-2013-0004","relation":{},"ISSN":["0968-5227"],"issn-type":[{"type":"print","value":"0968-5227"}],"subject":[],"published":{"date-parts":[[2013,6,7]]}}}