{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,30]],"date-time":"2026-06-30T05:44:53Z","timestamp":1782798293219,"version":"3.54.5"},"reference-count":51,"publisher":"IEEE","license":[{"start":{"date-parts":[[2026,5,18]],"date-time":"2026-05-18T00:00:00Z","timestamp":1779062400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2026,5,18]],"date-time":"2026-05-18T00:00:00Z","timestamp":1779062400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/100000001","name":"National Science Foundation","doi-asserted-by":"publisher","id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2026,5,18]]},"DOI":"10.1109\/infocom59046.2026.11571371","type":"proceedings-article","created":{"date-parts":[[2026,6,29]],"date-time":"2026-06-29T19:38:15Z","timestamp":1782761895000},"page":"1-10","source":"Crossref","is-referenced-by-count":0,"title":["Invisible Adversaries: A Systematic Study of Session Manipulation Attacks on VPNs"],"prefix":"10.1109","author":[{"given":"Yuxiang","family":"Yang","sequence":"first","affiliation":[{"name":"Tsinghua University,Department of Computer Science and Technology &amp; BNRist"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Ao","family":"Wang","sequence":"additional","affiliation":[{"name":"Southeast University,School of Cyber Science and Engineering"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Xuewei","family":"Feng","sequence":"additional","affiliation":[{"name":"Tsinghua University,Department of Computer Science and Technology &amp; BNRist"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Qi","family":"Li","sequence":"additional","affiliation":[{"name":"Tsinghua University,Institute for Network Sciences and Cyberspace &amp; BNRist"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Ke","family":"Xu","sequence":"additional","affiliation":[{"name":"Tsinghua University,Department of Computer Science and Technology &amp; BNRist"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"263","reference":[{"key":"ref1","article-title":"Vpn: A decade\u2019s worth of growth","author":"Matic"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2022.24285"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/SP.1982.10014"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1145\/288090.288119"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1145\/2810103.2813707"},{"key":"ref6","first-page":"567","article-title":"The dangers of key reuse: Practical attacks on IPsec IKE","volume-title":"Proc. 27th USENIX Security Symp","author":"Felsch"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1515\/popets-2015-0006"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1145\/2987443.2987471"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1145\/3278532.3278570"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2022.24285"},{"key":"ref11","first-page":"5719","article-title":"Bypassing tunnels: Leaking vpn client traffic by abusing routing tables","volume-title":"Proc.USENIX Security Symp","author":"Xue"},{"key":"ref12","first-page":"3129","article-title":"Blind in\/on-path attacks and applications to vpns","volume-title":"Proc. 30th USENIX Security Symposium","author":"Tolley"},{"key":"ref13","article-title":"Tunnelvision: A local network vpn leaking technique that affects all routing-based vpns","author":"Cronce"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.56553\/popets-2024-0070"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2012.29"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1145\/2445566.2445568"},{"key":"ref17","first-page":"209","article-title":"Off-path tcp exploits: Global rate limit considered dangerous","volume-title":"25th USENIX Security Symposium","author":"Cao"},{"key":"ref18","first-page":"1581","article-title":"Off-path tcp exploit: How wireless routers can jeopardize your secrets","volume-title":"USENIX Security Symp","author":"Chen"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1145\/3372297.3417884"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-33167-1_16"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/CNS.2013.6682711"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2013.130"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1145\/3372297.3417280"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1145\/3460120.3486219"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2024.23419"},{"key":"ref26","article-title":"The best vpn services of 2024","author":"Migliano"},{"key":"ref27","article-title":"NAT Behavioral Requirements for TCP","author":"Ford","year":"2008"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/SP46214.2022.9833701"},{"key":"ref29","article-title":"State of ip spoofing"},{"key":"ref30","volume-title":"NAT Denial of Service: An Analysis of Translation Table Behavior on Multiple Platforms","author":"Winemiller","year":"2012"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1109\/CANDAR.2018.00024"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.2197\/ipsjjip.30.486"},{"key":"ref33","article-title":"netfilter: conntrack: tcp: only close if rst matches exact sequence"},{"key":"ref34","article-title":"Improving TCP\u2019s Robustness to Blind In-Window Attacks","author":"Stewart","year":"2010"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.17487\/RFC793"},{"key":"ref36","first-page":"2619","article-title":"Off-path network traffic manipulation via revitalized icmp redirect attacks","volume-title":"Proc. 31st USENIX Security Symp","author":"Feng"},{"key":"ref37","article-title":"Investigating surfshark and nord-vpn with ja4t","author":"Althouse"},{"key":"ref38","article-title":"Multi-part tcp connection over vpn","author":"Norbutas"},{"key":"ref39","article-title":"Protonvpn tcp accleration syn+ack spoofing analysis"},{"key":"ref40","article-title":"Increase vpn speeds by up to 400% with vpn accelerator","author":"Yen"},{"key":"ref41","article-title":"Usage statistics of default protocol https for websites"},{"key":"ref42","article-title":"Limiting maximum connections using iptables","author":"Majumder"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.1145\/3407023.3407029"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1145\/637201.637243"},{"key":"ref45","doi-asserted-by":"publisher","DOI":"10.1109\/ICC.2012.6364596"},{"key":"ref46","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2005.26"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2025.230972"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2025.230305"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1109\/TON.2025.3586020"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1109\/SP46215.2023.10179441"},{"key":"ref51","first-page":"577","article-title":"Poison over troubled forwarders: A cache poisoning attack targeting DNS forwarding devices","volume-title":"Proc. 29th USENIX Security Symp","author":"Zheng"}],"event":{"name":"IEEE INFOCOM 2026 - IEEE Conference on Computer Communications","location":"Tokyo, Japan","start":{"date-parts":[[2026,5,18]]},"end":{"date-parts":[[2026,5,21]]}},"container-title":["IEEE INFOCOM 2026 - IEEE Conference on Computer Communications"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/11571071\/11571169\/11571371.pdf?arnumber=11571371","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,6,30]],"date-time":"2026-06-30T05:16:51Z","timestamp":1782796611000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/11571371\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,5,18]]},"references-count":51,"URL":"https:\/\/doi.org\/10.1109\/infocom59046.2026.11571371","relation":{},"subject":[],"published":{"date-parts":[[2026,5,18]]}}}