Website Fingerprinting (WF) attacks exploit patterns in encrypted traffic to infer the websites visited by users, posing a serious threat to anonymous communication systems. Although recent WF techniques achieve over 90% accuracy in controlled experimental settings, most studies remain confined to single scenarios, overlooking the complexity of real-world environments. This paper presents the first systematic and comprehensive evaluation of existing WF attacks under diverse realistic conditions, including defense mechanisms, traffic drift, multi-tab browsing, early-stage detection, open-world settings, and few-shot scenarios. Experimental results show that many WF techniques with strong performance in isolated settings degrade significantly when facing other conditions. Since real-world environments often combine multiple challenges, current WF attacks are difficult to apply directly in practice. This study highlights the limitations of WF attacks and introduces a multidimensional evaluation framework, offering critical insights for developing more robust and practical WF attacks.
翻译:网站指纹攻击利用加密流量中的模式推断用户访问的网站,对匿名通信系统构成严重威胁。尽管现有技术在受控实验环境中能达到超过90%的准确率,但多数研究仍局限于单一场景,忽视了真实环境的复杂性。本文首次对现有网站指纹攻击在多样化现实条件下进行了系统全面的评估,包括防御机制、流量漂移、多标签页浏览、早期检测、开放世界设置以及少样本场景。实验结果表明,许多在孤立环境中表现优异的网站指纹技术,在面对其他条件时性能显著下降。由于真实环境通常包含多重挑战,当前网站指纹攻击难以直接应用于实践。本研究揭示了网站指纹攻击的局限性,并提出了多维评估框架,为开发更鲁棒、更实用的网站指纹攻击提供了重要见解。