# Peel the onion: Recognition of Android apps behind the Tor Network

**Authors:** Emanuele Petagna, Giuseppe Laurenza, Claudio Ciccotelli and, Leonardo Querzoni

arXiv: 1901.04434 · 2019-01-15

## TL;DR

This paper demonstrates that Android apps using Tor can be deanonymized through network traffic analysis, revealing a significant vulnerability with high accuracy, which has implications for user privacy and security.

## Contribution

It introduces a novel methodology for app deanonymization on Android via Tor, including a practical proof-of-concept and experimental validation.

## Key findings

- Achieved 97% accuracy in app deanonymization
- First work to show Android app deanonymization vulnerability on Tor
- Highlights privacy risks for Tor users on mobile devices

## Abstract

In this work we show that Tor is vulnerable to app deanonymization attacks on Android devices through network traffic analysis. For this purpose, we describe a general methodology for performing an attack that allows to deanonymize the apps running on a target smartphone using Tor, which is the victim of the attack. Then, we discuss a Proof-of-Concept, implementing the methodology, that shows how the attack can be performed in practice and allows to assess the deanonymization accuracy that it is possible to achieve. While attacks against Tor anonymity have been already gained considerable attention in the context of website fingerprinting in desktop environments, to the best of our knowledge this is the first work that highlights Tor vulnerability to apps deanonymization attacks on Android devices. In our experiments we achieved an accuracy of 97%.

## Full text

_Full body text omitted from this summary view._ Fetch the complete paper as Markdown: https://tomesphere.com/paper/1901.04434/full.md

## Figures

82 figures with captions in the complete paper: https://tomesphere.com/paper/1901.04434/full.md

## References

34 references — full list in the complete paper: https://tomesphere.com/paper/1901.04434/full.md

---
Source: https://tomesphere.com/paper/1901.04434