Detailedseverity: LowDraft

CAPEC-621Analysis of Packet Timing and Sizes

Abstraction
Detailed
Status
Draft
Severity
Low

Description

An attacker may intercept and log encrypted transmissions for the purpose of analyzing metadata such as packet timing and sizes. Although the actual data may be encrypted, this metadata may reveal valuable information to an attacker. Note that this attack is applicable to VOIP data as well as application data, especially for interactive apps that require precise timing and low-latency (e.g. thin-clients).

Related weaknesses· 1

CWE-201

Related attack patterns· 1

CAPEC-189 (ChildOf)

Exploits1

TypeTargetConfidenceTier
WeaknessInsertion of Sensitive Information Into Sent Datacwe-201100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CAPEC
Protocol Analysis
CAPEC
Sniffing Network Traffic
CAPEC
Cryptanalysis of Cellular Encryption
CAPEC
Protocol Manipulation
CAPEC
Interception
CAPEC
Eavesdropping
Sourced from MITRE CAPEC. Curated by Adam Lundqvist, SQUR.