Peeling the Onion - Using ML to peek inside ToR and VPN traffic without decryption. :: BSides Bristol 2025

Peeling the Onion - Using ML to peek inside ToR and VPN traffic without decryption.
.ical
2025-09-05 10:45–11:25, Track 2

Learn how Machine Learning can be used to de-anonymise VPN and ToR traffic without decryption with a technique know as Website Fingerprinting Attacks.

This talk will summarise the industry state of the art research on the field of Website fingerprinting, as well as present my own findings from my research.

The talk will go over the ML Ops models used in this approach, covering data collection, model architectures, and deployment scenarios. It will also explain the practical limitations of the approach to help inform threat models.

Mike K

Mike is currently head of cybersecurity operations at Leonardo UK. He has an MSc in Cyber Security from the University if the West of England and is a military veteran of UK cyber operations. Mike has been building and experimenting with AL and ML models since 2017. He previously spoke at B Sides Cheltenham in 2024 on using agents AI to automate Security Operations. Outside of work and tech, he's a keen rock climbing and fell runner.

Peeling the Onion - Using ML to peek inside ToR and VPN traffic without decryption. .ical 2025-09-05 10:45–11:25, Track 2

Peeling the Onion - Using ML to peek inside ToR and VPN traffic without decryption.
.ical
2025-09-05 10:45–11:25, Track 2