How to defend against network traffic pattern correlation attacks?

If i am chaining multiple VPN’s and possibly running through Tor as well, network correlation attacks can be performed against me to try to locate my position. If my network spikes a download for 40MB/s for 3 secounds, governments with collectors accross the world would be able to see this spike and correlate me with my VPN chains.

Is there a way to defend against this?

I would assume if a tool was made to generate random dummy traffic each at layer of VPNs, then they would not be able to correlate as well. Does such a tool exists?

Replace pattern with the number of matches so far

I want to replace a n-th pattern match in an expression with n. This is a very simple task, though it appears very hard to find an elegant implementation.

For example, with input

inp = {x, y, z, x, y, x, x, z} 

I wish to compute, replacing pattern x,

{1, y, z, 2, y, 3, 4, z} 

Preferably, I’d like to access the index n in the replacement rule. E.g. something like

Func[inp, x :> Symbol[m<>ToString@#]& ]  >>> {m1, y, z, m2, y, m3, m4, z} 

How can I achieve this? It’s trivial using Count and a For loop, but is very un-stylistic.

Proving a pattern exist in a string without revealing where

Some time ago i read the following problem (i don’t remember the article from which i read it from) :

“Suppose you are given a picture where the goal is to find waldo (from the game where is waldo), you search for a bit and don’t find him so you become suspicious of the fact that waldo actually is in the picture, how can one prove to you that waldo indeed is without revealing where ? Well one can just take a very big sheet of paper, bore a hole inside it and place this sheet of paper on top of your picture so that waldo’s head appears inside the hole.”

My question is how could one transfer this idea to a mathematical concept ? One idea would be something along the lines of :

  • Let L be some language in complexity class C

  • given $ a_1 , a_2 , … a_n$ can one prove to you that there is a $ i$ for which $ a_i \in L$ without revealing for which $ i$ it stands

However this falls short as it stands right now because one can just feed the same input $ a$ n times for which it wishes to know appartenance to class L. So we either need to consider specific complexity class C for which the problem becomes interesting or loosen the condition of “non disclosure”, and it doesn’t seem that obvious. Or we could just change paradigm, my question is just how to convert the waldo idea to a computationnal model, i suspect the approach i gave isn’t the right one.

Password Pattern in ML

Trying to figure out the patterns of passwords. I’m new to ML, but was inspired by PassGan, a ML tool that generates sample passwords. The likelihood is low enough that it’s not very useful for password cracking, but I’d like to take the technique and use it for password discovery.

My intention is to train a model to understand what a password is, then compare that against words found on services (Slack, File Shares, etc.) to detect instances of people being sloppy and leaving passwords where they shouldn’t be.

My core assumptions are that passwords are far from random, and if analyzed appropriately many share a common pattern(s). This pattern could be used to identify and hopefully eradicate poor operational security practices.

Ideally, I’d like to choose something that evaluates words and provides a probability of that word being a password, then given the likely hood, I could have the application make some kind of a decision.

Is there an algorithm or model that works well for this kind of task? It’s single dimensional data, I’d assume unsupervised learning is really the only approach.

Is Gmail Undo pattern enough for bulk mailing? What are the better alternatives?

We are in the early process of creating a mail client that would send out email campaigns to thousands of users (Mailchimp would be a similar product to compare) There are ideas and opinions, and one of them is adding an undo options to the mailing.

The owner of this approach convinced that this would raise the confidence level of the users, I’m defending an opposing idea which is adding an extra step that would review the mail content and recipients and ask for final approval.

While my solution adding extra friction to the flow, it also adds a higher level of confidence to the user’s activities.

Now everything above is assumptions and we will test these with users but I would like to hear more about the subject, especially the personal opinions.

I use Gmail every day and personally seeing that undo functionality adding more stress in my life. It happened once or twice that I undo the email and edited a few details, but if I couldn’t it wouldn’t be a disaster either.

On the other hand, I think, when a user sends a bulk mail, the user needs a better understanding of what are she/she about to do.

What are your thoughts? Are there other alternatives?

PS: I read already this question about the same functionality, while I understand the assumptions here I would like to hear more.

Can we use different form pattern based on the context in a single app?

I am using a right aligned label form for web app (considering the long nature of the form avoided top aligned label). However can I switch to top aligned label if my form is short e.g Signin/up page? Do I have to maintain the same styling for the mobile app as well? As I can clearly see, the right aligned label will be a very bad choice for the mobile. enter image description here

What is way best UI pattern for a multi-level assignment?

I’ve made the following layout in hopes of helping the user perform a multi-level assignment interaction more efficiently, but I worry that amount of the data displayed might be information overload.

As seen below:

Current Design

Let’s say that there are heaps of records, and for each record: there can be multiple sections, for each section: 20-50 modules, and for each module there would be a 3 level assignment for either a group of users or just a specific user only.

Best UI pattern to allow the user to assign 1 level nested items to two groups

My issue is something similar to this one – Best UI pattern for letting a user assign items to groups

I am looking for a good UI design for mapping items between 2 groups (only one-to-one mapping). These items can be under a parent or by itself. I thought of drag-and-drop/ having checkboxes (or switch like) to turn on for any one group.

Items Group 1 Group 2

Item A
Item A1 checkbox checkbox

Item B checkbox checkbox

What’s the name for the notification pattern: waiting for the user to respond to a notification before sending the next one?

Some websites (e.g. some forums) send notifications like this:

  1. User asks multiple questions on the site
  2. Other users respond to the questions
  3. The website only notifies the user once (that there has been some activity since his last interaction with the site)
  4. The user logs into the site or interacts with the site
  5. More activities happen that the user should be notified of
  6. The website sends another single notification to the user

In short instead of sending one notification per each activity and potentially overwhelming or spamming the user, the user is only sent one notification and the system waits for the user to have an interaction with the site before sending the user another notification.

Is there a name for this pattern?