What Is Traffic Analysis?
Traffic analysis examines patterns in communications—who talks to whom, when, how often, and how much data flows—without reading the content. Even fully encrypted traffic reveals significant information.
Key Insight: "We kill people based on metadata." — Former NSA Director Michael Hayden. Metadata is powerful enough for targeting decisions.
What Traffic Analysis Reveals
Social Networks
Who you communicate with
RelationshipsActivity Patterns
When you're active online
BehavioralLocation Data
IP addresses and geographic patterns
GeographicUsage Patterns
Data volume indicates activity type
InferenceAnalysis Techniques
Common Methods
Packet Timing Analysis - Correlate entry/exit points Volume Analysis - Identify activity types by data size Pattern Recognition - Detect regular communication habits Statistical Fingerprinting - Identify websites by traffic pattern Graph Analysis - Map relationship networks
Countermeasures
- Tor with consistent cover traffic
- Mix networks and anonymous remailers
- Constant-rate data transmission (padding)
- Randomize communication timing
- Use decentralized protocols
- Avoid distinctive usage patterns