"Our experiments revealed that the packets carrying the encrypted type-1 and type-2 JSON files can be distinguished from other packets by their SSL record lengths which are visible even from encrypted traffic,"
So surely it's easy to defeat by enforcing a standard packet size for encrypted packets, stuffing with dummy bits if required? Sure it reduces network efficiency but that shouldn't be a major problem.
I'm not sure exactly how encryption on video streaming works, but one thing that might happen is that if the user is sending binary choice JSON files, and each user session uses the same encryption key, then would identical JSON source data result in identical encrypted packets that could be identified? Or is teh encryption a bit more clever than that?
Biting the hand that feeds IT
