Covert Channels and Countermeasures in Computer Network Protocols[Reprinted from IEEE Communications Surveys and Tutorials]
Zander, S.
Armitage, G.
Branch, P.
Univ. of Technol. Melbourne, Melbourne;
This paper appears in: Communications Magazine, IEEE
Publication Date: December 2007
Volume: 45,
Issue: 12
On page(s): 136-142
Location: Toronto, Ont., Canada,
ISSN: 0163-6804
INSPEC Accession Number: 9699677
Digital Object Identifier: 10.1109/MCOM.2007.4395378
Current Version Published: 2007-12-10
Abstract
Covert channels are used for the secret transfer of information. Encryption only protects communication from being decoded by unauthorized parties, whereas covert channels aim to hide the very existence of the communication. Initially, covert channels were identified as a security threat on monolithic systems such as mainframes. More recently, focus has shifted toward covert channels in computer network protocols. The huge amount of data and large number of different protocols in the Internet is ideal as a high-bandwidth vehicle for covert communication. This article provides an overview of the existing techniques for creating covert channels in widely deployed network protocols, and common methods for their detection, elimination, and capacity limitation.
Index
Terms
Available to subscribers and IEEE members.
References
Available to subscribers and IEEE members.
Citing Documents
Available to subscribers and IEEE members.
Cart
