Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Research paper on covert channels

from [matthijs] Network Security [Permanent Link]
Subject: Research paper on covert channels
Date: 23 Feb 2006 12:35:52 -0000 
As part of our MSc study on System and Network Engineering at the University of 
Amsterdam, NL, Marc Smeets and I have done research on covert channels. 

Abstract:

"Covert channels have been topic of discussion within both academic and 
non-academic communities for more than two decades. Traditionally, research on 
this topic focussed on storage and timing channels within singular systems. As 
more systems became interconnected in the last decade, the scope expanded to 
network-based covert channels. Numerous designs and implementations of such 
covert channels have been suggested, altogether leaving the world with valuable 
pieces of knowledge scattered around the Internet. By aggregating the 
essentials and representing them in a structured format, we attempt to provide 
clarity on the current state of research. In addition, a (non-exhaustive) 
overview of contemporary trends in network-based covert channels is given, 
explaining common channels within IP, TCP, ICMP, HTTP and DNS. Lastly, several 
implementations were evaluated to gain insight in their efficiency and 
performance, and the influences to which they're prone. We conclude that they p
 ose a security issue that needs proper attention when defining and enforcing 
security policies, and expect more sophisticated covert channels to appear in 
the future."

The paper is available at the following URL:

http://www.os3.nl/~mrkoot/courses/RP1/researchreport_2006-02-15_final2.pdf

Feedback is more than welcome!

(I posted to bugtraq since the secpapers list appears rather dormant)
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Research paper on covert channels, matthijs <=
Previous by Date:  Re: PHP as a secure language? PHP worms? [was: Re: new linux malware], Matthew Schiros
Next by Date:  Re: [Full-disclosure] Quarantine your infected users spreading malware, Dana Hudes
Previous by Thread:  [Full-disclosure] WebEx, Terminal Entry
Next by Thread:  [Full-disclosure] [USN-258-1] PostgreSQL vulnerability, Martin Pitt
Indexes:  [Date] [Thread] [Top] [All Lists]