摘要
隐通道的构建和检测方法一直以来都是信息安全领域内研究和探索较多的话题,而利用网络协议进行隐通道构建是一种重要的隐通道构建方法。文中对利用网络协议进行隐通道构建的方法进行了总结和归纳,提出了网络协议对等元素和类对等元素的概念,并分别对常见网络协议中对等元素、类对等元素的存在以及利用其进行隐通道的构建方法进行了阐述,并给出了实验仿真结果。最后针对单协议隐通道的弊端,阐述了多层协议协同式增强构建隐通道的方法。实验结果表明,基于网络协议中对等元素编码的隐通道具有较高的信道容量,且具有应用范围广、难以被检测的优点。
Covert channel construction and detection method has been a hotly-discussed topic in the information security field. Using the network protocols to construct covert channel is an important method. The methods of using the Interact protocols to construct covert channel are summarized and concluded, and give the concept of the coordinate element and analogous coordinate element, and introduces the method of constructing the covert channel with coordinate element and analogous coordinate element encoding, and then show the simulation results. Finally,it also explores how to improve the construction of covert channel with the multi-protocol method. Experimen- tal results show that this method has a higher channel capacity, a wide range of applications, and is difficult to be detected.
出处
《计算机技术与发展》
2015年第12期118-122,共5页
Computer Technology and Development
基金
国家自然科学基金资助项目(60973140)
关键词
隐通道
TCP/IP
对等元素
类对等元素
二进制编码
全排列编码
convert channel
TCP/IP
coordinate element
analogous coordinate element
binary encoding
full permutation encoding