Countering adaptive network covert communication with dynamic wardens
Future Generation Computer Systems. Bd. 94. Elsevier BV 2019 S. 712 - 725
Erscheinungsjahr: 2019
ISBN/ISSN: 0167-739X
Publikationstyp: Zeitschriftenaufsatz
Sprache: Englisch
Doi/URN: 10.1016/j.future.2018.12.047
Geprüft | Bibliothek |
Inhaltszusammenfassung
Network covert channels are hidden communication channels in computer networks. They influence several factors of the cybersecurity economy. For instance, by improving the stealthiness of botnet communications, they aid and preserve the value of darknet botnet sales. Covert channels can also be used to secretly exfiltrate confidential data out of organizations, potentially resulting in loss of market/research advantage. Considering the above, efforts are needed to develop effective countermea...Network covert channels are hidden communication channels in computer networks. They influence several factors of the cybersecurity economy. For instance, by improving the stealthiness of botnet communications, they aid and preserve the value of darknet botnet sales. Covert channels can also be used to secretly exfiltrate confidential data out of organizations, potentially resulting in loss of market/research advantage. Considering the above, efforts are needed to develop effective countermeasures against such threats. Thus in this paper, based on the introduced novel warden taxonomy, we present and evaluate a new concept of a dynamic warden. Its main novelty lies in the modification of the warden’s behavior over time, making it difficult for the adaptive covert communication parties to infer its strategy and perform a successful hidden data exchange. Obtained experimental results indicate the effectiveness of the proposed approach. Highlights • Addresses the problem of increasingly sophisticated network covert channels. • Presents a comprehensive taxonomy for wardens (covert channel countermeasures). • Introduces the first warden to counter adaptive network covert channels. • Contains a detailed evaluation of the presented warden’s effectiveness and performance.» weiterlesen» einklappen
Autoren
Klassifikation
DFG Fachgebiet:
Informatik
DDC Sachgruppe:
Informatik
Verknüpfte Personen
- Steffen Wendzel
- ehemaliger Wissenschaftlicher Leiter
(Zentrum für Technologie und Transfer | ZTT)