Title :
Towards Optimized TCP/IP Covert Channels Detection, IDS and Firewall Integration
Author :
Hammouda, Senda ; Maalej, Lilia ; Trabelsi, Zouheir
Author_Institution :
SUP´´COM, Tunis
Abstract :
Covert channels exist in most communications systems and allow individuals to communicate truly undetectable and exchange hidden information. That´s why their detection seems to be a big deal for security systems. However, till now, security systems do not include dedicated processes for covert channel detection. In this paper, we first propose mechanisms to detect common covert channels. Then, within a whole security system, we propose an optimized order regarding the execution of the three major security processes: Firewall, Intrusion Detection System (IDS) and Covert Channel Detection System (CCDS). It will be demonstrated that the proposed order would allow security systems to offer better processing performances.
Keywords :
computer networks; security of data; transport protocols; communications systems; covert channel detection system; exchange hidden information; firewall integration; intrusion detection system; optimized TCP/IP protocols; security systems; undetectable hidden information; Charge coupled devices; Communication channels; Communication system security; Information security; Intrusion detection; Null value; Protocols; Routing; TCPIP; Testing;
Conference_Titel :
New Technologies, Mobility and Security, 2008. NTMS '08.
Conference_Location :
Tangier
Print_ISBN :
978-1-42443547-0
DOI :
10.1109/NTMS.2008.ECP.101
