Title :
Enumerative covert channel audit model in MLS networks
Author :
Zhiyong, Cai ; Youli, Qu ; Fei, Li ; Changxiang, Shen
Author_Institution :
Coll. of Comput. Sci., Zhejiang Univ.
Abstract :
A network covert channel is a mechanism that can be used to leak information across a network in violation of a security policy. In this paper, we first describe an enumerative covert channel existing in MSL networks, and then we propose a model for detecting it. This model caches a certain percentage of static enumerative dataset in advance and a certain percentage of dynamic dataset on the fly to audit the channel, it also inserts bogus packets and disorders query sequence to obscure a Trojan in high security network from identifying partners in low security network. We conclude that the model can audit enumerative channel effectively according to calculation and some experiments.
Keywords :
computer networks; invasive software; telecommunication channels; telecommunication security; MLS network; Trojan; dynamic dataset; enumerative covert channel audit model; multilevel security network; network covert channel; network security policy; static enumerative dataset; Computer networks; Computer science; Data security; Educational institutions; Information technology; Layout; Multilevel systems; Phase detection; Telecommunication network reliability; Uniform resource locators;
Conference_Titel :
Signal Processing, 2008. ICSP 2008. 9th International Conference on
Conference_Location :
Beijing
Print_ISBN :
978-1-4244-2178-7
Electronic_ISBN :
978-1-4244-2179-4
DOI :
10.1109/ICOSP.2008.4697768
