Crafting web counters into covert channels

Xiapu Luo, Edmond W.W. Chan, Kow Chuen Chang

Research output: Chapter in book / Conference proceedingChapter in an edited book (as author)Academic researchpeer-review

2 Citations (Scopus)

Abstract

Almost all the previously proposed network storage channels write covert messages in the packets' protocol fields. In contrast, we present in this paper a new network storage channel WebShare that uses the plentiful, public Web counters for storage. Therefore, the physical locations of the WebShare encoder and decoder are not restricted to a single path. To make WebShare practical, we have addressed a number of thorny issues, such as the "noise" introduced by other legitimate Web requests, and synchronization between encoder and decoder. For the proof-of-concept purpose, we have experimented a WebShare prototype in the Internet, and have showed that it is practically feasible even when the Web counter and the encoder/decoder are separated by more than 20 router hops.
Original languageEnglish
Title of host publicationNew Approaches for Security, Privacy and Trust in Complex Environments
Subtitle of host publicationProceedings of the IFIP TC-11 22nd International Information Security Conference (SEC 2007), 14-16 May 2007, Sandton, S. Africa
Pages337-348
Number of pages12
DOIs
Publication statusPublished - 26 Nov 2007

Publication series

NameIFIP International Federation for Information Processing
Volume232
ISSN (Print)1571-5736

ASJC Scopus subject areas

  • Information Systems and Management

Cite this