Collaborative detection of Covert Storage Channels
Collaborative detection of Covert Storage Channels
This paper describes a new collaborative approach to detect two different types of Covert Storage Channels (CSCs) that utilize TCP flag and packet sequence number in network packets. Tested in Software-defined networking (SDN), a multistage detection mechanism coordinates monitors, correlators and SDN controllers to first quickly alert traffic anomalies, then to conduct on demand selective deep-inspection of network packets to reduce false alerts, and finally to reveal CSCs and conspirators as needed. SDN provides a test-bed of novel network configuration and applications to make it easier to access and inspect network traffic and manages the network in a flexible and dynamic fashion. The paper presents results from our experimentation of this approach on Mininet, an SDN simulation environment.
- Johns Hopkins University United States
selected citations These citations are derived from selected sources.This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).1 popularity This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.Average influence This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).Average impulse This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.Average
Citations provided by BIP!Popularity provided by BIP!