| 8 | 0 | 0 |
 Reads |
 Downloads |
 Citas |
In allusion to the problems existing in the design of existing covert channels, such as the success rate of secret information recovery being easily affected by various factors, the inability of the receiver and the sender to interact continuously, and poor robustness, a method of covert transmission channel construction based on the IP protocol and using the TCP protocol is proposed, and two implementation approaches are designed respectively: static and dynamic. In both methods, the IP protocol and TCP protocol are used to transmit secret information, verify it by means of built⁃in check algorithms, and restore the network quadruple based on the underlying logic, so as to realize continuous interaction between the sender and the receiver. The dynamic method can adjust the storage capacity of secret information in a single data packet in real time according to network conditions, breaking the traditional fixed ⁃ capacity transmission mode and increasing the difficulty for detectors to restore the secret information. The propose method can provide new ideas for the construction and implementation of covert channels.
[1] 刘洪亮,杨志茹 . 信息安全技术[M]. 北京:人民邮电出版社,2019.
[2] 张卫明,田辉 . 信息隐藏技术及应用[J]. 网信军民融合,2017(6):75⁃77.
[3] ISO/IEC 15408. Information technology security techniques evaluation criteria for IT security [S]. Geneva: ISO/IEC, 2009.
[4] GB 17859—1999 计算机信息系统 安全保护等级划分准则[S].
[5] 唐作吟,杨宗凯,谭运猛,等 .互联网协议中信息隐藏技术的研究[J].计算机应用研究,2003,20(8):14⁃16.
[6] Trabelsi Z, Jawhar I. Covert file transfer protocol based on the IP record route option [J]. Journal of Information Assurance and Security, 2010, 5(1): 64⁃73.
[7] Wendzel S, Zander S, Fechner B, et al. A pattern⁃based survey and categorization of network covert channel techniques [J]. ACM Computing Surveys, 2015, 47(3): 50⁃51.
[8] Trabelsi Z, Jawhar I. Messaging over Ipv6 destination options [EB/OL]. [2025⁃07⁃11]. http://grayworld.net/papers/messip6.txt.
[9] Dyatlov A, Castro S. Exploitation of data streams authorized by a network access control system for arbitrary data transfers: tunneling and covert channels overthe http protocol [R]. Technical Report, Gray⁃World.net, 2005.
[10] Murdoch S J, Lewis S. Embedding covert channels into Tcp/Ip [C]// Proceedings of the Information Hiding Conference 2005. Berlin: Springer, 2005: 247⁃261.
[11] Girling C G. Covert channels in Lan's [J]. IEEE Transactions on Software, 1987, 13(2): 292⁃296.
[12] Padlipsky M A, Snow D W, Karger P A. Limitations of end⁃to⁃end encryption in secure computer networks [EB/OL]. [2025 ⁃01 ⁃ 07]. http://stinet. dtic. mil/cgibin/GetTRDoc? AD=A059221&Location= U2&doc=GetTRDoc.pdf.
[13] Cabuk S, Brodley C E, Shields C. Ip covert timing channels: design and detection [C]// Proceedings of the 11th ACM Conference on Computer and Communications Security (CCS). New York: ACM, 2004: 178⁃187.
[14] Berk V, Giani A, Cybenko G. Detection of covert channel encoding in network packet delays [EB/OL]. [2025 ⁃ 02 ⁃ 17]. http://www.ists.dartmouth.edu/library/149.pdf.
[15] Kundur D, Ahsan K. Practical internet steganography: data hiding in IP [EB/OL]. [2025 ⁃ 02 ⁃ 12]. chrome ⁃ extension:// bnjoienjhhclcabnkbhhfndec oipmcdg/ background/jgpdf/layout/index. html? file=https://www. comm. utoronto. ca/dkundur//
pub_pdfs/KunAhsTXSecWrkshp03.pdf.
[16] Zseby T, Vázquez F I, Bernhardt V, et al. A network steganography lab on detecting TCP/IP covert channels [J]. IEEE Transactions on Education, 2016, 59(3): 224⁃232.
[17] Rezaei F, Hempel M, Shrestha P L, et al. Achieving robustness and capacity gains in covert timing channels [C]// 2014 IEEE International Conference on Communications (ICC). [S.l.]: IEEE, 2014: 969⁃974.
[18] Mazurczyk W, Lubacz J, Szczypiorski K. On steganography in lost audio packets [J]. Security & Communication Networks, 2015, 7(12): 2602⁃2615.
[19] Mazurczyk W. Lost audio packets steganography: the first practical evaluation [J]. Security and Communication Networks, 2012, 5(12): 1394⁃1403.
[20] Fraczek W, Mazurczyk W, Szczypiorski K. Multi ⁃ level steganography: improving hidden communication in networks [J]. Journal of Universal Computer Science, 2012, 18(14): 1967⁃1986.
[21] 田果,刘丹宁,余建威 .网络基础[M].北京:人民邮电出版社,2022.
[22] 苑文昕,陈兴蜀,朱毅,等 . 基于深度学习的 HTTP 负载隐蔽信道检测方法[J].信息网络安全,2023,23(7):53⁃63.
[23] 龚美娜 .基于网络协议的信息隐藏研究与实现[D].南京:南京邮电大学,2015.
[24] 陆哲明,聂廷远,吉爱国 . 信息隐藏概论[M]. 北京:电子工业出版社,2014.
[25] Kumar A, Pooja K. Steganography⁃A data hiding technique [J]. International Journal of Computer Applications, 2010, 9(7): 19⁃23.
[26] Mahato S, Yadav D K, Khan D A. A minesweeper game⁃based steganography scheme [J]. Journal of Information Security & Applications, 2017, 32: 1⁃14.
[27] Lubacz J, Mazurczyk W, Szczypiorski K. Principles and overview of network steganography [J]. IEEE Communications Magazine, 2014, 52(5): 225⁃229.
[28] Yang Y R, Lam S S. General AIMD congestion control [C]// Proceedings 2000 International Conference on Network Protocols. [S.l.]: IEEE, 2000: 187⁃198.
Basic Information:
DOI:10.16652/j.issn.1004⁃373x.2026.10.005
Citation Information:
[1]Tian Hao, Wang Kaixi.Design of covert channel construction based on multi⁃protocol vertical collaboration[J].Modern Electronic Technique,2026(10):29⁃36.DOI:10.16652/j.issn.1004⁃373x.2026.10.005.
Fund Information:
市南区科技计划公共领域科技支撑项目:网络流媒体融合隐蔽信道的检测方法研究(2022⁃2⁃025⁃XX)