Real-Time Detection of Storage Covert Channels

It appears your Web browser is not configured to display PDF files. Download adobe Acrobat or click here to download the PDF file.

Click here to download the PDF file.

Creator: 

Sattolo, Thomas A. V.

Date: 

2021

Abstract: 

Covert channnels are a class of techniques for hiding the presence of communication between parties. In the context of cybersecurity, covert channels can be used by attackers to evade detection and to exfiltrate sensitive data. In so doing, they create a need for effective detection techniques for the use of covert channels. In this thesis, we present the conception, design and implementation of a system for detecting covert messages stored in the headers of network protocols in real time. We start by identifying statistical tests that can distinguish network traffic containing certain types of covert channels with high accuracy. We then leverage that information to build a system that analyses network traffic by tapping ethernet cables in order to detect the use of covert channels with very low latency.

Subject: 

Engineering - Electronics and Electrical
Computer Science

Language: 

English

Publisher: 

Carleton University

Thesis Degree Name: 

Master of Applied Science: 
M.App.Sc.

Thesis Degree Level: 

Master's

Thesis Degree Discipline: 

Engineering, Electrical and Computer

Parent Collection: 

Theses and Dissertations

Items in CURVE are protected by copyright, with all rights reserved, unless otherwise indicated. They are made available with permission from the author(s).