Abstract
The detection of covert timing channels is notoriously a difficult work due to the high variation of network traffic. The existing detection methods, mainly based on statistical tests, cannot effectively detect a variety of covert timing channels. In this paper, we propose a proactive strategy of detecting covert timing channels. The basic idea is that a timing fingerprint is embedded into outgoing traffic of the to-be-protected host in advance. The presence of a covert timing channel is exposed, provided that the fingerprint is absent from the traffic during transmission. As a proof of concept, we design and implement a detection system, which consists of two modules for fingerprint embedding and checking, respectively. We also perform a series of experiments to validate if this system works effectively. The results show that it detects various timing channels accurately and quickly, while has less than 2.4‰ degradation on network performance. © Springer International Publishing 2013.
Author supplied keywords
Cite
CITATION STYLE
Wang, J., Liu, P., Liu, L., Guan, L., & Jing, J. (2013). Fingerprint embedding: A proactive strategy of detecting timing channels. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 8233 LNCS, pp. 229–244). https://doi.org/10.1007/978-3-319-02726-5_17
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
