| Title | HIDE_DHCP: Covert Communications Through Network Configuration Messages |
| Publication Type | Conference Paper |
| Year of Publication | 2012 |
| Authors | R. Rios, J. A. Onieva, and J. Lopez |
| Editor | D. Gritzalis, S. Furnell, and M. Theoharidou |
| Conference Name | Proceedings of the 27th IFIP TC 11 International Information Security and Privacy Conference (SEC 2012) |
| Series Title | IFIP AICT |
| Volume | 376 |
| Pagination | 162-173 |
| Date Published | June 2012 |
| Publisher | Springer Boston |
| Conference Location | Heraklion, Crete, Greece |
| ISBN Number | 978-3-642-30435-4 |
| ISSN Number | 1868-4238 |
| Keywords | Covert channels, Network Security, System Information Security |
| Abstract | Covert channels are a form of hidden communication that may violate the integrity of systems. Since their birth in multilevel security systems in the early 70’s they have evolved considerably, such that new solutions have appeared for computer networks mainly due to vague protocols specifications. We analyze a protocol extensively used today, the Dynamic Host Configuration Protocol (DHCP), in search of new forms of covert communication. From this analysis we observe several features that can be effectively exploited for subliminal data transmission. This results in the implementation of HIDE_DHCP, which integrates three covert channels that accommodate to different stealthiness and bandwidth requirements |
| DOI | 10.1007/978-3-642-30436-1_14 |
| Citation Key | Rios2012 |
Paper File:
https://nics.uma.es:8082/sites/default/files/papers/Rios2012_0.pdf
