• DocumentCode
    2831159
  • Title

    IP traceback solutions based on time to live covert channel

  • Author

    Jones, Emanuele ; Le Moigne, Olivier ; Robert, Jean-Marc

  • Author_Institution
    Alcatel Res. & Innovation, Ottawa, Ont., Canada
  • Volume
    2
  • fYear
    2004
  • fDate
    16-19 Nov. 2004
  • Firstpage
    451
  • Abstract
    Due to its stateless nature, the Internet protocol (IP) requires forwarding devices to only know each packet´s next hop to correctly route any IP datagram towards its final destination. Thus, since identification of the source solely relies on the information provided by the sender itself, IP makes it extremely difficult to correctly identify the real origin of any datagram. We propose a novel way to locate the entry point of an IP flow into a given network domain based on a marking method using the IP header time to live (TTL) field as a covert channel to carry the information. The proposed solution overcomes drawbacks that undermine previous traceback schemes based on overloading various IP header fields and does not rely on attack signatures.
  • Keywords
    IP networks; telecommunication channels; telecommunication network routing; IP header time to live field; IP traceback solution; Internet protocol; time to live covert channel; Algorithm design and analysis; Bandwidth; Computer crime; Counting circuits; Current supplies; Filtering; Internet; Protocols; Technological innovation;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Networks, 2004. (ICON 2004). Proceedings. 12th IEEE International Conference on
  • ISSN
    1531-2216
  • Print_ISBN
    0-7803-8783-X
  • Type

    conf

  • DOI
    10.1109/ICON.2004.1409207
  • Filename
    1409207
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2831159