Title :
Unicode Steganographic Exploits: Maintaining Enterprise Border Security
Author :
Mabry, Frank J. ; James, John R. ; Ferguson, Aaron J.
Author_Institution :
US Mil. Acad., West Point
Abstract :
Unicode is rapidly becoming the preferred means for representing symbols used in creating multimedia content, especially for information that´s presented in multiple languages. This article discusses a unicode vulnerability that makes such content susceptible to being used for creation of covert channel communications. We also developed a solution architecture, the unified secure message augmentation (USMA) service. The USMA service incorporates rules (in an XML vocabulary) that we can apply to unicode transmissions that will detect an attempt to transmit a potential exploit, alert network managers to the presence of the unicode anomaly, and take action to mitigate the exploit.
Keywords :
XML; business communication; computer network management; cryptography; data encapsulation; message authentication; telecommunication security; USMA service; XML vocabulary; enterprise border security maintenance; network management; unicode steganography; unicode vulnerability; unified secure message augmentation; Application software; Code standards; Computer security; ISO standards; Information security; Military computing; Natural languages; Privacy; Steganography; Terminology; education; information assurance; network security experiment; steganographics; steganography;
Journal_Title :
Security & Privacy, IEEE
DOI :
10.1109/MSP.2007.128
