Communication using phantoms: covert channels in the Internet

Author

Servetto, Sergio D. ; Vetterli, Martin

Author_Institution

Lab. de Commun. Audiovisuelles, Ecole Polytech. Federale de Lausanne, Switzerland

fYear

2001

fDate

2001

Firstpage

229

Abstract

We consider the problem of determining the transport capacity of point-to-point and broadcast channels implemented on top of a network that enforces max-min fair bandwidth allocations in its routers. Our main finding is that the use of inefficient codes to represent data that is intended to be used solely for network control operations (such as routing, sequencing, etc.), gives rise to the unintended creation of a covert channel. Sources can encode some information for their destinations into network control bits (on top of the standard method of encoding data into payload bits), by means of a mechanism which we refer to as the generation of “phantom” packets. Although phantoms provide only a marginal bandwidth increase, they could have potentially vast reaching implications in terms of security issues

Keywords

Internet; bandwidth allocation; broadcast channels; channel capacity; channel coding; security of data; source coding; telecommunication network routing; telecommunication security; Internet; broadcast channels; channel coding; codes; covert channels; max-min fair bandwidth allocation; network control; network control bits; payload bits; phantom packets generation; phantoms communication; point-to-point channels; routers; security; sequencing; source coding; transport capacity; video multicast; Broadcasting; Channel allocation; Channel capacity; Decoding; Imaging phantoms; Intelligent networks; Internet; Multimedia communication; Routing; Uniform resource locators;

fLanguage

English

Publisher

ieee

Conference_Titel

Information Theory, 2001. Proceedings. 2001 IEEE International Symposium on

Conference_Location

Washington, DC

Print_ISBN

0-7803-7123-2

Type

conf

DOI

10.1109/ISIT.2001.936092

Filename

936092