Please use this identifier to cite or link to this item:
http://dx.doi.org/10.25673/86232
Title: | A systematic analysis of covert channels in the Network Time Protocol |
Author(s): | Hielscher, Jonas Lamshöft, Kevin Krätzer, Christian Dittmann, Jana |
Issue Date: | 2021 |
Type: | Conference object |
Language: | English |
URN: | urn:nbn:de:gbv:ma9:1-1981185920-881848 |
Subjects: | Network Covert Channels Steganography Network Time Protocol Network Security Network Protocol Security |
Abstract: | Covert channels in network protocols are a technique aiming to hide the very existence of secret communication in computer networks. In this work we present a systematic in-depth analysis of covert channels by modification for the Network Time Protocol (NTP). Our analysis results in the identification of 49 covert channels, by applying a covert channel pattern-based taxonomy. The summary and comparison based on nine selected key attributes show that NTP is a plausible carrier for covert channels. The analysis results are evaluated in regards to common behavior of NTP implementations in six major operating systems. Two channels are selected and implemented to be evaluated in network test-beds. By hiding encrypted high entropy data in a high entropy field of NTP we show in our first assessment that practically undetectable channels can be implemented in NTP, motivating the required further research. In our evaluation, we analyze 40,000 NTP server responses from public NTP server providers. We discuss the general approach of the research community that detection of covert channels is the more promising countermeasure, compared to active suppression of covert channels. Therefore, normalization approaches and a secure network environment are introduced. |
URI: | https://opendata.uni-halle.de//handle/1981185920/88184 http://dx.doi.org/10.25673/86232 |
Open Access: | Open access publication |
License: | (CC BY-NC-ND 4.0) Creative Commons Attribution NonCommercial NoDerivatives 4.0 |
Sponsor/Funder: | Transformationsvertrag |
Appears in Collections: | Fakultät für Informatik (OA) |
Files in This Item:
File | Description | Size | Format | |
---|---|---|---|---|
Hielscher et al._A systematic analysis_2021.pdf | Zweitveröffentlichung | 1.43 MB | Adobe PDF | View/Open |