摘要
基于协议的网络隐信道技术是信息隐藏领域的一个研究热点,现有的存储型和时序型隐信道由于自身局限性,很难抵抗针对性检测方法的分析,相比之下包排序隐信道更难于跟踪和检测.鉴于此,提出一种基于TCP数据包可靠排序的隐秘通信算法.该方法在多对一的TCP连接中采用数据包排序隐藏信息,通过康托展开及其逆运算实现高效编解码,通过对固定数量数据包的编解码保证隐蔽通信的同步性.实验结果表明,该方法具有较高的传输效率,传输速率可达到200bit/s,在有较高时延的网络环境下能保持隐蔽通信的可靠性,并可以抵抗现有隐藏分析方法的检测.
Network protocol-based covert channel is a hot research topic in the field of information hiding. Existing storage and timingcovert channels fail to resist the targeted analysis detection method due to their own limitations. By contrasts, the package ordering cov-en channels are more difficult to track and detect. In view of this, this paper puts forward a covert communication algorithm based onreliable TCP packet scheduling. The method utilizes packet scheduling in multi-to-one TCP connections to hide information. In covertcommunication,it uses Cantor expansion and inverse operation to achieve efficient encoding and decoding, and employs a fixed num-ber of packets to be sent and received, which ensures synchronization of covert communication. The experimental results show that thismethod has high transmission efficiency, and the transmission speed can reach 200bit/s. It maintains good reliability under poor net-work environment with higher delay, and also can resist the existing hidden analysis and detection methods.
出处
《小型微型计算机系统》
CSCD
北大核心
2016年第1期124-128,共5页
Journal of Chinese Computer Systems
基金
国家自然科学基金项目(61202407)资助
关键词
包排序
网络隐信道
康托展开
信息隐藏
packet ordering
network covert channel
cantor expansion, information hiding