A Study on the Covert Channel Detection of TCP/IP Header Using Support Vector Machine

机译：支持向量机在TCP / IP报头隐蔽通道检测中的研究

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Nowadays, threats of information security have become a big issue in internet environments. Various security solutions are used as such problems' countermeasure; IDS, Firewall and VPN. However, a TCP/IP protocol based Internet basically has great vulnerability of protocol itself. It is especially possible to establish a covert channel using TCP/IP header fields such as identification, sequence number, acknowledgement number, timestamp and so on. In this paper, we focus on the covert channels using identification field of IP header and the sequence number field of TCP header. To detect such covert channels, our approach uses a Support Vector Machine which has excellent performance in pattern classification problems. Our experiments showed that the proposed method could discern the abnormal cases(including covert channels) from normal TCP/IP traffic using a Support Vector Machine.

机译：如今，信息安全威胁已成为Internet环境中的一个大问题。各种安全解决方案被用作此类问题的对策; IDS，防火墙和VPN。但是，基于TCP / IP协议的Internet基本上具有协议本身的巨大漏洞。使用TCP / IP标头字段（例如标识，序列号，确认号，时间戳等）来建立隐蔽通道尤其可能。在本文中，我们主要使用IP报头的标识字段和TCP报头的序列号字段来隐蔽信道。为了检测此类隐蔽通道，我们的方法使用了支持向量机，该向量机在模式分类问题中具有出色的性能。我们的实验表明，所提出的方法可以使用支持向量机从正常的TCP / IP流量中识别出异常情况（包括隐蔽通道）。

著录项

来源
《Information and Communications Security》|2003年|p.313-324|共12页
会议地点
作者
Taeshik Sohn; JungTaek Seo; Jongsub Moon;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类自动化技术、计算机技术;
关键词
intrusion detection; covert channel; support vector machine; TCP/IP protocol security;

机译：入侵检测;隐蔽通道;支持向量机; TCP / IP协议安全性;

相似文献

外文文献
中文文献
专利

1. A Support Vector Machine-Based Framework for Detection of Covert Timing Channels [J] . P. L. Shrestha, M. Hempel, F. Rezaei, IEEE transactions on dependable and secure computing . 2016,第2期

机译：基于支持向量机的隐式定时信道检测框架
2. A novel comprehensive steganalysis of transmission control protocol/Internet protocol covert channels based on protocol behaviors and support vector machine [J] . Shen Yao, Huang Liusheng, Lu Xiaorong, Security and Communications Networks . 2015,第7期

机译：基于协议行为和支持向量机的传输控制协议/ Internet协议隐蔽通道的新型综合隐写分析
3. A novel comprehensive steganalysis of transmission control protocol/Internet protocol covert channels based on protocol behaviors and support vector machine [J] . Yao Shen, Liusheng Huang, Xiaorong Lu, Security and Communication Networks (Online) . 2015,第7期

机译：基于协议行为和支持向量机的传输控制协议/ Internet协议隐蔽通道的新型综合隐写分析
4. A Study on the Covert Channel Detection of TCP/IP Header Using Support Vector Machine [C] . Taeshik Sohn, JungTaek Seo, Jongsub Moon International Conference on Information and Communications Security . 2003

机译：使用支持向量机的TCP / IP头的隐蔽通道检测研究
5. Covert channel analysis and data hiding in TCP/IP. [D] . Ahsan, Kamran. 2002

机译：TCP / IP中的隐式通道分析和数据隐藏。
6. Fall Detection with the Support Vector Machine during Scripted and Continuous Unscripted Activities [O] . Shing-Hong Liu, Wen-Chang Cheng 2012

机译：在脚本和连续非脚本活动中使用支持向量机进行跌倒检测
7. Covert Channels Detection with Supported Vector Machine and Hyperbolic Hopfield Neural Network [O] . G Yuvaraj, Siva Rama Lingham N, Rajkamal J 2018

机译：封面通道检测与支持的向量机和双曲线Hopfield神经网络

A Study on the Covert Channel Detection of TCP/IP Header Using Support Vector Machine

摘要

著录项

相似文献

相关主题

期刊订阅