Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 COVERT CHANNELS Ravi Sandhu. 2 COVERT CHANNELS A covert channel is a communication channel based on the use of system resources not normally intended.

Published bySheila Newman Modified over 9 years ago

Similar presentations

Presentation on theme: "1 COVERT CHANNELS Ravi Sandhu. 2 COVERT CHANNELS A covert channel is a communication channel based on the use of system resources not normally intended."— Presentation transcript:

1 1 COVERT CHANNELS Ravi Sandhu

2 2 COVERT CHANNELS A covert channel is a communication channel based on the use of system resources not normally intended for communication between the subjects (processes) in the system

3 3 COVERT CHANNELS Low User High Trojan Horse Infected Subject High User Low Trojan Horse Infected Subject COVERT CHANNEL Information is leaked unknown to the high user

4 4 COVERT CHANNELS The concern is with subjects not users users are trusted (must be trusted) not to disclose secret information outside of the computer system subjects are not trusted because they may have Trojan Horses embedded in the code they execute star-property prevents overt leakage of information and does not address the covert channel problem

5 5 RESOURCE EXHAUSTION CHANNEL (STORAGE CHANNELS) Given 5GB pool of dynamically allocated memory HIGH PROCESS bit = 1  request 5GB of memory bit = 0  request 0GB of memory LOW PROCESS request 5GB of memory if allocated then bit = 0 otherwise bit = 1

6 6 LOAD SENSING CHANNEL (TIMING CHANNEL) HIGH PROCESS bit = 1  enter computation intensive loop bit = 0  go to sleep LOW PROCESS perform a task with known computational requirements if completed quickly then bit = 0 otherwise bit = 1

7 7 COPING WITH COVERT CHANNELS identification close the channel or slow it down detect attempts to use the channel tolerate its existence

8 8 SIDE CHANNELS VS COVERT CHANNELS Covert channels require a cooperating sender and receiver Side channels do not require a sender but nevertheless information is leaked

Download ppt "1 COVERT CHANNELS Ravi Sandhu. 2 COVERT CHANNELS A covert channel is a communication channel based on the use of system resources not normally intended."

Similar presentations

ACCESS-CONTROL MODELS

ACCESS-CONTROL MODELS
LECTURE 1 ACCESS CONTROL Ravi Sandhu.

LECTURE 1 ACCESS CONTROL Ravi Sandhu.
System Integration and Performance

System Integration and Performance
Higher Computing Computer Systems S. McCrossan Higher Grade Computing Studies 8. Supporting Software 1 Software Compatibility Whether you are doing a fresh.

Higher Computing Computer Systems S. McCrossan Higher Grade Computing Studies 8. Supporting Software 1 Software Compatibility Whether you are doing a fresh.
Flash storage memory and Design Trade offs for SSD performance

Flash storage memory and Design Trade offs for SSD performance
Practical techniques & Examples

Practical techniques & Examples
1 Hardware Support for Isolation Krste Asanovic U.C. Berkeley MURI “DHOSA” Site Visit April 28, 2011.

1 Hardware Support for Isolation Krste Asanovic U.C. Berkeley MURI “DHOSA” Site Visit April 28, 2011.
Dr. Kalpakis CMSC 421, Operating Systems. Fall 2008 URL: Security.

Dr. Kalpakis CMSC 421, Operating Systems. Fall 2008 URL: Security.
Virus Code Actions Clara Pirie & Eilidh Currie. Viruses A virus is a computer program that can copy itself and infect a computer without the permission.

Virus Code Actions Clara Pirie & Eilidh Currie. Viruses A virus is a computer program that can copy itself and infect a computer without the permission.
Practical Timing Side Channel Attacks Against Kernel Space ASLR

Practical Timing Side Channel Attacks Against Kernel Space ASLR
Virus code actions Or ‘how viruses work’. Replication Spreads quickly and can be difficult to control Can be attached to any type of file and make copies.

Virus code actions Or ‘how viruses work’. Replication Spreads quickly and can be difficult to control Can be attached to any type of file and make copies.
1 Access Control Models Prof. Ravi Sandhu Executive Director and Endowed Chair January 25, 2013 & February 1, 2013

1 Access Control Models Prof. Ravi Sandhu Executive Director and Endowed Chair January 25, 2013 & February 1, 2013
Lecturer: Fadwa Tlaelan

Lecturer: Fadwa Tlaelan
5/17/2015 9:36 AM Confinement James Hook CS 591: Introduction to Computer Security.

5/17/2015 9:36 AM Confinement James Hook CS 591: Introduction to Computer Security.
Unit 18 Data Security 1.

Unit 18 Data Security 1.
EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 3 Wenbing Zhao Department of Electrical and Computer Engineering.

EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 3 Wenbing Zhao Department of Electrical and Computer Engineering.
Security strategy. What is security strategy? How an organisation plans to protect and respond to security attacks on their information technology assets.

Security strategy. What is security strategy? How an organisation plans to protect and respond to security attacks on their information technology assets.
Chapter 8 Operating System Support

Chapter 8 Operating System Support
Lecture 15 Overview. Kinds of Malicious Codes Virus: a program that attaches copies of itself into other programs. – Propagates and performs some unwanted.

Lecture 15 Overview. Kinds of Malicious Codes Virus: a program that attaches copies of itself into other programs. – Propagates and performs some unwanted.
1 Malicious Logic CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute March 25, 2004.

1 Malicious Logic CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute March 25, 2004.

Similar presentations

Ads by Google