Covert Channels
Page Content
Jonathan Millen - Mitre
Jan 30, 1997
Abstract
A Trojan horse might attempt to send sensitive information belonging to its user to whoever wrote or planted the program. In most systems this is easy because a program runs with the privileges of its user. Systems with "mandatory" access controls make the attacker's job harder because they prevent obvious subversions such as copying files or sending messages to unauthorized parties. However, it is usually possible to bypass those controls by leaking information one bit at a time through shared operating system resources, sometimes at tens or hundreds of bits per second. This talk gives some examples of covert channels and discusses the problem of detecting them and estimating leakage rates.© 1999-2013 Purdue University. All rights reserved.
Use/Reuse Guidelines
CERIAS Seminar materials are intended for educational, non-commercial use only and any or all commercial use is prohibited. Any use must attribute "The CERIAS Seminar at Purdue University." Opinions expressed in the recordings are not necessarily representative of the views of CERIAS or of Purdue University.
Footer
RSS Feeds
Combined XML Feed
News XML Feed Events XML Feed Weblogs XML Feed Security Seminar Podcast
Twitter: @cerias, @ceriasarchive, #cerias
CERIAS, Purdue University / Recitation Building / 656 Oval Drive / West Lafayette IN 47907-2086
phone (765)494-7841 / fax (765)496-3181
Copyright © 2013, Purdue University, all rights reserved. Purdue University is an equal access/equal opportunity university.
If you have trouble accessing this page because of a disability, please contact the CERIAS webmaster at webmaster@cerias.purdue.edu. Some content on this site may require the use of a special plug-in or application. Please visit our plug-ins page for links to download these applications.
Privacy Policy
