Network Forensics of Covert Channels in IPv6
Project Members
Lourdes Gino D and Prof. Raymond A Hansen
Lourdes Gino D and Prof. Raymond A Hansen
Abstract
According to U.S. D.O.D, “A covert channel is described as, any communication channel that can be exploited by a process to transfer information in a manner that violates the systems security policy. Essentially, it is a method of communication that is not part of an actual computer system design, but can be used to transfer information to users or system processes that normally would not be allowed access to the information”. Covert channels in IPv4 has been existing for a while and there has been various detection mechanisms. But the advent of IPv6 requires new research to identify covert channels and be able to perform forensics on such attacks. The current study aims at exploring the possibilities of performing forensics on such covert channels in IPv6.