Error probability analysis of IP Time To Live covert channel

S. Zander; P. Branch; G. Armitage

doi:10.1109/ISCIT.2007.4392082

Back

Error probability analysis of IP Time To Live covert channel

Conference paper

Open access

Error probability analysis of IP Time To Live covert channel

S. Zander, P. Branch and G. Armitage

2007 International Symposium on Communications and Information Technologies

International Symposium on Communications and Information Technologies, 2007 (ISCIT '07) (Sydney, Australia, 16/10/2007–19/10/2007)

2007

DOI: https://doi.org/10.1109/ISCIT.2007.4392082

Files and links (2)

pdf

error probability.pdfDownload View

Published (Version of Record) Open Access

url

Link to Published Version *Subscription may be requiredView

Abstract

Communication is not necessarily made secure by the use of encryption alone. The mere existence of communication is often enough to raise suspicion and trigger investigative actions. Covert channels aim to hide the very existence of the communication. The huge amount of data and vast number of different protocols in the Internet makes it ideal as a highbandwidth vehicle for covert communications. A number of researchers have proposed different techniques to encode covert information into the IP Time To Live (TTL) field. This is a noisy covert channel since the TTL field is modified between covert sender and receiver. For computing the channel capacity it is necessary to know the probability of channel errors. In this paper we derive analytical solutions for the error probabilities of the different encoding schemes. We simulate the different encoding schemes and compare the simulation results with the analytical error probabilities. Finally, we compare the performance of the different encoding schemes for an idealised error distribution and an empirical TTL error distribution obtained from real Internet traffic.

Details

Title: Error probability analysis of IP Time To Live covert channel
Authors/Creators: S. Zander (Author/Creator) - Swinburne University of Technology
P. Branch (Author/Creator) - Swinburne University of Technology
G. Armitage (Author/Creator) - Swinburne University of Technology
Publication Details: 2007 International Symposium on Communications and Information Technologies
Conference: International Symposium on Communications and Information Technologies, 2007 (ISCIT '07) (Sydney, Australia, 16/10/2007–19/10/2007)
Identifiers: 991005545453807891
Murdoch Affiliation: Murdoch University
Language: English
Resource Type: Conference paper

Metrics

41 File views/ downloads

82 Record Views