本文選題：長度式隱信道　切入點：隱信道構(gòu)建　出處：《江蘇科技大學》2014年碩士論文　論文類型：學位論文

【摘要】：計算機網(wǎng)絡(luò)技術(shù)的迅猛發(fā)展在推動經(jīng)濟發(fā)展和社會進步，為人們的工作、生活帶來便利的同時，也不可避免地引發(fā)了眾多安全問題。隱蔽信道技術(shù)作為一種有效的秘密信息傳輸方式，受到了信息安全研究領(lǐng)域?qū)W者們的廣泛重視。由于互聯(lián)網(wǎng)數(shù)據(jù)流的諸多特性使其成為秘密消息傳輸?shù)囊环N較好載體，網(wǎng)絡(luò)隱信道逐漸成為了該研究領(lǐng)域的熱點之一，有著重要的理論價值和應(yīng)用價值。 長度式隱信道是網(wǎng)絡(luò)隱信道中的一種，它通過調(diào)制網(wǎng)絡(luò)數(shù)據(jù)包的長度來傳遞秘密消息；相比傳統(tǒng)的存儲式和時間式隱信道，它在隱蔽性和抗干擾能力方面都具有相對較好的性能。因此，本文在綜述了網(wǎng)絡(luò)隱信道研究現(xiàn)狀的基礎(chǔ)上，針對長度式隱信道展開了深入的研究。論文完成的主要工作如下： 1.為了研究和分析現(xiàn)有長度式隱信道算法，設(shè)計實現(xiàn)了長度式隱信道實驗平臺，該平臺包含了目前隱蔽性有所增強的三種典型的長度式隱信道算法，分別是基于參考長度的隱蔽信道、DRCC隱信道和CACC隱信道。 2.采用基于信息熵和統(tǒng)計特征的檢測方法，對基于參考長度的隱蔽信道、DRCC隱信道和CACC隱信道進行了安全性實驗，實驗結(jié)果表明上述算法均難以抵抗檢測，缺乏隱蔽性。 3.基于直方圖統(tǒng)計方法，建立了四種常用網(wǎng)絡(luò)業(yè)務(wù)的數(shù)據(jù)包長度模型，根據(jù)正常HTTP文件傳輸業(yè)務(wù)的包長度統(tǒng)計分布模型，，提出并實現(xiàn)了基于數(shù)據(jù)流業(yè)務(wù)模型的長度式隱信道算法。檢測結(jié)果表明，該算法能夠較為有效地抵抗檢測，對比目前的多數(shù)方法，其隱蔽性和安全性有所增強。 論文最后對全文進行了總結(jié)，指出了研究中的不足，并對今后的研究方向進行了展望。
[Abstract]:The rapid development of computer network technology not only promotes economic development and social progress, but also brings convenience to people's work and life. Covert channel technology is an effective way to transmit secret information. Due to the many characteristics of Internet data flow, it has become a better carrier of secret message transmission, and the network hidden channel has gradually become one of the hotspots in this field. Has the important theory value and the application value. The length hidden channel is one of the network hidden channels, which transmits secret messages by modulating the length of the network data packet, compared with the traditional storage and time hidden channels, It has relatively good performance in concealment and anti-jamming ability. Therefore, based on the review of the current research situation of the hidden channel in the network, a deep research on the long hidden channel is carried out. The main work accomplished in this paper is as follows:. 1. In order to study and analyze the existing length hidden channel algorithms, the experimental platform of length hidden channel is designed and implemented. The platform includes three typical length hidden channel algorithms which have improved concealment at present. It is covert channel based on reference length and CACC hidden channel, respectively. 2. Using the detection method based on information entropy and statistical features, the security experiments of the hidden channel and CACC channel based on the reference length are carried out. The experimental results show that the above algorithms are difficult to resist the detection and lack of concealment. 3. Based on histogram statistical method, the packet length model of four common network services is established. According to the statistical distribution model of packet length of normal HTTP file transmission service, A long hidden channel algorithm based on data flow traffic model is proposed and implemented. The detection results show that the algorithm can resist detection more effectively, and compared with most current methods, its concealment and security are enhanced. Finally, the paper summarizes the whole paper, points out the deficiency of the research, and looks forward to the future research direction.
【學位授予單位】：江蘇科技大學
【學位級別】：碩士
【學位授予年份】：2014
【分類號】：TP393.08

【參考文獻】

相關(guān)期刊論文 前6條

1 鄒昕光;;基于FTP協(xié)議的命令序列隱蔽信道[J];哈爾濱工業(yè)大學學報;2007年03期

2 鄒昕光;金海軍;郝克成;孫圣和;;基于HTTP協(xié)議多維隨機參數(shù)插入通信隱藏算法[J];計算機工程與應(yīng)用;2006年34期

3 鄒昕光;金海軍;郝克成;孫圣和;;基于HTTP協(xié)議的參數(shù)排序通信隱藏算法[J];計算機工程;2006年20期

4 鄒昕光;孫圣和;;基于TCP選項域的信息隱藏算法研究[J];計算機工程與設(shè)計;2006年12期

5 胡靜;謝俊元;;IPSec協(xié)議中潛在的隱蔽信道問題研究[J];計算機工程與設(shè)計;2007年17期

6 谷傳征;王軼駿;薛質(zhì);;基于DNS協(xié)議的隱蔽信道研究[J];信息安全與通信保密;2011年12期

本文編號：1596610