Abstract

A covert channel is an information channel that is used by the computer process to exfiltrate data through bypassing security policies. The DNS protocol is one of the important ways to implement a covert channel. DNS covert channels are easily used by attackers for malicious purposes. Therefore, an effective detection approach of the DNS covert channels is significant for computer systems and network securities. Aiming at the difficulty of the DNS covert channel identification, we propose a DNS covert channel detection method based on a stacking model. The stacking model is evaluated on a campus network and the experimental results show that the detection based on the stacking model can detect the DNS covert channels effectively. Besides, it can identify unknown covert channel traffic. The area under the curve (AUC) of the proposed method reaches 0.9901, which outperforms existing detection methods.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Naruto
Peng Yang ... Xinxin Wan
-
Peng Yang, et. al.Peng Yang ... Xinxin Wan
25 Sep 2020
Another Step in the Ladder of DNS-Based Covert Channels: Hiding Ill-Disposed Information in DNSKEY RRs
Marios Anagnostopoulos ... John André Seem
Information | VOL. 10
Marios Anagnostopoulos, et. al.Marios Anagnostopoulos ... John André Seem
12 Sep 2019
A Protocol Independent Approach in Network Covert Channel Detection
Md Ahsan Ayub ... Steven Smith
-
Md Ahsan Ayub, et. al.Md Ahsan Ayub ... Steven Smith
01 Aug 2019
Different multiparametric MRI-based radiomics models for differentiating stage IA endometrial cancer from benign endometrial lesions: A multicenter study.
Qiu Bi ... Yang Song
Frontiers in Oncology | VOL. 12
Qiu Bi, et. al.Qiu Bi ... Yang Song
05 Aug 2022
View more papers

More From: China Communications

Paper Title
Journal
Date
Author
Gamma approximation based multi-antenna covert communication detection
Wan Pengwu ... Peng Kang
China Communications | VOL. 21
Wan Pengwu, et. al.Wan Pengwu ... Peng Kang
01 Sep 2024
Covert LEO satellite communication aided by generative adversarial network based cooperative UAV jamming
Shi Jia ... Hu Junfan
China Communications | VOL. 21
Shi Jia, et. al.Shi Jia ... Hu Junfan
01 Sep 2024
Joint active and passive beamforming design in intelligent reflecting surface (IRS)-assisted covert communications: A multi-agent DRL approach
Gao Ang ... Zhang Jiankang
China Communications | VOL. 21
Gao Ang, et. al.Gao Ang ... Zhang Jiankang
01 Sep 2024
Consistent and accurate TDOA localization in dynamic NLOS environments via prior information independent estimation
Luo Mei ... Long Yu
China Communications | VOL. 21
Luo Mei, et. al.Luo Mei ... Long Yu
01 Sep 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.