首页 | 本学科首页   官方微博 | 高级检索  
     

基于DNS协议的隐蔽信道研究
引用本文:谷传征,王轶骏,薛质.基于DNS协议的隐蔽信道研究[J].信息安全与通信保密,2011,9(12):81-82,85.
作者姓名:谷传征  王轶骏  薛质
作者单位:上海交通大学电子系,上海,200240
基金项目:上海市科委;文字作品互联网传播监测与版权保护关键技术研究
摘    要:隐蔽信道能够以危害系统安全策略的方式传输信息,目前,基于网络协议的隐蔽信道研究已成为热点。域名系统协议(Domain Name System,DNS)用于将主机名字和IP地址之间的转换,是双向协议,互联网正常运行离不开DNS协议,因此可以基于DNS协议建立隐蔽信道。文中首先介绍隐蔽信道、DNS隐蔽信道的概念和原理,搭建DNS隐蔽信道系统,然后演示了DNS隧道工具的使用方法,最后针对现有的DNS隐蔽信道工具提出了几点改进措施,使DNS隐蔽信道数据传输更加高效。

关 键 词:隐蔽信道  DNS隐蔽信道  防火墙

Study on Covert Channel based on the DNS Protocol
GU Chuan-zheng,WANG Yi-jun,XUE Zhi.Study on Covert Channel based on the DNS Protocol[J].China Information Security,2011,9(12):81-82,85.
Authors:GU Chuan-zheng  WANG Yi-jun  XUE Zhi
Affiliation:GU Chuan-zheng,WANG Yi-jun,XUE Zhi(Electronic Engineering Dept.,Shanghai Jiaotong University,Shanghai 200240,China)
Abstract:Covert channel can be employed to transfer information in a security-policy-breaking manner. Recently, covert channels in computer network protocols becomes a hot topic DNS protocol underlies the conversion of hostnames into IP address on the internet, and as a bidirectional protocol, is required by most computer networks, so it possible to establish, based on DNS protocol the covert channel. This paper first presents the concept of covert channel and DNS tunnel, the core of the DNS tunnel system, then describes the use demonstration of DNS tunnel tool, and finally proposes some improvements for more effective data transfer by DNS tunnel.
Keywords:covert channel  DNS tunnel  firewall
本文献已被 CNKI 维普 万方数据 等数据库收录!
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号