首页 | 本学科首页   官方微博 | 高级检索  
     

GreyFan:一种Wi-Fi隐蔽信道攻击框架
引用本文:马栋捷,金成强,陈园,陈铁明. GreyFan:一种Wi-Fi隐蔽信道攻击框架[J]. 电信科学, 2019, 35(9): 85-97. DOI: 10.11959/j.issn.1000-0801.2019179
作者姓名:马栋捷  金成强  陈园  陈铁明
作者单位:浙江工业大学计算机科学与技术学院,浙江杭州310023;浙江省网络空间安全创新研究中心,浙江杭州310023;浙江工业大学计算机科学与技术学院,浙江杭州310023;浙江省网络空间安全创新研究中心,浙江杭州310023;之江实验室工业互联网研究中心,浙江杭州311100
基金项目:国家自然科学基金资助项目(61202282);国家自然科学基金资助项目(61772026);国家自然科学基金与浙江省政府联合项目(U1509214)
摘    要:针对现实网络中诸如侧信道攻击、HID攻击等传统的物理攻击,物理隔离被认为是一种较为彻底的抵御网络攻击的安全防护手段。2018年,业界首次提出了一种物理隔离环境下的Wi-Fi隐蔽信道方法——Ghost Tunnel,即在Wi-Fi尚未连接的状态下,无线AP可成功将数据传给发起连接请求的计算机。提出了一种基于Ghost Tunnel方法的攻击框架——GreyFan,利用该攻击框架攻击者可以对未连接Wi-Fi的用户实施无感知攻击,如文件隐蔽传输、任意代码执行等,并分析了相应的防御技术。

关 键 词:HID攻击  网络隔离  隐蔽信道  GreyFan攻击

GreyFan:a network attack framework using Wi-Fi covert channel
Dongjie MA,Chengqiang JIN,·uan CHEN,Tieming CHEN. GreyFan:a network attack framework using Wi-Fi covert channel[J]. Telecommunications Science, 2019, 35(9): 85-97. DOI: 10.11959/j.issn.1000-0801.2019179
Authors:Dongjie MA  Chengqiang JIN  ·uan CHEN  Tieming CHEN
Affiliation:1. College of Computer Science and Technology,Zhejiang University of Technology,Hangzhou 310023,China;2. Zhejiang Innovation Center of Cyberspace Security,Hangzhou 310023,China;3. Research Center of Industrial Internet,Zhejiang Lab,Hangzhou 311100,China
Abstract:For traditional physical attacks such as side channel attacks and HID attacks in real networks,physical isolation is considered to be a relatively complete security protection against network attacks.In 2018,a Wi-Fi hidden channel method in the physical isolation environment——Ghost Tunnel was firstly proposed,that is,in the state that Wi-Fi didn’t connected,the wireless AP could successfully transmit data to the computer that initiates the connection request.An attack framework based on the Ghost Tunnel method——GreyFan was proposed.This attack framework enabled attackers to implement non-aware attacks on users who didn’t connected to Wi-Fi,such as file concealed transmission and arbitrary code execution,etc.The corresponding defense technology was also analyzed.
Keywords:HID attack  network isolation  covert channel  GreyFan attack  
本文献已被 维普 万方数据 等数据库收录!
点击此处可从《电信科学》浏览原始摘要信息
点击此处可从《电信科学》下载免费的PDF全文
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号