Donnerstag, 30. März 2017

CCEAP v.0.5.2 released

Today, version 0.5.2 of our educational tool CCEAP was released. CCEAP eases teaching network information hiding to students and professionals and is based on patterns. The changelog can be found here.

Find out more: a brief documentation on CCEAP.

Freitag, 3. Februar 2017

This project is now also on ResearchGate

We performed some tiny updates on the content to provide a better explanation of our approach.

Another update is that you can now follow our project on ResearchGate. (All information is also and primarily available on this website, i.e. following our blog will provide you with at least the same information as you will get on ResearchGate.)

Montag, 9. Januar 2017

New Publication: Unified Description for Network Information Hiding Methods

We published a new paper related to network information hiding patterns. This time, we provide a way for a unified description of hiding methods (hiding techniques). In other words: if a new hiding technique must be described in a scientific paper, so that it can be published, we propose a clear structure for the description of the new technique.

S. Wendzel, W. Mazurczyk, S. Zander: Unified Description for Network Information Hiding Methods, Journal of Universal Computer Science (J.UCS), Vol. 22(11), 2016.

Abstract:
Until now hiding methods in network steganography have been described in arbitrary ways, making them difficult to compare. For instance, some publications describe classical channel characteristics, such as robustness and bandwidth, while others describe the embedding of hidden information. We introduce the first unified description of hiding methods in network steganography. Our description method is based on a comprehensive analysis of the existing publications in the domain. When our description method is applied by the research community, future publications will be easier to categorize, compare and extend. Our method can also serve as a basis to evaluate the novelty of hiding methods proposed in the future.

Keywords: covert channels, design patterns, information hiding, network security, scientific methodology, scientific pratice, steganography

You can download the full-text here (open access).

Dienstag, 18. Oktober 2016

CCEAP 0.5.0 released!

The Covert Channel Education tool CCEAP was released in v.0.5.0 today, including support for two new hiding patterns: `Inter-arrival Time' and 'Rate/Throughput'.

CCEAP will be presented during a poster presentation at ACM CCS in Vienna next week.

Freitag, 19. August 2016

New Publication: An Educational Network Protocol for Covert Channel Analysis Using Patterns

A new short paper (poster) on pattern-based information hiding was accepted at this year's ACM CCS conference in Vienna, Austria:

Steffen Wendzel and Wojciech Mazurczyk: POSTER: An Educational Network Protocol for Covert Channel Analysis Using Patterns, in Proc. 23rd ACM Conference on Computer and Communications Security (CCS 2016), 2016.

Abstract: The utilization of information hiding is on the rise among cybercriminals, e.g. to cloak the communication of malicious software as well as by ordinary users for privacy-enhancing purposes. A recent trend is to use network traffic in form of covert channels to convey secrets. In result, security expert training is incomplete if these aspects are not covered.
This paper fills this gap by providing a method for teaching covert channel analysis of network protocols. We define a sample protocol called Covert Channel Educational Analysis Protocol (CCEAP) that can be used in didactic environments. In addition, compared to previous works we lower the barrier for understanding network covert channels by eliminating the requirement for students to understand several network protocols in advance.

Keywords: Covert Channels; Steganography; Information Hiding

Please find more information about CCEAP on the project's website.

Dienstag, 26. Juli 2016

CCEAP -- a tool for pattern-based covert channel education

Teaching network information hiding is considered a challenging task. Students must first master network protocols, followed by the basics of information security, and finally steganography in networks.

After developing a new tool called CCEAP (Covert Channel Educational Analysis Protocol), we now released a first version of it and experiment with the tool in university education.

CCEAP is a protocol that is vulnerable against several covert channels and that eliminates the need to teach several other network protocols in advance (and to switch between them) just to explain network information hiding fundamentals.

Mittwoch, 2. März 2016

New Book Covering Information Hiding Patterns

It is our pleasure to announce our new book that was released this month. The title Information Hiding in Communication Networks by W. Mazurcuyk, S. Wendzel, S. Zander, A. Houmansadr and K. Szczypiorski covers one chapter (#3) that is basically structured by the hiding patterns you find on this website but adds a few additional ones. In addition, the book introduces a novel terminology for network information hiding.