Title:
Eraser: An Exploit - Specific Monitor to Prevent Malicious Communication Channel
Eraser: An Exploit - Specific Monitor to Prevent Malicious Communication Channel
dc.contributor.author | Singh, Abhishek | |
dc.date.accessioned | 2005-03-17T20:47:40Z | |
dc.date.available | 2005-03-17T20:47:40Z | |
dc.date.issued | 2004 | |
dc.description.abstract | Prevention of malicious communication channel has been an important issue in building secure networked systems. Malicious Communication channel can be established by using header fields which follow particular semantics or by using data fields, which do not follow any particular semantics. There have been many research directions to prevent the malicious flow of information in the header fields. This paper presents the design of a system which has been designed to prevent he malicious covert channel using data fields. The proposed system consists of two parts. The first part is an E-Firewall. The E-firewall runs on the end hosts, while the eraser runs at the Gateway. Eraser is a rule or policy based system, which checks for the malicious content in the payload. Besides storing the test metrics of the applications, the E-Firewall also stores the dependencies amongst the applications. This storage of dependencies offers incremental advantage over the existing firewall by providing information about the flow of information amongst the applications inside the E-firewall. | en |
dc.format.extent | 176962 bytes | |
dc.format.mimetype | application/pdf | |
dc.identifier.uri | http://hdl.handle.net/1853/5917 | |
dc.language.iso | en_US | |
dc.publisher | Georgia Institute of Technology | en |
dc.relation.ispartofseries | CRECS;GIT-CERCS-04-28 | |
dc.subject | Firewalls | en |
dc.subject | E-firewall | en |
dc.subject | Malicious communication channel | en |
dc.subject | Data fields | en |
dc.subject | Policy based systems | en |
dc.subject | Eraser | en |
dc.title | Eraser: An Exploit - Specific Monitor to Prevent Malicious Communication Channel | en |
dc.type | Text | |
dc.type.genre | Technical Report | |
dspace.entity.type | Publication | |
local.contributor.corporatename | Center for Experimental Research in Computer Systems | |
local.relation.ispartofseries | CERCS Technical Report Series | |
relation.isOrgUnitOfPublication | 1dd858c0-be27-47fd-873d-208407cf0794 | |
relation.isSeriesOfPublication | bc21f6b3-4b86-4b92-8b66-d65d59e12c54 |