Limiting DNS covert channels and network validated DNS

Author

Rex D. McCracken, West Virginia University

Semester

Fall

Date of Graduation

2004

Document Type

Thesis

Degree Type

MS

College

Statler College of Engineering and Mineral Resources

Department

Lane Department of Computer Science and Electrical Engineering

Committee Chair

Roy Nutter.

Abstract

Despite the variety and number of network security devices and policies available, sensitive data, such as intellectual property and business data, can still be surreptitiously sent via the Internet to unscrupulous receivers. Furthermore, few security mechanisms address securing or limiting covert channels. This study defines a framework for determining a rule set to minimize covert channel capacity on the DNS protocol specifically. The information and techniques used in this study may be useful in aiding security professionals and developers with enforcing security policies on DNS and other Internet protocols.;This research resulted in the development of a rudimentary tool, referred to as NV-DNS, capable of detecting and effectively limiting the capability of covert channels in DNS communication packets.

Recommended Citation

McCracken, Rex D., "Limiting DNS covert channels and network validated DNS" (2004). Graduate Theses, Dissertations, and Problem Reports. 1884.
https://researchrepository.wvu.edu/etd/1884