Detection of Illegal Information Flow
Several types of statistical covert channels that break the informational system security policy ensuring a reliable information transfer between hostile agents can be detected by a competent warden. We introduce the basic detection technique and analyze the conditions under which the warden with limited resources can perform his task successfully.
KeywordsProbability Measure Topological Space Intrusion Detection Inverse Image Intrusion Detection System
Unable to display preview. Download preview PDF.
- 2.Axelson, S.: The Base-Rate Fallacy and its Implications for the Difficulty Of Intrusion Detection. In: Proc. of the 6th Conference on Computer and Communications Security (November 1999)Google Scholar
- 3.Grusho A.: Consistent revelation conditions for rare events search a sample from the uniform distribution. In: Probabilistic problems of discrete mathematic. Moscow Institute of Electronic mechanical engineering (1987) (in Russian)Google Scholar
- 4.Denning, D.: An Intrusion Detection Model. In: Proceedings of the IEEE Symposium on Security and Privacy, pp. 119–131 (May 1986)Google Scholar
- 5.Lee, W., Xiang, D.: Information-Theoretic Meaasures for Anomaly Detection. In: IEEE Symposium on Security and Privacy, pp. 130–143 (2001)Google Scholar
- 6.Prokhorov, U.V, Rozanov, U.A.: Theory of probabilities. Science, Moscow (1973) (in Russian)Google Scholar
- 7.Timonina, E.E.: The covert channels (review). Jet Info 14(114), 3–11 (2002) (in Russian) Google Scholar
- 8.Vaxania, N.N., Tarielidze, V.I., Chobanian, S.A.: Probability distributions in Banach spaces. Moscow (1985) (in Russian)Google Scholar