The Dilemma of Covert Channels Searching
- 993 Downloads
Covert channel is a famous drawback exists in most of multilevel security systems. Both TESEC and CC standards need covert channel analysis when secure software tries to get the certification of some security levels, i.e. B2 and EAL5 or above in TCSEC and CC, respectively. Search method is one of the most important works with ad hoc characters in covert channels analysis. Though some semi auto tools have been built, peoples who work in this area are eager to develop an auto search tool to find all of covert channels since it was first known in 1973. This paper proves that willingness is a kind of undecidable problems, by which illustrates it’s impossible to build a program which can identify all of covert channels in a security computer system automatically.
Unable to display preview. Download preview PDF.
- 4.Wang, C., Ju, S.: Searching Covert Channels by Identifying Malicious Subjects in the Time Domain. In: 5th IEEE Information Assurance Workshop, U.S.A, June 9-11, 2004, pp. 68–73 (2004)Google Scholar
- 5.Wang, C., Ju, S.: The minimum criteria of covert channels existence and its application. Journal of Computer Science 32(1), 77–79 (2005)Google Scholar
- 8.Tsai, C.R., Gligor, V.D., Chandersekaran, C.S.: A formal method for the identification of covert storage channels in source code. In: 1987 IEEE Symposium on Security and Privacy, Oakland, CA, pp. 74–86. IEEE Computer Society Press, Los Alamitos (1987)Google Scholar