Covert Channel Forensics on the Internet: Issues, Approaches, and Experiences

The exponential growth of the Internet (WWW in particular) has opened-up several avenues for covert channel communication. Steganographic communication is one such avenue. Hiding secret messages in digital data such as images using steganographic software tools is becoming easier. These digital images posted in public Web sites can then be downloaded at the receiver and the hidden messages may be extracted securely. To thwart covert channels on the Internet new types of search engines that can identify, detect and track these channels are necessary. Traditional search algorithms will fail to identify these channels. In this paper, we discuss various key issues involved in developing a stego (forensic) Web search engine. We also propose approaches to address some of these issues. Finally, we discuss a prototype forensic search engine that we developed called STEALTH and discuss in detail its architecture. Some experimental results are also reported.

[1]  Butler W. Lampson,et al.  A note on the confinement problem , 1973, CACM.

[2]  Alfred Glossbrenner,et al.  Google and Other Search Engines , 2004 .

[3]  J. Andel Sequential Analysis , 2022, The SAGE Encyclopedia of Research Design.

[4]  P. S. Tasker,et al.  DEPARTMENT OF DEFENSE TRUSTED COMPUTER SYSTEM EVALUATION CRITERIA , 1985 .

[5]  Gustavus J. Simmons,et al.  The Prisoners' Problem and the Subliminal Channel , 1983, CRYPTO.

[6]  Rajarathnam Chandramouli,et al.  A mathematical framework for active steganalysis , 2003, Multimedia Systems.

[7]  Michèle Basseville,et al.  Detection of abrupt changes , 1993 .

[8]  Rafael Alonso,et al.  SmartSearch steganalysis , 2003, Security and Watermarking of Multimedia Contents.

[9]  Rajarathnam Chandramouli,et al.  Active steganalysis of sequential steganography , 2003, IS&T/SPIE Electronic Imaging.

[10]  Rajarathnam Chandramouli Web search steganalysis: some challenges and approaches , 2004, 2004 IEEE International Symposium on Circuits and Systems (IEEE Cat. No.04CH37512).