CAJ | 학술논문

为提高计算机网络的可靠性和抗检测性，提出了一种新型时间式隐蔽信道和一种新型的包间间隔描述方法，该描述方法称为记录式包间间隔。通过采用传输控制协议(TCP)时间戳选项构造记录式包间间隔，进而构造隐蔽信道，采用 TCP 的可靠交付服务和重传机制，提高信道在恶劣网络环境下的传输正确率，小幅改变时间戳并采用熵抚平方法，提高信道的抗检测性。在 TCP/IP 网络下实现了新型时间式隐蔽信道，并通过实验对比其与传统时间式隐蔽信道的可靠性和抗检测性。实验证明，提出的信道在恶劣网络环境下的传输正确率优于传统信道，且足以抵抗熵检测。
위제고계산궤망락적가고성화항검측성，제출료일충신형시간식은폐신도화일충신형적포간간격묘술방법，해묘술방법칭위기록식포간간격。통과채용전수공제협의(TCP)시간착선항구조기록식포간간격，진이구조은폐신도，채용 TCP 적가고교부복무화중전궤제，제고신도재악렬망락배경하적전수정학솔，소폭개변시간착병채용적무평방법，제고신도적항검측성。재 TCP/IP 망락하실현료신형시간식은폐신도，병통과실험대비기여전통시간식은폐신도적가고성화항검측성。실험증명，제출적신도재악렬망락배경하적전수정학솔우우전통신도，차족이저항적검측。
To improve the reliability and detection resistance of computer network,a new type of covert timing channel was proposed.A new type of descriptive method of Inter-Packet-Delay was proposed, named Recording Inter-Packet-Delay.Inter-Packet-Delay and the new channel through the use of transmis-sion control protocol(TCP)timestamp option were constructed.By adopting the reliable delivery service and retransmission mechanism of TCP,the proposed channel can improve the transmission accuracy under harsh network environments.By slightly modifying the timestamp at the same time using entropy shaping method,the proposed channel can make the channel more difficult to be detected.The proposed channel was constructed under transmission control protocol/internet protocol(TCP/IP)network,and compared with the traditional covert timing channel in reliability and detection resistance through experiments.Ex-periments show that the proposed channel performs better than the traditional channel in the transmission accuracy under harsh network environments,and that it is enough to resist entropy based detection as well.