Covert Channel in RTP Payload Using a Pointer in Sip Header
Covert Channel in RTP Payload Using a Pointer in Sip Header
Author(s): Miroslav Voznak, Ivo Zbranek, Miralem Mehic, Dan Komosny, Homero Toral-Cruz, Jerry Chun-Wei LinSubject(s): Communication studies, Methodology and research technology, ICT Information and Communications Technologies
Published by: Žilinská univerzita v Žilině
Keywords: steganography; VoIP; RTP; payload; SIP; pointer;
Summary/Abstract: The paper addresses the issue of hiding data in the network flow. The authors discuss a new proposal of the steganographic approach in IP telephony: transmitting texts using the pointer in the SIP header by means of a data stream within the RTP protocol. This method is based on tagging the binary sequences in payload of the RTP packets, with the individual binary sequences representing individual steganogram characters. Subsequently, the position of the binary sequences is recorded in the SIP header in the Via field and the branch parameter. The proposed way of hidden data transmission cannot be detected by existing anomaly detectors; and does not represent an approach to statistical detection of covert channels. In fact, it is a new contribution to covert communication in ordinary VoIP traffic.
Journal: Komunikácie - vedecké listy Žilinskej univerzity v Žiline
- Issue Year: 18/2016
- Issue No: 1
- Page Range: 40-47
- Page Count: 8
- Language: English