欢迎访问中国科学院大学学报,今天是

中国科学院大学学报 ›› 2013, Vol. 30 ›› Issue (3): 403-409.DOI: 10.7523/j.issn.1002-1175.2013.03.019

• 计算机科学 • 上一篇    下一篇

若干新型数据库隐蔽信道应用场景研究

田雪, 徐震, 陈驰   

  1. 中国科学院信息工程研究所信息安全国家重点实验室, 北京 100093
  • 收稿日期:2012-04-24 修回日期:2012-06-20 发布日期:2013-05-15
  • 通讯作者: 田雪, tianxue@iie.ac.cn
  • 基金资助:

    国家自然科学基金(61003228)、新疆维吾尔自治区科技计划项目(201230121)和中国科学院先导专项课题(XDA06010701)资助 

Study on usage scenarios of several new database covert channels

TIAN Xue, XU Zhen, CHEN Chi   

  1. State Key Laboratory of Information Security, Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100093, China
  • Received:2012-04-24 Revised:2012-06-20 Published:2013-05-15

摘要:

针对隐蔽信道威胁高安全等级数据库系统机密性的问题,从隐蔽信道实现场景入手,总结归纳数据库系统中已知的隐蔽信道. 通过提出新型的数据库隐蔽信道分类方法,对隐蔽信道的形成机制进行研究,首次提出几类新发现的数据库隐蔽信道. 此外,在基于不同DBMS的数据库系统中实际构建典型的隐蔽信道,并对其进行对比分析,标识出实现缺陷所导致隐蔽信道存在的可能性.

关键词: 隐蔽信道, 高安全等级数据库, 存储隐蔽信道, 时间隐蔽信道

Abstract:

Covert channel poses a threat to the confidentiality of high-level security databases. We study and summarize existing database covert channels based on the scenarios of use and propose a new method to classify database covert channels and to study their formation mechanisms. We propose several new constructing methods of database covert channels. In databases based on different DBMS we construct typical covert channels in real. The results of the comparative analysis show the possibility of the presentence of covert channels which are caused by the implementation defect.

Key words: covert channel, high-level security database, covert storage channel, covert timing channel

中图分类号: