Re: Anti-spyware at the Gateway
Available news archives: comp.lang.tcl - comp.lang.python - comp.security.firewalls - sci.crypt - comp.lang.php - comp.lang.javascript
Google
 
Web news.hping.org


comp.security.firewalls archive

Re: Anti-spyware at the Gateway

From: Volker Birk <bumens@dingens.org>
Date: Tue Mar 14 2006 - 13:51:21 CET



Sebastian Gottschalk <seppi@seppig.de> wrote:


> >> Using public key cryptography one can create a tunnel


> >> that provably can't be differed from a normal session ID transfer.


> > And knowing how it is done means being able to detect.


> Assuming the session ID transfer is a fully normal and trusted activtiy


> (f.e. logging in at nytimes.com and reading some articles)and the


> session ID is a pseudorandom value, you can create a covert channel with


> bandwidth efficiency 1/n that is as hard to detect as it is to break


> either a chosen n-bit symmetric cipher or RSA of any length.



Assuming you know all this and all the keys, you can detect.



Yours,


VB.



-- 
At first there was the word. And the word was Content-type: text/plain


Received on Mon May  1 00:57:32 2006