Glavlit: Preventing Exfiltration at Wire Speed
نویسندگان
چکیده
Protecting sensitive data is no longer a problem restricted to governments whose national security is at stake. With ubiquitous Internet connectivity, it is challenging to secure a network – not only to prevent attack, but also to ensure that sensitive data are not released. In this paper, we consider the problem of ensuring that only pre-authorized data leave a network boundary using either overt or covert channels, i.e., preventing exfiltration. We identify the goals of transparency, performance, and simplicity. A system designed to prevent exfiltration should not adversely affect the transfer of authorized data and should work with existing protocols. Key to our approach is: i) separating the process of vetting authorized objects from line-speed data verification; and ii) employing a restricted, but compliant, HTTP subset to limit covert channels. In our evaluation, we show that Glavlit adds little overhead to the operation of a software network bridge.
منابع مشابه
Detection of Malicious and Low Throughput Data Exfiltration Over the DNS Protocol
In the presence of security countermeasures, a malware designed for data exfiltration must do so using a covert channel to achieve its goal. Among existing covert channels stands the domain name system (DNS) protocol. Although the detection of covert channels over the DNS has been thoroughly studied in the last decade, previous research dealt with a specific subclass of covert channels, namely ...
متن کاملEffect of Different Welding Parameters on the Mechanical and Microstructural Properties of Stainless Steel 304H Welded Joints
In this research work, an attempt has been made to examine the different welding parameters which affect the weldability of 304H Austenitic stainless steel (ASS) welded joint using the proper filler wire. Chemical composition of filler wire was same as that of base metal. Further this study addressed the combined effect of various welding parameters on the metallurgical and mechanical propertie...
متن کاملOptimization of gas metal arcwelding parameters of SS304 austenitic steel by Taguchi –Grey relational analysis
This study investigated the optimization of three welding parameters (wire feed speed, arc voltage, and shielding gas flow rate) for SS 304H by using Taguchi based Grey relational analysis. In this research work, pure argon was used as shielding gas. Numbers of trials were performed as per L16 (4xx3) orthogonal array design and the mechanical quality such ultimate tensile strength, microhardnes...
متن کاملData Exfiltration and Covert Channels
Within an organization, the possibility of a confidential information leak ranks among the highest fears of any executive. Detecting information leaks is a challenging problem, since most organizations depend on a broad and diverse communications network. It is not always straightforward to conclude which information is leaving the organization legitimately, and which communications are malicio...
متن کاملA Discretionary Access Control Method for Preventing Data Exfiltration (DE) via Removable Devices
One of the major challenges facing the security community today is how to prevent DE. DE is the unauthorized release of information from a computer system or network of systems. Current methods attempt to address this issue by controlling the information that is released over the Internet. In this paper, we present a host-level discretionary access control method that focuses on exfiltration vi...
متن کامل