The Implementation of Passive Covert Channels in the Linux Kern


Introduction The goal of this paper is to describe the idea of so called passive covert channels (PCC), which might be used by malware to leak information from the compromised hosts. This idea has been implemented in a proof-of-concept tool, called NUSHU. The primary goal of the PCC is to be as stealth as possible by not generating its own traffic at all. To be actually useful PCC should be combined with some kind of password sniffer or other information gathering software running on the compromised host.

Extracted Key Phrases

8 Figures and Tables


Citations per Year

62 Citations

Semantic Scholar estimates that this publication has 62 citations based on the available data.

See our FAQ for additional information.

Cite this paper

@inproceedings{Rutkowska2004TheIO, title={The Implementation of Passive Covert Channels in the Linux Kern}, author={Joanna Rutkowska}, year={2004} }