摘要： 基于网络协议的隐蔽通道技术对网络信息系统的安全构成严重威胁，掌握基于DNS协议隐蔽通道的工作原理，对于制定针对性的网络安全防范措施，保护网络系统安全具有重要意义。为此，提出一种基于DNS协议的隐蔽通道技术。DNS系统作为网络关键基础设施的核心地位，有效保证通道的穿透能力和隐蔽性。介绍DNS系统的结构和工作原理，研究基于DNS协议隐蔽通道的基本方法及其实用化的数据编码、躲避检测、可靠通信、速率控制等关键技术。分析结果表明，该技术具有可靠性好、隐蔽性强、通信效率高等特点。

关键词: 隐蔽通道, DNS协议, 数据编码, 躲避检测, 原理分析, 性能分析

Abstract: The development of protocol covert tunnel technology threatens the security of network information system. Mastering the principle of covert tunnel based on DNS protocol is very important to design aimed measures for network system security. On the basis of this, this paper proposes a kind of covert tunnel technology based on DNS protocol. The technology utilizes the kernel standing of DNS system as network infrastructure, which can penetrate security defense policy covertly. The structure and principle of DNS system are introduced briefly. The principle and key technologies such as data encoding, evading detection, communication reliably, speed control are studied. Analysis results show that the technology has well reliability, strong coverture and high communication efficiency.

Key words: covert tunnel, DNS protocol, data encoding, evading detection, principle analysis, performance analysis

中图分类号: 

• TP309