Which statement best describes a covert channel as used in cybersecurity?

Study for the EC-Council Certified Ethical Hacker (CEH) v13 Exam. Utilize flashcards and multiple-choice questions with helpful hints and detailed explanations. Excel in your exam preparation!

Multiple Choice

Which statement best describes a covert channel as used in cybersecurity?

Explanation:
Covert channels are hidden paths used to transfer information in ways that were not intended by the system’s security design. The essence is that the communication occurs outside the normal, approved channels and for purposes that the policy does not authorize. That’s why the correct statement is about a method of communication being used for a purpose it wasn’t intended for—the transfer itself violates the intended use of the system’s resources. In practice, covert channels can take a few forms, such as storage channels—where one process writes to a resource in a way another process can observe (for example, using file attributes or shared resources in an unintended manner)—or timing channels—where the timing of events leaks information. The important point is not whether the channel is encrypted; encryption is orthogonal to whether a channel is covert. An officially sanctioned channel can be encrypted and still be legitimate, while a covert channel is any communication path that bypasses the system’s intended information-flow controls.

Covert channels are hidden paths used to transfer information in ways that were not intended by the system’s security design. The essence is that the communication occurs outside the normal, approved channels and for purposes that the policy does not authorize. That’s why the correct statement is about a method of communication being used for a purpose it wasn’t intended for—the transfer itself violates the intended use of the system’s resources.

In practice, covert channels can take a few forms, such as storage channels—where one process writes to a resource in a way another process can observe (for example, using file attributes or shared resources in an unintended manner)—or timing channels—where the timing of events leaks information. The important point is not whether the channel is encrypted; encryption is orthogonal to whether a channel is covert. An officially sanctioned channel can be encrypted and still be legitimate, while a covert channel is any communication path that bypasses the system’s intended information-flow controls.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy