nerdexam
Exams312-50V10Questions#646
EC-Council

312-50V10 · Question #646

312-50V10 Question #646: Real Exam Question with Answer & Explanation

The correct answer is B: Making use of a protocol in a way it is not intended to be used.. A covert channel is a communication mechanism that transfers information in ways not intended by the system's designers, typically by abusing legitimate protocols to bypass security controls.

Question

Which definition among those given below best describes a covert channel?

Options

  • AA server program using a port that is not well known.
  • BMaking use of a protocol in a way it is not intended to be used.
  • CIt is the multiplexing taking place on a communication link.
  • DIt is one of the weak channels used by WEP which makes it insecure.

Explanation

A covert channel is a communication mechanism that transfers information in ways not intended by the system's designers, typically by abusing legitimate protocols to bypass security controls.

Common mistakes.

  • A. A server using a non-standard or unknown port is simply an uncommon service configuration and does not involve misusing a protocol's intended function to covertly transfer information.
  • C. Multiplexing is a standard, intentional technique for sharing bandwidth across multiple signals on a communication link and has no relation to covert information transfer.
  • D. WEP's insecurity is caused by weak initialization vectors and flawed RC4 key scheduling, not by any concept related to covert channels.

Concept tested. Covert channel definition and protocol misuse

Reference. https://csrc.nist.gov/glossary/term/covert_channel

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 312-50V10 Practice