312-50V13 · Question #100
Which definition among those given below best describes a covert channel?
The correct answer is B. Making use of a protocol in a way it is not intended to be used.. A covert channel exploits a system resource or communication protocol in a way not intended by its design to transfer information in a hidden manner.
Question
Options
- AA server program using a port that is not well known.
- BMaking use of a protocol in a way it is not intended to be used.
- CIt is the multiplexing taking place on a communication link.
- DIt is one of the weak channels used by WEP which makes it insecure
How the community answered
(28 responses)- A4% (1)
- B96% (27)
Why each option
A covert channel exploits a system resource or communication protocol in a way not intended by its design to transfer information in a hidden manner.
Using a non-standard or 'not well-known' port for a server program is port obscurity, not inherently a covert channel, as the port is still a legitimate communication endpoint.
A covert channel is a communication path that is not designed or intended to transfer information but can be used for that purpose. This often involves manipulating existing protocols or system features outside their normal operating parameters to surreptitiously exfiltrate data or establish hidden communication.
Multiplexing is a standard technique for combining multiple signals or data streams over a shared medium, which is a normal function of communication links, not a covert channel.
WEP's insecurity stems from weak cryptographic algorithms and key management issues, not from 'weak channels' that constitute a covert channel in the general security definition.
Concept tested: Covert channel definition
Source: https://learn.microsoft.com/en-us/azure/security/fundamentals/glossary-z
Topics
Community Discussion
No community discussion yet for this question.