CN103841031A - Hidden information transmission method based on IGMPv3 - Google Patents

Hidden information transmission method based on IGMPv3 Download PDF

Info

Publication number
CN103841031A
CN103841031A CN201410097597.6A CN201410097597A CN103841031A CN 103841031 A CN103841031 A CN 103841031A CN 201410097597 A CN201410097597 A CN 201410097597A CN 103841031 A CN103841031 A CN 103841031A
Authority
CN
China
Prior art keywords
data
router
message
query message
igmpv3
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201410097597.6A
Other languages
Chinese (zh)
Other versions
CN103841031B (en
Inventor
黄刘生
马睿
沈瑶
陆潇榕
杨威
缪海波
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Suzhou Institute for Advanced Study USTC
Original Assignee
Suzhou Institute for Advanced Study USTC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Suzhou Institute for Advanced Study USTC filed Critical Suzhou Institute for Advanced Study USTC
Priority to CN201410097597.6A priority Critical patent/CN103841031B/en
Publication of CN103841031A publication Critical patent/CN103841031A/en
Application granted granted Critical
Publication of CN103841031B publication Critical patent/CN103841031B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Abstract

The invention discloses a hidden information transmission method based on an IGMPv3. A router converts original data into a binary bit stream as a sender, every 8 bits are extracted in sequence as a set of bit set Oa to be transmitted, information hiding is carried out through the max response code, a host receives the query message of the router as a receiver, and the value N of a max response code field is taken out of the received query message. The defect that the information hiding detection resistance in an IGMPv2 is too low is overcome, and therefore the aim of transmitting hidden information is achieved.

Description

Based on the transmission method that hides Info of IGMPv3
Technical field
The invention belongs to field of network communication, particularly, in broadcast group broadcast field, be specifically related to a kind of transmission method that hides Info based on IGMPv3, specifically refer to and utilize Information Hiding Techniques, hidden information is embedded in IGMPv3 message, thereby reaches the object that realizes transmission hidden information.
Background technology
IGMP:Internet Group Management Protocol (Internet igmpinternet) Internet igmpinternet (IGMP) is a multicast protocol in Internet Protocol family, their the group membership's situation of router report for IP main frame to any direct neighbor.It has stipulated how the main frame in different segment carries out multi-casting communication, and its precondition is that router itself will be supported multicast.IGMP has three kinds of versions, i.e. IGMP v1, v2 and v3.
By each Research Literature, as Lin Yusong, " the Internet Group Management Protocol IGMP research " of Wang Rong and Wang Zongmin, Wang Jun, " multicast protocol on switching Ethernet " of Wu Zhimei is known, by analyzing message protocol form, in IGMPv1 message, not having can be for hiding region, and by Hua Yuanbin, known in " based on the convert channel of IGMPv2 " literary composition of Jiang Jianchun and minister in ancient times's Si Chinese, in IGMPv2 message, can be used for realizing convert channel with the value field Value of maximum response time (Max Response Time) and Route alert option, pass through series of algorithms, the information of needs transmission is processed, be bundled to maximum response time field, realize the transmission of hidden channel.But simultaneously the document also proposes, be unwanted at main frame to maximum response time in the message of router, be conventionally made as 0, conventionally be also made as 0 at router to the value field of Route alert option in the message of main frame, so if carry hidden information, anti-detection is too low.Meanwhile, indivedual main frames send message message to router continually, will unavoidably reduce anti-detection, and the present invention therefore.
Summary of the invention
The object of the invention is to provide a kind of transmission method that hides Info based on IGMPv3, has solved in prior art IGMP v1, the v2 defects such as the anti-detection of transmission is low that hide Info.
In order to solve these problems of the prior art, technical scheme provided by the invention is:
Based on the code sending method that hides Info of IGMPv3, it is characterized in that described method, for the transfer of data between router and main frame, comprises the following steps:
(1) router converts initial data to binary bit stream as transmit leg, and in order extract, every 8 as one group of hyte O waiting for transmission, all groupings, sort according to raw information order;
(2) polling interval code in each hyte waiting for transmission and query message is carried out to XOR, form data K;
(3) by front four V of data K 1with rear four V 2carry out high-low-position exchange, by K=V 1v 2middle V 1, V 2exchange, obtains new data N=V 2v 1;
(4) by N=V 2v 1embed in message peak response code field, then router sends message to main frame; So circulate until former data are sent.
Preferred technical scheme is: in described method, original data transaction becomes after binary bit stream, if the figure place of binary bit stream is not 8 multiple, last hyte O mends 0 at low level, 8 of polishings; Otherwise without carrying out polishing operation.
Another object of the present invention is to provide a kind of and secret information code sending method receive decoding method that hides Info based on IGMPv3 accordingly, it is characterized in that described method, for the transfer of data between router and main frame, comprises the following steps:
(1) main frame is as the query message of recipient's receiving router, and from the query message of receiving, takes out the value N of peak response code field;
(2) first four and latter four of the numerical value of N obtaining are exchanged, obtain data K;
(3) the polling interval code (QQIC) of K and query message is carried out to an XOR, the hyte O obtaining;
(4) hyte O order being received is spliced to form initial data.
The present invention, in the up-to-date v3 version of IGMP multicast protocol, will utilize maximum response time (Max Response Code) to carry out Information hiding, overcome the above-mentioned too low shortcoming of anti-detection in IGMPv2, thereby reach the object of transmission hidden information.
The present invention seeks to propose a kind of method that realizes convert channel in multicast, hidden data can be transmitted between router and PC end, thereby realize the object that realizes Information hiding in multicast mode.
Technical solution of the present invention is utilized Information Hiding Techniques, and the maximum response time (Max Response Code) to multicast router query message carries out Information hiding, thereby reaches the object of transmission hidden information.
Basic process: in the query message of multicast router, peak response code field (Max Response Code) specifies in and sends the maximum time allowing before a response report.The actual time allowing, is called as maximum response time, and its unit is 1/10 second.The minimum value of maximum response time allows IGMPv3 router to regulate " leaving delay " (that time point that last main frame leaves broadcast group is informed to that time point that does not have member, time difference between the two with Routing Protocol).Larger value, the especially value in index range, can regulating networks in the blast of IGMP flow.But in the message from router to main frame, main frame is ignored this field.Carry out covert communications therefore can utilize peak response code field.
Be illustrated in figure 1 the coding flow process that adopts the technical program; In said process, the embedding of the Information hiding of each group and extracting method specific descriptions are as follows, and each group is all according to said method carried out:
Upper at transmit leg (router):
1) former data will be transmitted to data binary bit stream and represent, and in order extract, every 8 as one group of hyte O waiting for transmission, all groupings, sort according to raw information order.
2) the polling interval code (QQIC) in this group numerical value O and query message is carried out to an XOR, obtain data K.
3) K is divided into front four V 1with rear four V 2, i.e. K=V 1v 2by V 1, V 2exchange, obtains new data N=V 2v 1.
Can adopt the algorithm of following steps:
1.Input:S;
Compute:O=S[8], be divided into eight one group of O transmitting data data S;
Output:O;
2.Input:O;
Compute:K=(O) XOR (QQIC), by initial data O and the processing of QQIC field XOR, establishing K is enciphered data;
Output:K。
3.Let:K==V 1V 2
Compute:V 1>>4, V 2<<4, four exchanges of height;
Output:N=V 2V 1
4.Let:Max Response Code=N, embeds N in message peak response code field;
Output:message, sends message;
5.O=O->next; Process next group octet data.
Be illustrated in figure 2 the decoding process that adopts technical solution of the present invention, all adopt the method to carry out for each hyte equally;
Upper recipient (PC):
1) from the query message of receiving, take out the value N of peak response code field (Max Response Code).
2) by front four and rear four exchanges of the numerical value of N obtaining, obtain data K.
3) the polling interval code (QQIC) of K and query message is carried out to an XOR, the initial data O obtaining.
Algorithm:
1.Get:Max Response Code, obtains peak response code numerical value in query message;
Let:N=Max Response Code, gives N value;
Output:N。
2.Let:N==V 1V 2
Compute:V 1>>4, V 2<<4, K=V 2v 1, four exchanges of height, obtain enciphered data K;
Output:K。
3.Input:K
Compute:O=(K) XOR(QQIC), by K and QQIC position phase XOR, obtain O;
Output:O。
4.N=N->next; The Max Response Code in next group message is accepted in wait;
All groups accepted after, i.e. reducible raw information.
Above algorithm symbol description is in table 1.
Table 1 symbol description
Symbol Explanation Symbol Explanation
O The binary numeral of initial data >> Right shift
V 1 First four of the binary numeral of initial data << To shifting left
V 2 Latter four of the binary numeral of initial data XOR Position XOR
K Four new binary numerals that obtain before and after exchange == Equal
N After encryption, the binary numeral transmitting in channel = Assignment
With respect to scheme of the prior art, advantage of the present invention is:
(1) under the prerequisite of assurance and the suitable network quality of prior art, proposed to carry out Information hiding for up-to-date IGMPv3 multicasting technology, also there is no corresponding detection scheme at present.
(2) cast communication, router one direction sends hidden information to PC end, has avoided monitoring the outstanding detection method of individual communication flow in multicast.
(3) method is simple, do not increase extra computation complexity.
Accompanying drawing explanation
Below in conjunction with drawings and Examples, the invention will be further described:
Fig. 1 is the code sending method flow chart that hides Info based on IGMPv3;
Fig. 2 is the receive decoding method flow chart that hides Info based on IGMPv3;
Fig. 3 is the PIM-SSM(IGMPv3 that the embodiment of the present invention adopts) instance model Organization Chart.
Embodiment
Below in conjunction with specific embodiment, such scheme is described further.Should be understood that these embodiment are not limited to limit the scope of the invention for the present invention is described.The implementation condition adopting in embodiment can be done further adjustment according to the condition of concrete producer, and not marked implementation condition is generally the condition in normal experiment.
Embodiment
The present embodiment, in order fully to disclose content of the present invention, illustrates availability of the present invention, before introducing invention specific implementation method, and the message of paper IGMPv3.
In IGMPv3, be divided into two kinds of query message and report messages, wherein query message form is as shown in table 2:
Table 2IGMPv3 query message form
Figure BDA0000477773520000051
Figure BDA0000477773520000061
Wherein, the field that the present invention will use has following components.
Peak response code (Max Response Code): peak response code field specifies in and sends the maximum time allowing before a response report.The actual time allowing, is called as maximum response time, and its unit is 1/10 second.
Group address (Group Address): in the time sending a common inquiry, group address field must be set to 0.In the time sending a designated groups inquiry or send the inquiry in a designated groups and source, must be configured to the IP group address that will be queried.
Inquiry's polling interval code (QQIC): QQIC, the polling interval time, unit is second.The polling interval that inquiry's polling interval code field given query person uses.Actual interval, is called inquiry's polling interval (QQI), represents in seconds.
The current multicast router for non-inquiry is got QQI value [polling interval] value as oneself from the inquiry of receiving recently, unless received that recently QQI is 0, in this case, receiving router uses default polling interval value.
Query messages has the variant of three types:
1, " common inquiry " sent by multicast router, for knowing in abutting connection with the complete multicast reception state of interface (i.e. inquiry transmit the connected interface of network).In a common inquiry, group address field and source quantity (N) field are all 0.
2, " designated groups inquiry " sent by a multicast router, for knowing in abutting connection with interface with the relevant multicast reception state in some IP address.In designated groups inquiry, that group address that " group address " field contains needs inquiry, source quantity (N) field is 0.
Whether 3, " designated groups and source inquiry " sent by a multicast router, need to receive from these sources of specifying for knowing in abutting connection with interface, mails to the multi-case data report of designated groups.In the inquiry in a designated groups and source, group address field contains the multicast address that will inquire about, and source address [i] field contains relevant source address.
The present invention will utilize maximum response time (the Max Response Code) field in query message to carry out Information hiding, thereby reaches the object of transmission hidden information.This field is by multicast router control, and non-reception PC can ignore this field while receiving message.
Along with the fourth-largest operator of China---listing of radio and television national network is in sight, it is more and more extensive that multicasting technology will be applied, in television network broadcast, conventionally use PIM-SSM technology, SSM is Source-Specific Multicast, source-specific multicast.Need to use multicast group address and multicast source address, identify a multicast conversation simultaneously.SSM model need to carry out the relation between maintenance host and router by the cooperation of IGMPv3.Model as shown in Figure 3, is PIM-SSM(IGMPv3) application example.
In above case, can realize and set up hidden channel by the present invention, realize the object of Information hiding.As the router of carrying out IGMPv3 agreement is wanted to send when hidden information to Host A:
Transmit leg:
In the normal route processing software of router side, add following hidden data processing code.
Step 1: in router side, the data of needs transmission are represented by binary bit stream, be divided into 8 one group.All groupings are sorted by the original order of information.Because being from above-mentioned message brief introduction, maximum response time (Max Response Code) field is 8, is encrypted operation so the data that will transmit are taken out to every 8 bits.
Step 2: by the QQIC field in bit stream O and the query message of needs transmission, carry out an XOR, obtain K.K=(O)XOR(QQIC)。The object of this step is transmission data to carry out simple encryption, and anti-detection is improved greatly.
Step 3: by 4 exchanges of the height of the bit value K obtaining, K==V 1v 2; V 1>>4; V 2<<4; N=V 2v 1, to guarantee that amended numerical value of N meets the rule of message maximum response time (Max Response Code) field.
Step 4: amended N is embedded in Max Response Code field to verification and the Check Sum field of rerunning in query message.Then consign to receiving terminal PC.
Recipient:
In receiving terminal (PC), design separately packet parsing software, replace original analysis mode, the data of receiving are monitored.
Step 1: extract maximum response time (the Max Response Code) field in query message, obtain eight-digit binary number data N.
Step 2: analyze the eight-digit number value N extracting, determine whether to contain implicit information, and concealed data are accurately accepted.
Step 3: 4 exchanges of height of the data N obtaining, N==V 1v 2; V 1>>4; V 2<<4; K=V 2v 1, obtain binary numeral K.
Step 4: by the QQIC field in the binary numeral K obtaining and query message, carry out an XOR, obtain initial data O.O=(K)XOR(QQIC)。
Utilize existing platform simulation to test out to obtain experimental data as shown in table 3 according to above step:
Table 3 test data of the present invention
Sequence number Data type Size (Byte) Transmission duration (ms) Transmission rate (B/s)
1 1.txt 3,345 48563 68.88
2 2.doc 77,824 1112248 69.97
3 3.jpg 876,544 12516963 70.03
4 4.exe 8,265,728 114626654 72.11
5 5.mp3 3,768,320 52171120 72.23
Visible by above-mentioned analysis, the present invention has good secret protection effect.Adopt after the present invention, make the convert channel on router that hidden data can be transmitted between router and PC end.Thereby realize the object that realizes Information hiding in multicast mode.Be particularly suitable for the unified hidden information that sends to one group of user.Therefore, the present invention is particularly suitable for foundation and the transmission hidden information based on the hidden channel of multicast.As can be seen here, the present invention has substantive technical characterstic and significant technological progress, and its application prospect is boundless.
Above-described embodiment is only explanation technical conceive of the present invention and feature, and its object is to allow person skilled in the art can understand content of the present invention and implement according to this, can not limit the scope of the invention with this.All equivalent transformations that Spirit Essence does according to the present invention or modification, within all should being encompassed in protection scope of the present invention.

Claims (3)

1. the code sending method that hides Info based on IGMPv3, is characterized in that described method, for the transfer of data between router and main frame, comprises the following steps:
(1) router converts initial data to binary bit stream as transmit leg, and in order extract, every 8 as one group of hyte O waiting for transmission, all groupings, sort according to initial data order;
(2) polling interval code in hyte waiting for transmission and query message is carried out to XOR, form data K;
(3) by front four V of data K 1with rear four V 2carry out high-low-position exchange, by K=V 1v 2middle V 1, V 2exchange, obtains new data N=V 2v 1;
(4) by N=V 2v 1embed in message peak response code field, then router sends message to main frame; So circulate until former data are sent.
2. method according to claim 1, is characterized in that in described method, original data transaction becomes after binary bit stream, if the figure place of binary bit stream is not 8 multiple, last hyte O mends 0 at low level, 8 of polishings; Otherwise without carrying out polishing operation.
3. with the corresponding receive decoding method that hides Info based on IGMPv3 of claim 1, it is characterized in that described method, for the transfer of data between router and main frame, comprises the following steps:
(1) main frame is as the query message of recipient's receiving router, and from the query message of receiving, takes out the value N of peak response code field;
(2) first four and latter four of the numerical value of N obtaining are exchanged, obtain data K;
(3) the polling interval code (QQIC) of K and query message is carried out to an XOR, the hyte O obtaining;
(4) hyte O order being received is spliced to form initial data.
CN201410097597.6A 2014-03-17 2014-03-17 hidden information transmission method based on IGMPv3 Expired - Fee Related CN103841031B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410097597.6A CN103841031B (en) 2014-03-17 2014-03-17 hidden information transmission method based on IGMPv3

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201410097597.6A CN103841031B (en) 2014-03-17 2014-03-17 hidden information transmission method based on IGMPv3

Publications (2)

Publication Number Publication Date
CN103841031A true CN103841031A (en) 2014-06-04
CN103841031B CN103841031B (en) 2017-01-18

Family

ID=50804180

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410097597.6A Expired - Fee Related CN103841031B (en) 2014-03-17 2014-03-17 hidden information transmission method based on IGMPv3

Country Status (1)

Country Link
CN (1) CN103841031B (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050094670A1 (en) * 2003-08-20 2005-05-05 Samsung Electronics Co., Ltd. Method for acquiring header compression context in user equipment for receiving packet data service
CN101635724A (en) * 2009-06-30 2010-01-27 中兴通讯股份有限公司 Method and system for realizing multicast member authentication
CN101827000A (en) * 2010-04-28 2010-09-08 北京天地互连信息技术有限公司 Consistency testing method of second version of multicasting interception discovery protocol

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050094670A1 (en) * 2003-08-20 2005-05-05 Samsung Electronics Co., Ltd. Method for acquiring header compression context in user equipment for receiving packet data service
CN101635724A (en) * 2009-06-30 2010-01-27 中兴通讯股份有限公司 Method and system for realizing multicast member authentication
CN101827000A (en) * 2010-04-28 2010-09-08 北京天地互连信息技术有限公司 Consistency testing method of second version of multicasting interception discovery protocol

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
李卫平,党琦,白大明: "《IGMP V3协议研究与实现》", 《飞行器测控学报》 *

Also Published As

Publication number Publication date
CN103841031B (en) 2017-01-18

Similar Documents

Publication Publication Date Title
CN102598616B (en) Method of realizing group broadcasting, device and system
EP4271121A3 (en) Method and apparatus for multiple registrations
CN105792190B (en) Data encryption, decryption and transmission method in communication system
EP4290823A3 (en) Method and system for reducing message signaling
CN105450644A (en) Secret communication method and device based on multi-application fragmented transmission
WO2017088508A1 (en) Multimedia broadcast and multicast service processing method, network element and system
AU2012208627A1 (en) Authentication of encrypted data blocks
JPWO2016116999A1 (en) Packet transmission device, packet reception device, packet transmission program, and packet reception program
CN103023630B (en) Method for hiding information of speech stream on basis of speech coding by pulse code modulation
CN104393958A (en) Data frame transmitting method and receiving method based on pipelining
CN110098937B (en) Data block associated encryption algorithm based on timestamp
CN111884802A (en) Media stream encryption transmission method, system, terminal and electronic equipment
WO2017024910A1 (en) Flexible ethernet sub-link auto-negotiation method and device
JP2007228292A (en) Station side apparatus, subscriber side apparatus, and pon system
CN107222284B (en) The anti-eavesdropping transmission method of fountain coding based on channel feedback in a kind of Internet of Things
CN103841031A (en) Hidden information transmission method based on IGMPv3
US8553555B2 (en) Methods and apparatus for an efficient multicast file distribution system
EP2991273A2 (en) Methods and systems for auto-commissioning of devices in a communication network
CN107579950B (en) Method for transmitting secret information through social network
Zhao et al. Bandwidth efficient fingerprint multicast for video streaming
CN107947992B (en) Rapid big data communication method
CN101179413A (en) Method and device of generating/processing optical network terminal management control interface information
CN101262302B (en) Rate matching method and system and its execution device
CN101873479B (en) System and method for broadcasting TV programs to mobile terminal
CN106657042A (en) Method and system for obtaining audios and videos of intelligent mobile equipment running iOS system

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20170118

Termination date: 20200317

CF01 Termination of patent right due to non-payment of annual fee