Engineering Transactions, 58, 1-2, pp. 75–89, 2010

Sending hidden data through WWW pages: detection and prevention Engineering

L. POLAK
Warsaw University of Technology, Institute of Telecommunications, Warszawa
Poland

Z. KOTULSKI
Institute of Fundamental Technological Research Polish Academy of Sciences, Warszawa
Poland

In the paper we propose a method of detecting and removing a hidden content which could be sent through the HTML code of WWW pages. We start from the overview of known methods of inserting hidden data to the mark-up languages (HTML or XML)-written texts. Next we propose a method of detecting suspicious web pages, based on statistical analysis. We also propose the method of transforming the HTML code of the web pages to remove any hidden communication.
Keywords: steganography; steganalysis; HTML; internet security; data hiding
Full Text: PDF
Copyright © Polish Academy of Sciences & Institute of Fundamental Technological Research (IPPT PAN).

References

A. Brainos, A Study of Steganography and the Art of Hiding Information, Security Writer, 2004.

J. R. Krenn, Steganography and Steganalysis (January 2004), http://www.krenn.nl/univ/cry/steg/article.pdf (last visited: 04.2010).

F. A. P. Petitcolas, R. J. Anderson, and M. G. Kuhn, Information Hiding. A Survey, Proceedings of the IEEE, 87, 7, 1062–1078, July 1999.

T. G. Handel and M. T. Sandford II, Hiding Data in the OSI Network Model, Information Hiding, LNCS 1174, pp. 23–28, Springer Berlin, 1996.

N. F. Johnson and S. Katzenbeisser, A Survey of Steganographic Techniques, Information Hiding: Techniques for Steganography and Digital Watermarking, pp. 43–75, Artech House, 1999.

HTML standard specification, http://www.w3.org/TR/html4/ (last visited: 04.2010).

XML standard specification, http://www.w3.org/TR/REC-xml/ (last visited: 04.2010).

A. G. Memon, S. Khawaja, and A. Shah, Steganography: A New Horizon for Safe Communication through XML, Pakistan Journal of Theoretical and Applied Information Technology, 4, 3, 187–202, March 2008.

D. Goodman, Dynamic HTML: The Definitive Reference, Second Edition, OReilly & Associates, Inc., 2002.

S. Inoue, K. Makino, I. Murase, O. Takizawa, T. Matsumoto, and H. Nakagawa, A Proposal on Information Hiding Methods using XML (2001), http://takizawa.ne.jp/nlp−xml.pdf (last visited: 04.2010).

J. Corinna, Steganography 13 – Hiding binary data in HTML documents, http://www.codeproject.com/csharp/steganodotnet.asp (last visited: 04.2010).

S. Forrest, Introduction to Deogol, http://wandership.ca/projects/deogol/ (last visited: 04.2010)

M. Shirali Shahreza, New Method for Steganography in HTML Files, Advances in Computer, Information, and Systems Sciences, and Engineering, Proceedings of IETA 2005, TeNe 2005 and EIAE 2005, pp. 247–252, Springer Netherlands, 2006.