Telecommunications Science ›› 2019, Vol. 35 ›› Issue (9): 85-97.doi: 10.11959/j.issn.1000-0801.2019179

• research and development • Previous Articles     Next Articles

GreyFan:a network attack framework using Wi-Fi covert channel

Dongjie MA1,2,Chengqiang JIN1,2,·uan CHEN1,2,Tieming CHEN1,2,3   

  1. 1 College of Computer Science and Technology,Zhejiang University of Technology,Hangzhou 310023,China
    2 Zhejiang Innovation Center of Cyberspace Security,Hangzhou 310023,China
    3 Research Center of Industrial Internet,Zhejiang Lab,Hangzhou 311100,China
  • Revised:2019-07-03 Online:2019-09-20 Published:2019-09-30
  • Supported by:
    The National Natural Science Foundation of China(61202282);The National Natural Science Foundation of China(61772026);The Joint Project of National Natural Science Foundation and Zhejiang Provincial Government(U1509214)


For traditional physical attacks such as side channel attacks and HID attacks in real networks,physical isolation is considered to be a relatively complete security protection against network attacks.In 2018,a Wi-Fi hidden channel method in the physical isolation environment——Ghost Tunnel was firstly proposed,that is,in the state that Wi-Fi didn’t connected,the wireless AP could successfully transmit data to the computer that initiates the connection request.An attack framework based on the Ghost Tunnel method——GreyFan was proposed.This attack framework enabled attackers to implement non-aware attacks on users who didn’t connected to Wi-Fi,such as file concealed transmission and arbitrary code execution,etc.The corresponding defense technology was also analyzed.

Key words: HID attack, network isolation, covert channel, GreyFan attack

CLC Number: 

No Suggested Reading articles found!