ABC-Channel: An Advanced Blockchain-based Covert Channel
Xiaobo Ma, Pengyu Pan, Jianfeng Li, Wei Wang, Weizhi Meng, Xiaohong Guan
TL;DR
ABC-Channel tackles secure, high-throughput covert communication over public blockchains by combining off-chain contactless negotiation, GAN-based indistinguishable transaction feature masquerading, and dynamic address-based untraceable identities. The approach uses kleptography and subliminal channels to synchronize keys and embed messages, with ECDH-derived chaincode enabling a shared Esk_{AB} without exposing negotiation data. A Bitcoin testnet prototype demonstrates substantial concealment and competitive transmission efficiency, achieving up to $256$-bit messages per covert transaction and approximately $347$ bits per $Tx_c$ on average, with costs around $3589$ Satoshi per $Tx_c$. The work provides a platform-agnostic blueprint for blockchain covert channels and informs defenses against on-chain analysis and off-chain de-anonymization threats.
Abstract
Establishing efficient and robust covert channels is crucial for secure communication within insecure network environments. With its inherent benefits of decentralization and anonymization, blockchain has gained considerable attention in developing covert channels. To guarantee a highly secure covert channel, channel negotiation should be contactless before the communication, carrier transaction features must be indistinguishable from normal transactions during the communication, and communication identities must be untraceable after the communication. Such a full-lifecycle covert channel is indispensable to defend against a versatile adversary who intercepts two communicating parties comprehensively (e.g., on-chain and off-chain). Unfortunately, it has not been thoroughly investigated in the literature. We make the first effort to achieve a full-lifecycle covert channel, a novel blockchain-based covert channel named ABC-Channel. We tackle a series of challenges, such as off-chain contact dependency, increased masquerading difficulties as growing transaction volume, and time-evolving, communicable yet untraceable identities, to achieve contactless channel negotiation, indistinguishable transaction features, and untraceable communication identities, respectively. We develop a working prototype to validate ABC-Channel and conduct extensive tests on the Bitcoin testnet. The experimental results demonstrate that ABC-Channel achieves substantially secure covert capabilities. In comparison to existing methods, it also exhibits state-of-the-art transmission efficiency.