Attacks on Port Knocking Authentication Mechanism

13 years 10 months ago

Download www-users.cs.york.ac.uk

Abstract. Research in authentication mechanisms has led to the design and development of new schemes. The security provided by these procedures must be reviewed and analyzed before they can be widely used. In this paper, we analyze some weaknesses of the port knocking authentication method that makes it vulnerable to many attacks. We will present the NAT-Knocking attack, in which an unauthorized used can gain access to the protected server just by being in the same network than an authorized user. We will also discuss the DoS-Knocking attack, which could lead to service disruptions due to attackers “knocking” on many ports of the protected server. Finally, we will review further implementation issues.

Antonio Izquierdo Manzanares, Joaquín Torre

Real-time Traffic

Applied Computing | Authentication Mechanisms | ICCSA 2005 | NAT-Knocking Attack | Port Knocking Authentication |

claim paper

» Proactive Surge Protection A Defense Mechanism for BandwidthBased Attacks

» FPAC Fast FixedCost Authentication for Access to Reserved Resources

Post Info
More Details (n/a)

Added	27 Jun 2010
Updated	27 Jun 2010
Type	Conference
Year	2005
Where	ICCSA
Authors	Antonio Izquierdo Manzanares, Joaquín Torres Márquez, Juan M. Estévez-Tapiador, Julio César Hernández Castro

Comments (0)

Sciweavers

Attacks on Port Knocking Authentication Mechanism

Applied Computing | Authentication Mechanisms | ICCSA 2005 | NAT-Knocking Attack | Port Knocking Authentication |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers