Abstract
Port knocking is the method by which only a special sequence or single packet will enable the firewall to open a port, on a machine where all ports are blocked by default. It is a great idea although it suffers from a tragic drawback that is stopping its wide adoption. Not all operating systems include a reliable firewall and interacting with the supplied firewall to block and allow communications to ports can be awkward. The problem becomes even more complex when other proprietary firewalls are used and communicating with the installed firewall becomes impossible. It is proposed that a network service program, gateway authentication program or gateway authentication layer, would provide the benefits of port knocking and remove the problems experienced with firewalls. The gateway authentication program receives any packets and communications destined for a specific service on a specific port and only upon successful authentication will the communication channel be handed over to the designated network service. This extra authentication layer should reduce unauthorised brute-force attacks, which plague companies and users all over the world.
Original language | English |
---|---|
Title of host publication | N/A |
Number of pages | 3 |
Publication status | Published - 1 Feb 2010 |
Event | Proceedings of the 5th Research Student Workshop (P.A Roach (Ed.)) - University of Glamorgan Duration: 1 Feb 2010 → 1 Feb 2010 |
Conference
Conference | Proceedings of the 5th Research Student Workshop (P.A Roach (Ed.)) |
---|---|
Period | 1/02/10 → 1/02/10 |
Keywords
- terms-gateway authentication program
- authentication layer
- brute-force attacks