Attacks on port knocking authentication mechanism

Authors:
Antonio Izquierdo Manzanares;Joaquín Torres Márquez;Juan M. Estevez-Tapiador;Julio César Hernández Castro
Affiliations:
Universidad Carlos III de Madrid, Leganés (Madrid), Spain;Universidad Carlos III de Madrid, Leganés (Madrid), Spain;Universidad Carlos III de Madrid, Leganés (Madrid), Spain;Universidad Carlos III de Madrid, Leganés (Madrid), Spain
Venue:
ICCSA'05 Proceedings of the 2005 international conference on Computational Science and Its Applications - Volume Part IV
Year:
2005

Citing 1
Cited 1

Security Engineering: A Guide to Building Dependable Distributed Systems

Security Engineering: A Guide to Building Dependable Distributed Systems

SILENTKNOCK: practical, provably undetectable authentication

ESORICS'07 Proceedings of the 12th European conference on Research in Computer Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

Research in authentication mechanisms has led to the design and development of new schemes. The security provided by these procedures must be reviewed and analyzed before they can be widely used. In this paper, we analyze some weaknesses of the port knocking authentication method that makes it vulnerable to many attacks. We will present the NAT-Knocking attack, in which an unauthorized user can gain access to the protected server just by being in the same network than an authorized user. We will also discuss the DoS-Knocking attack, which could lead to service disruptions due to attackers “knocking” on many ports of the protected server. Finally, we will review further implementation issues.