Additional security mechanism in Single Packet Authorization

• Author(s) / Creator(s)

  • Brar, Sukhraj Singh

• Single Packet Authorization (SPA) is the technique used to guard camouflaged network services against unauthorized users. SPA hides specific ports from the external world to reduce attacks at TLS ports until a cryptographically protected packet is received and authorized by the transport layer. Although SPA helps to overcome significant flaws in conventional Port Knocking mechanisms, its fragility related to potential key leakage makes it susceptible to various attacks. Additional security measures like Segregation of Duties help to reduce the potential of these attacks. This paper demonstrates the architecture and practical implementation of Segregation of Duties and discusses the impact of the additional security mechanisms on SPA usability.

• Date created

  2021-04-01

• Subjects / Keywords

  • cryptography
  • Single Packet Authorization
  • SPA
  • TLS
  • Port Knocking
  • segregation of duties
  • network services

• Type of Item

  Research Material

• DOI

  https://doi.org/10.7939/r3-skh1-kk42

• License

  Attribution-NonCommercial 4.0 International