Title :
Address Knocking: An Undetectable Authentication Based on IPv6 Address
Author :
Huisheng Liu ; Zhenxing Wang ; Yang Liu
Author_Institution :
Nat. Digital Switching Syst. Eng. & Technol. Res. Center, Zhengzhou, China
Abstract :
In the Internet, to protect against attacks that exploit unknown vulnerabilities, it is desirable to allow access to some hosts on a firewall only to authorized external users and present closed to others. Based on the address features of IPv6, we proposed a new network security technique called address knocking (AK), can be seen as an undetectable authentication. Address knocking is a form of host-to-host communication which relies on deliberately communication attempts. These connection attempts are monitored by a daemon which interprets the interface identifier of destination IPv6 address as information. Theoretical and Empirical analysis demonstrates that AK scheme can effectively conduct undetectable authentication and prevent the exposure of existence of the important host.
Keywords :
IP networks; Internet; computer network security; AK scheme; IPv6 address; Internet; address knocking; empirical analysis; host-to-host communication; network security technique; undetectable authentication; Authentication; Cryptography; IP networks; Logic gates; Ports (Computers); Protocols; IPv6 address; Interface identifier; authrozation; knocking;
Conference_Titel :
Parallel and Distributed Computing, Applications and Technologies (PDCAT), 2012 13th International Conference on
Conference_Location :
Beijing
Print_ISBN :
978-0-7695-4879-1
DOI :
10.1109/PDCAT.2012.35
