Conception et Implémentation du Software Defined Perimeter (SDP) pour la mitigation de l’Attack Denial of Service

Abstract

Open ports on a service can be a threat since intruders can scan them for important information. Granting only authorized users access to these ports would safeguard a service from hackers collecting intelligence about it before attacking. The Single Packet Authentication (SPA) mechanism solves that problem by allowing clients to authenticate themselves without using a connection. The Software Defined Perimeter (SDP) is a protocol that utilizes SPA to enable secured access to protected services that are secured behind a Black Cloud barrier. The goal of this project is to provide SPA and SDP protocol implementations, demonstrate their effectiveness against port scanning and Denial of service attacks and present/discuss their architecture. Keywords: Zero-Trust security, Software defined perimeter, Single Packet Authorization, Denial of service attack, Cryptography, access control, Port scanning