<?xml version="1.0"?>
<rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:dc="http://purl.org/dc/elements/1.1/"><rdf:Description rdf:about="https://repozitorij.uni-lj.si/IzpisGradiva.php?id=142965"><dc:title>SPA Scalability in Software Defined Perimeter</dc:title><dc:creator>Krmelj,	Gregor Robert	(Avtor)
	</dc:creator><dc:creator>Ciglarič,	Mojca	(Mentor)
	</dc:creator><dc:creator>Pančur,	Matjaž	(Komentor)
	</dc:creator><dc:subject>SPA</dc:subject><dc:subject>Firewall</dc:subject><dc:subject>Network Security</dc:subject><dc:subject>eBPF</dc:subject><dc:subject>XDP</dc:subject><dc:subject>Network Protocol Design</dc:subject><dc:subject>Hidden Services</dc:subject><dc:description>Single Packet Authorization (SPA) is a method of gaining network access to a network service by sending a single IP packet which contains all the necessary data to authenticate and authorize a particular client. The result of the exchange is a temporary firewall rule that enables the client access to the requested service. OpenSPA is an implementation of SPA which we have re-implemented from the ground up with countermeasures for Denial of Service (DoS) attacks and replaced the binary encoding protocol with a TLV variant. Using our testing environment with a 100 Gbit/s network we were able to defend against a 6.7 Mpps DoS attacks using a single CPU core and a 106 Mpps attack using 16 CPU cores.</dc:description><dc:date>2022</dc:date><dc:date>2022-12-06 14:15:01</dc:date><dc:type>Magistrsko delo/naloga</dc:type><dc:identifier>142965</dc:identifier><dc:language>sl</dc:language></rdf:Description></rdf:RDF>
