Distributed Firewalls
نویسنده
چکیده
Conventional firewalls rely on the notions of restricted topology and controlled entry points to function. More precisely, they rely on the assumption that everyone on one side of the entry point—the firewall—is to be trusted, and that anyone on the other side is, at least potentially, an enemy. The vastly expanded Internet connectivity in recent years has called that assumption into question. We propose a “distributed firewall”, using IPSEC, a policy language, and system management tools. A distributed firewall preserves central control of access policy, while reducing or eliminating any dependency on topology.
منابع مشابه
Dynamic Response in Distributed Firewall Systems
Firewalls are currently the prominent defense against network attacks. These devices can play a crucial role in preserving the wellbeing of commercial as well as personal networks. However, the correct configuration of firewalls is hardly a trivial task, especially in distributed environments. A variety of anomalies can affect the proper functioning of firewalls. This paper discusses possible f...
متن کاملA History and Survey of Network Firewalls
Firewalls are network devices which enforce an organization’s security policy. Since their development, various methods have been used to implement firewalls. These methods filter network traffic at one or more of the seven layers of the ISO network model, most commonly at the application, transport, and network, and data-link levels. In addition, researchers have developed some newer methods, ...
متن کاملA novel approach to protect Grids with firewalls A System for Distributed Computing Based on H2O and JXTA
A System for Distributed Computing Based on H2O and JXTA Motivation The communication requirements of common Grid middlewares, with their extensive demand for unhindered communication, run contrary to the concept of legacy firewalls. The devices are normally statically configured to accept or deny certain packets or communication streams. Advanced firewalls include application-level gateways th...
متن کاملManaging Distributed Personal Firewalls with Smart Data Servers
Modern security architectures tend to become more and more complex. Not only the chances to improve Web applications using several data channels and diverse (TCP-)ports are very promising, but also the risks for criminal attacks and an intrusion into the corporate network are increasing. The classical solution to protect networks against criminal attacks with firewalls is problematic, though. O...
متن کاملCould firewall rules be public - a game theoretical perspective
Firewalls are among the most important components in network security. Traditionally, the rules of the firewall are kept private under the assumption that privacy of the ruleset makes attacks on the network more difficult. We posit that this assumption is no longer valid in the Internet of today due to two factors: the emergence of botnets reducing probing difficulty and second, the emergence o...
متن کاملDistributed Firewall with Intrusion Detection System
With the growth of Internet, network security has received significant attention over pass ten years due to the increasing threat of hacker attacks. To achieve security goals, most corporate environments have deployed firewalls to block the intrusion. However, traditional firewalls only provided static filleting analysis so that they can not analyze the content of data packet for providing dyna...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 1994