You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Firewalls

Firewalls White Papers

FileWall: A Firewall for Network File Systems

Tags:
firewalls

Overview Access control in network file systems relies on primitive mechanisms like Access Control Lists and permission bits, which are not enough when operating in a hostile network environment. Network middleboxes, e.g., firewalls, completely ignore file system semantics when defining policies. Therefore, implementing simple context-aware access policies requires modifications to file servers and/or clients, which is impractical. This paper presents FileWall, a network middlebox that allows administrators to define context-aware access policies for file systems using both the network context and the file system context. FileWall interposes on the client-server network path and implements administrator defined policies through message transformation without modifying either clients or servers. The paper presents the design and implementation of FileWall for the NFS protocol.

Further White Paper Details
Publisher	Rutgers, State University of New Jersey	File Format	PDF
Date Published	July 2007
Format	White Papers
Topics	Firewalls, Security Tools

Did you find this white paper useful? 2 out of 6 users found this white paper useful

SGI opens file system to Linux

Server and supercomputer firm, SGI, has offered its journaled file system, XFS, to the Linux community under open source guidelines. SGI says the adoption of its file system will push Linux forward as a platform for enterprise-class applications.

Channel:
Desktops

Windows XP: Five reasons to be cheerful

Now, with XP's Dynamic Updates, administrators can specify and centrally distribute controlled-releases whenever users next connect, so they'll all be on the same page. Add that to the Universal Plug and Play feature in XP that supposedly enables...

Channel:
Comment & Analysis

Palladium: A must or a menace?

A measure proposed by Senator Ernest "Fritz" Hollings, a South Carolina Democrat, would require hardware makers to include anti-copying mechanisms in all new consumer electronic devices. The new software and hardware could secure VPNs (virtual...

Channel:
Security Strategy

Windows XP Service Pack 2: What you'll get and when you'll get it

The message from the Redmond types is that SP2 is not just a collection of patches, it's a more comprehensive addition of security code as well as other software bits and bobs - like an overhaul of the wireless LAN user interface - that will turn...

Channel:
Security Strategy

Ballmer sights growth and hypes 'breakthrough' tools

Ballmer's message highlighted productivity and potential over product features, and he touted the company's latest tools for making developers and administrators more effective. The two products, called Direct Mobile Messaging for Exchange 2003...

Channel:
IT Director
Tags:
it growth,
ballmer

Extreme bolsters NAC offering

To further the security at the core and the edge of the network, Extreme has unveiled Extreme Networks Policy Manager (EPM), a management tool that provides visibility into security rules and which eases management of access control lists (ACLs).

Virtualisation: Architectual Considerations and other Evaluation Criteria

In the past several years, server virtualisation technology has moved quickly and firmly into the IT mainstream. Of the many approaches to system virtualisation available in the market today, VMware's hypervisor architecture has gained the greatest market acceptance. This paper examines the architectural issues, solution support, and enterprise readiness required when deploying such a virtualisation solution.

Publisher:
EMC

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.

Publisher:
DataFlux

Optimising Storage with Global File Virtualisation

This white paper will provide an overview on how Rainfinity Global File Virtualisation virtualises unstructured data environments and moves data -including active, open files-without disruption to users or applications. Rainfinity is the only enterprise-class file virtualisation solution, and delivers complete NAS optimisation across geterogeneous environments, such as NAS, CAS, and file servers.

Publisher:
EMC

Also on silicon.com

Site Navigation:

Firewalls White Papers

FileWall: A Firewall for Network File Systems

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific