You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Firewalls

Firewalls White Papers

FireCracker: A Framework for Inferring Firewall Policy Using Smart Probing

Tags:
firewalls

Overview A firewall policy that is correct and complete is crucial to the safety of a computer network. An adversary will benefit a lot from knowing the policy or its semantics. This paper proposes a framework that could be used to blindly discover a firewall policy without prior knowledge. It shows how an attacker can reconstruct a firewall's policy by probing the firewall with tailored packets into a network and forming an idea of what the policy looks like. The proposed methodology shows how to discover a policy that is semantically equivalent to the original one used in the deployed firewall. Three techniques are proposed for reconstructing the policy as well as to intelligently choose the probing packets adaptively based on the firewall response.

Further White Paper Details
Publisher	DePaul University	File Format	PDF
Date Published	April 2007
Format	White Papers
Topics	Firewalls, Security Tools

Did you find this white paper useful?

Balancing Security Against Productivity

Publisher:
Novell

Security: New strides in preventing intrusions.

Publisher:
IBM

Novell Zenworks Endpoint Security Management: Total Control from a Single Console

Publisher:
Novell

Secure Desktop On-Demand Webcast

Publisher:
Novell

Total Endpoint Protection: Lower Costs and Increase Compliance

Publisher:
McAfee

Tags:
firewalls

Housing benefit? Tailored high-tech office space comes to London

Against that backdrop, the property arm of one company - LMS, that's London Merchant Services - is trying to tempt businesses to redeveloped facilities in London's Fitzrovia, in the shadow of the BT Tower.

Channel:
Comment & Analysis

Cisco battles Juniper with worms

A new element in the updated IOS is improved protection against denial of service attacks, which flood networks with millions of packets causing routers and servers to freeze under the pressure. Platon said the company is working on a product that...

Channel:
Security Strategy

Cisco warns of VPN flaw

It is an important part of IPsec, which is used to encrypt packets and create secure tunnels for traffic travelling over the public internet and into a corporate network. The technology is used in IPsec virtual private network (VPN) and firewall...

Cracked: The Great Firewall of China

If an attacker generated 100 triggering packets per second, and each packet caused 20 minutes of disruption, 120,000 pairs of endpoints could be prevented from communicating at any one time. If an attacker had identified the machines used by...

Windows worm holes plugged

Three of the security holes could be exploited remotely by an anonymous attacker without the user having to take any action, such as clicking on a link. Microsoft said in its security bulletin, which it rates "critical": "An attacker who...

Cisco plugs DoS hole

But in this case, the attacker only has to send a few packets. The security flaws could allow attackers to send a few small packets through the routers to shut down the network in a DoS attack, said Johannes Ullrich, chief research officer for the...

Channel:
Security Strategy
Tags:
dos,
patch,
cisco

Live Webcast: Telecoms 2.0 - Where is telecoms heading?

In this webcast, our panel of experts will review where we are with next generation telecoms in the UK, working through the concept of 'Telecoms 2.0': - Realising the potential of Next Generation Networks - why it isn't just about the technology? - What attributes should firms be looking for in their telco partner? - Is the relationship between telco provider and customer changing? - What things need to happen to make next generation services a reality? - You say you want the supplier to change. Do you want to change too? - What is Telecoms 2.0?

Publisher:
ZDNet UK

Telecom 2.0: Mind over matter

ntl:Telewest Business believes that the role of the telco is evolving. Gone are the days when it was enough to simply focus on circuits and minutes, customers now need a far higher degree of interaction and look for suppliers who will talk business solutions with them.

Publisher:
ntl:Telewest Business

IBM Information Server Change Data Capture

In today's fast-paced world, access to real-time data has never been more important. To be successful, organizations need to be able to report and analyze corporate data quickly and easily, regardless of what applications created the data, what platform they're running on, or what database they're stored in.

Publisher:
IBM

An examination of server consolidation: the trends that can drive efficiencies and help businesses gain a competitive edge

This white paper provides a starting point for organizations contemplating server consolidation. It includes an overview of server consolidation concepts and techniques and provides guidance on methodologies. It also looks at the potential cost savings associated with server consolidation and offers information on how organizations can sustain the advantage they have gained by consolidating their servers.

Publisher:
IBM

Also on silicon.com

Site Navigation:

Firewalls White Papers

FireCracker: A Framework for Inferring Firewall Policy Using Smart Probing

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific