You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Firewalls

Firewalls White Papers

Discovery of Policy Anomalies in Distributed Firewalls

Tags:
firewalls

Overview Firewalls are core elements in network security. However, managing firewall rules, particularly in multi-firewall enterprise networks, has become a complex and error-prone task. Firewall filtering rules have to be written, ordered and distributed carefully in order to avoid firewall policy anomalies that might cause network vulnerability. Therefore, inserting or modifying filtering rules in any firewall requires thorough intra- and inter-firewall analysis to determine the proper rule placement and ordering in the firewalls. This paper identifies all anomalies that could exist in a single- or multi-firewall environment. It also presents a set of techniques and algorithms to automatically discover policy anomalies in centralized and distributed legacy firewalls.

Further White Paper Details
Publisher	DePaul University	File Format	PDF
Date Published	December 2003
Format	White Papers
Topics	Firewalls, Security Tools

Did you find this white paper useful? 3 out of 8 users found this white paper useful

Strangling the virus; the big number change, and big banker gains.

It adds a belt to the braces that already exist so that organisations that find it difficult to keep up with traditional anti-virus protection can, at least, take steps to ensure that email viruses do not get beyond the initial infection.

Channel:
Comment & Analysis

Symantec streamlines network security

Finally, the ESM identifies instances in which employees and computers are not complying with a company's security policy. Standalone network-protection products, such as intrusion-detection systems and firewalls, flag any unusual network behaviour...

Channel:
Security Strategy

Human rights enshrined in open source software

For instance, it bans governments, individuals and corporations from any "monitoring of individuals," which might apply to popular network monitoring utilities, and bans "filtering" of any expression, which could cover routine utilities such as...

Channel:
Desktops

Cisco battles Juniper with worms

Okena's software agent sits on a user's PC and identifies malicious code in communications between network software systems. This product passively identifies suspicious traffic and alerts network administrators.

Channel:
Security Strategy

The Bloor Perspective: Trojan horses, legacy systems and IBM's new clients

Trojans, as you probably already know, are spyware - they open back doors into PC and can send what they discover direct to a hacker. Bill Cody, Trinity's CTO, says that on many assignments they quickly discover that the rescue job is bigger than...

Analysis: The network is the security

When the network detects anomalies, it will alert the security staff or dynamically block suspicious activity in real time. This means that the network will perform the same functions that firewalls, intrusion detection and prevention, antivirus...

Virtualisation: Architectual Considerations and other Evaluation Criteria

In the past several years, server virtualisation technology has moved quickly and firmly into the IT mainstream. Of the many approaches to system virtualisation available in the market today, VMware's hypervisor architecture has gained the greatest market acceptance. This paper examines the architectural issues, solution support, and enterprise readiness required when deploying such a virtualisation solution.

Publisher:
EMC

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.

Publisher:
DataFlux

Optimising Storage with Global File Virtualisation

This white paper will provide an overview on how Rainfinity Global File Virtualisation virtualises unstructured data environments and moves data -including active, open files-without disruption to users or applications. Rainfinity is the only enterprise-class file virtualisation solution, and delivers complete NAS optimisation across geterogeneous environments, such as NAS, CAS, and file servers.

Publisher:
EMC

Also on silicon.com

Site Navigation:

Firewalls White Papers

Discovery of Policy Anomalies in Distributed Firewalls

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific