You are here: silicon.com > Resources > White Papers > Security > Intrusion - Tampering > Firewalls

Firewalls White Papers

Firewall Design: Understandable, Designable and Testable

Tags:
firewalls

Overview Firewalls are the cornerstones of network security. To make firewalls working effectively, firewall manager must design firewall rules and the rule order correctly. This paper presents a firewall management toolkit which makes firewall rules understandable, designable and testable. Understandable means that the rules shown to the manager are easily understood. Designable means that it is no need to design the rule order when modifying the firewall rules. Testable means that firewall rules can be tested without other device. This method is based on Security Policy Diagram (SPD, for short). Then a sequence of algorithms is applied to generate corresponding firewall policy from SPD to be understood, designed and tested.

Further White Paper Details
Publisher	Tsinghua University	File Format	PDF
Date Published	April 2006
Format	White Papers
Topics	Firewalls, Network Design, Security Tools

Did you find this white paper useful? 0 out of 1 users found this white paper useful

Logic of Logical rubbished

Presumably this method is to increase the market for firewalls. Zoning architecture will increase initial spend on IT, log traffic between zones generated by more firewalls and intrusion detection systems will quadruple.

Channel:
Security Strategy

Symantec streamlines network security

Standalone network-protection products, such as intrusion-detection systems and firewalls, flag any unusual network behaviour as a security 'event'. The Event Manager consolidates data from Symantec's antivirus and firewall products, as well as...

Channel:
Security Strategy

Human rights enshrined in open source software

Another section of the licence requires that the creator of any program that uses cryptography for authentication or confidentiality must ensure that the algorithms meet minimum security thresholds. Our clients and end-users aren't building the...

Channel:
Desktops

Interview: Father of the firewall

He is known as the creator of the firewall and has authored - among other things - DEC SEAL, TIS Gauntlet and the TIS Internet Firewall Toolkit. What's sad to me is that firewalls could _ALMOST_ be enough except that the vision of firewall...

Channel:
Comment & Analysis

Quocirca's Straight Talking: Get smart about wireless security

The first is connection speed, which is understandable given that the laptop is still regarded as the most important mobile device and GPRS, the only pervasive wireless network, is even slower than the average dial-up connection.

Hackers find security hole in wireless Windows

Security experts on Monday confirmed the flaw exists but said it should not be a problem for those using firewalls. MessageLabs also recommended individual teleworkers be given personal firewalls. But if the user is patched or has a firewall, they...

Virtualisation: Architectual Considerations and other Evaluation Criteria

In the past several years, server virtualisation technology has moved quickly and firmly into the IT mainstream. Of the many approaches to system virtualisation available in the market today, VMware's hypervisor architecture has gained the greatest market acceptance. This paper examines the architectural issues, solution support, and enterprise readiness required when deploying such a virtualisation solution.

Publisher:
EMC

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.

Publisher:
DataFlux

Optimising Storage with Global File Virtualisation

This white paper will provide an overview on how Rainfinity Global File Virtualisation virtualises unstructured data environments and moves data -including active, open files-without disruption to users or applications. Rainfinity is the only enterprise-class file virtualisation solution, and delivers complete NAS optimisation across geterogeneous environments, such as NAS, CAS, and file servers.

Publisher:
EMC

Also on silicon.com

Site Navigation:

Firewalls White Papers

Firewall Design: Understandable, Designable and Testable

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

Advertising Features

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific