Firewalls and Internet security: repelling the wily hacker
Firewalls and Internet security: repelling the wily hacker
Implementing a distributed firewall
Proceedings of the 7th ACM conference on Computer and communications security
Internet Firewalls and Network Security
Internet Firewalls and Network Security
Hi-index | 0.00 |
Packet filtering is a core operation in network security management. As networks and services become more complex, managing access-list rules becomes an error-prone task. Conflicts among policies can cause holes in security and prevent the load optimization in the network. Here we propose an algorithm to automatically tune up the configurations of IP level security devices. Our aim is to keep the external behaviour (end-to-end) unchanged, while removing distributed inconsistencies all over the network. The algorithm is described in full details and results of the software implementation are shown.