Implementing a distributed firewall

Trust management for IPsec

ACM Transactions on Information and System Security (TISSEC)

SOS: secure overlay services

Proceedings of the 2002 conference on Applications, technologies, architectures, and protocols for computer communications

A Distributed Dynamic µFirewall Architecture with Mobile Agents and KeyNote Trust Management System

ICICS '02 Proceedings of the 4th International Conference on Information and Communications Security

Sandboxing Applications

Proceedings of the FREENIX Track: 2001 USENIX Annual Technical Conference

Experiences of Mobile IP Security

Revised Papers from the 9th International Workshop on Security Protocols

Future applications and middleware, and their impact on the infrastructure

Future Generation Computer Systems - Special section: Selected papers from the TERENA networking conference 2002

Predicate routing: enabling controlled networking

ACM SIGCOMM Computer Communication Review

Intranet Security with Micro-Firewalls and Mobile Agents for Proactive Intrusion Response

ICCNMC '01 Proceedings of the 2001 International Conference on Computer Networks and Mobile Computing (ICCNMC'01)

Design and Implementation of Virtual Private Services

WETICE '03 Proceedings of the Twelfth International Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises

Indra: A peer-to-peer approach to network intrusion detection and prevention

WETICE '03 Proceedings of the Twelfth International Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises

Using graphic turing tests to counter automated DDoS attacks against web servers

Proceedings of the 10th ACM conference on Computer and communications security

Survivable Monitoring in Dynamic Networks

IWIA '04 Proceedings of the Second IEEE International Information Assurance Workshop (IWIA'04)

Security issues in ad hoc networks

The handbook of ad hoc wireless networks

Automatic analysis of firewall and network intrusion detection system configurations

Proceedings of the 2004 ACM workshop on Formal methods in security engineering

Attestation-based policy enforcement for remote access

Proceedings of the 11th ACM conference on Computer and communications security

Firmato: A novel firewall management toolkit

ACM Transactions on Computer Systems (TOCS)

A holistic approach to service survivability

Proceedings of the 2003 ACM workshop on Survivable and self-regenerative systems: in association with 10th ACM Conference on Computer and Communications Security

Efficient support for enterprise delegation policies

Proceedings of the 2005 ACM symposium on Applied computing

WebSOS: an overlay-based system for protecting web servers from denial of service attacks

Computer Networks: The International Journal of Computer and Telecommunications Networking - Web security

Survivable Monitoring in Dynamic Networks

IEEE Transactions on Mobile Computing

Enforcing provisioning and authorization policy in the Antigone system

Journal of Computer Security

Requirements for scalable access control and security management architectures

ACM Transactions on Internet Technology (TOIT)

Anticipatory distributed packet filter configurations for carrier-grade IP networks

Computer Networks: The International Journal of Computer and Telecommunications Networking

Flexible OS support and applications for trusted computing

HOTOS'03 Proceedings of the 9th conference on Hot Topics in Operating Systems - Volume 9

Middleboxes no longer considered harmful

OSDI'04 Proceedings of the 6th conference on Symposium on Opearting Systems Design & Implementation - Volume 6

Architecting the Lumeta firewall analyzer

SSYM'01 Proceedings of the 10th conference on USENIX Security Symposium - Volume 10

HIPernet: A Decentralized Security Infrastructure for Large Scale Grid Environments

GRID '05 Proceedings of the 6th IEEE/ACM International Workshop on Grid Computing

Specifications of a high-level conflict-free firewall policy language for multi-domain networks

Proceedings of the 12th ACM symposium on Access control models and technologies

Semantic remote attestation: a virtual machine directed approach to trusted computing

VM'04 Proceedings of the 3rd conference on Virtual Machine Research And Technology Symposium - Volume 3

Architecting the Lumeta firewall analyzer

SSYM'01 Proceedings of the 10th conference on USENIX Security Symposium - Volume 10

Ethane: taking control of the enterprise

Proceedings of the 2007 conference on Applications, technologies, architectures, and protocols for computer communications

Emulating an embedded firewall

DETER Proceedings of the DETER Community Workshop on Cyber Security Experimentation and Test on DETER Community Workshop on Cyber Security Experimentation and Test 2007

Automatic analysis of firewall and network intrusion detection system configurations

Journal of Computer Security - Formal Methods in Security Engineering Workshop (FMSE 04)

Dominator-tree analysis for distributed authorization

Proceedings of the third ACM SIGPLAN workshop on Programming languages and analysis for security

Path-Based Access Control for Enterprise Networks

ISC '08 Proceedings of the 11th international conference on Information Security

Tamper-Resistant, Application-Aware Blocking of Malicious Network Connections

RAID '08 Proceedings of the 11th international symposium on Recent Advances in Intrusion Detection

Security Policies Tuning Among IP Devices

KES '07 Knowledge-Based Intelligent Information and Engineering Systems and the XVII Italian Workshop on Neural Networks on Proceedings of the 11th International Conference

A secure mobile agents approach for anomalies detection on firewalls

Proceedings of the 10th International Conference on Information Integration and Web-based Applications & Services

The case for prevention-based, host-resident defenses in the modern PCS network

Proceedings of the 5th Annual Workshop on Cyber Security and Information Intelligence Research: Cyber Security and Information Intelligence Challenges and Strategies

A Calculus for Distributed Firewall Specification and Verification

Proceedings of the 2006 conference on New Trends in Software Methodologies, Tools and Techniques: Proceedings of the fifth SoMeT_06

Practical declarative network management

Proceedings of the 1st ACM workshop on Research on enterprise networking

Delegating network security with more information

Proceedings of the 1st ACM workshop on Research on enterprise networking

A distributed firewall and active response architecture providing preemptive protection

Proceedings of the 46th Annual Southeast Regional Conference on XX

Robustly secure computer systems: a new security paradigm of system discontinuity

NSPW '07 Proceedings of the 2007 Workshop on New Security Paradigms

Rethinking enterprise network control

IEEE/ACM Transactions on Networking (TON)

WebSOS: an overlay-based system for protecting web servers from denial of service attacks

Computer Networks: The International Journal of Computer and Telecommunications Networking - Web security

BUFFALO: bloom filter forwarding architecture for large organizations

Proceedings of the 5th international conference on Emerging networking experiments and technologies

A stateful CSG-based distributed firewall architecture for robust distributed security

COMSNETS'09 Proceedings of the First international conference on COMmunication Systems And NETworks

Experience with the keynote trust management system: applications and future directions

iTrust'03 Proceedings of the 1st international conference on Trust management

Distributed instrusion prevention in active and extensible networks

IWAN'04 Proceedings of the 6th IFIP TC6 international working conference on Active networks

Analysis of firewall policy rules using traffic mining techniques

International Journal of Internet Protocol Technology

Evaluating a collaborative defense architecture for MANETs

IMSAA'09 Proceedings of the 3rd IEEE international conference on Internet multimedia services architecture and applications

An SSH-based toolkit for user-based network services

LISA'09 Proceedings of the 23rd conference on Large installation system administration

Security analysis of the bootstrap protocol for deny-by-default mobile ad-hoc networks

MILCOM'09 Proceedings of the 28th IEEE conference on Military communications

FAME: a firewall anomaly management environment

Proceedings of the 3rd ACM workshop on Assurable and usable security configuration

Comparison model and algorithm for distributed firewall policy

ICIC'06 Proceedings of the 2006 international conference on Intelligent computing: Part II

Virtualizing the network forwarding plane

Proceedings of the Workshop on Programmable Routers for Extensible Services of Tomorrow

ETTM: a scalable fault tolerant network manager

Proceedings of the 8th USENIX conference on Networked systems design and implementation

A novel three-tiered visualization approach for firewall rule validation

Journal of Visual Languages and Computing

Anticipatory distributed packet filter configuration for carrier-grade IP-Networks

NETWORKING'06 Proceedings of the 5th international IFIP-TC6 conference on Networking Technologies, Services, and Protocols; Performance of Computer and Communication Networks; Mobile and Wireless Communications Systems

FLIPS: hybrid adaptive intrusion prevention

RAID'05 Proceedings of the 8th international conference on Recent Advances in Intrusion Detection

Towards software-based signature detection for intrusion prevention on the network card

RAID'05 Proceedings of the 8th international conference on Recent Advances in Intrusion Detection

gore: routing-assisted defense against DDoS attacks

ISC'05 Proceedings of the 8th international conference on Information Security

Network access control for mobile ad-hoc networks

ICICS'05 Proceedings of the 7th international conference on Information and Communications Security

SafeCard: a gigabit IPS on the network card

RAID'06 Proceedings of the 9th international conference on Recent Advances in Intrusion Detection

A multi-agent cooperative model and system for integrated security monitoring

CANS'06 Proceedings of the 5th international conference on Cryptology and Network Security

A multilayer overlay network architecture for enhancing IP services availability against dos

ICISS'11 Proceedings of the 7th international conference on Information Systems Security

Relational-based calculus for trust management in networked services

Computer Communications

The Enhancement of Security in Healthcare Information Systems

Journal of Medical Systems

vCRIB: virtualized rule management in the cloud

HotCloud'12 Proceedings of the 4th USENIX conference on Hot Topics in Cloud Ccomputing

A visualized internet firewall rule validation system

APNOMS'07 Proceedings of the 10th Asia-Pacific conference on Network Operations and Management Symposium: managing next generation networks and services

FireCol: a collaborative protection network for the detection of flooding DDoS attacks

IEEE/ACM Transactions on Networking (TON)

Enterprise Network Packet Filtering for Mobile Cryptographic Identities

International Journal of Handheld Computing Research

Scalable rule management for data centers

nsdi'13 Proceedings of the 10th USENIX conference on Networked Systems Design and Implementation

Optimizing the "one big switch" abstraction in software-defined networks

Proceedings of the ninth ACM conference on Emerging networking experiments and technologies

Managing the network with Merlin

Proceedings of the Twelfth ACM Workshop on Hot Topics in Networks

Betweenness estimation in OLSR-based multi-hop networks for distributed filtering

Journal of Computer and System Sciences

Spread Identity: A new dynamic address remapping mechanism for anonymity and DDoS defense

Journal of Computer Security