Implementing a distributed firewall
Proceedings of the 7th ACM conference on Computer and communications security
Intrusion Detection
Trust Management and Network Layer Security Protocols
Proceedings of the 7th International Workshop on Security Protocols
Security Issues in Mobile Code Systems
Mobile Agents and Security
Micro-Firewalls for Dynamic Network Security with Distributed Intrusion Detection
NCA '01 Proceedings of the IEEE International Symposium on Network Computing and Applications (NCA'01)
Strongman: a scalable solution to trust management in networks
Strongman: a scalable solution to trust management in networks
Centralized Administration of Distributed Firewalls
LISA '96 Proceedings of the 10th USENIX conference on System administration
Hi-index | 0.00 |
Due to end-to-end design principle in distributed applications, many emerging security problems could not be solved by conventional security technologies, such as firewalls and IDSs. To address these problems, we present a distributed dynamic 碌Firewall architecture based on mobile agents and Key-Note trust management system. In this architecture, KeyNote trust management system provides the scalable distributed control capability and supports a mechanism called "policy-updates on demand". Mobile agents implement dynamic security policy reconfiguration and enhance the scalability. Each 碌Firewall is built with a packet filter and DTE-enhanced evaluator to enforce policy at the end points. A distributed intrusion detection and response (DIDR) system supports dynamic security capabilities and provides fast response to attacks from all possible sources. Our architecture is scalable, topology independent, and intrusion-tolerant.