ZDNet / IT Library / Security / Intrusion - Tampering / Firewalls /

Firewall Implementation and Testing

By Linkopings Universitet on May 11, 2009 (313 days ago)

See also

Network Security

More Whitepapers

Data Management

Desktops, Laptops and OS

Enterprise Applications

IT Management

Networking and Communications

Professions and Industries

Security

Servers and Server OS

Software and Web Development

Storage

Publisher's description

Almost every machine on the internet today is protected by a firewall. Many of them are misconfigured which is seldom discovered due to poor testing. This paper summarizes the experiences in setting up and testing one's own firewall, as well as performing a penetration attack from an external machine to find misconfigurations. The paper also describes the tools one has used and how one used some of them.

Registration Required
File size 306.20kb - Check your internet speed
File format PDF - Download the latest version of Adobe Acrobat Reader

Download for free now

Similar whitepapers

Astaro Security Gateway Keeps Kauffman's Network Rolling

Kauffman Tire was operating without a spam filter, causing their associates' inboxes to be flooded with spam. The challenge was to seek out a modern firewall package and a reliable and effective spam filter. Astaro Security Gateway 320 was added as a firewall, to combat spam and enabled VPN access. The Astaro solution not only meets all requirements, the additional features would also be added over time.

78 days ago by Astaro Download

C-SWF Incremental Mining Algorithm for Firewall Policy Management

As the number of security incidents had been sharply growing, the issue of security-defense draws more and more attention from network community in past years. Firewall is known as one of the most popular security-defense mechanism for corporations. It is the first defense-line for security infrastructure of corporations to against external intrusions and threats. A firewall will filter packets by following its policy rules to avoid suspicious intruder executing illegal actions and damaging internal network. Well-designed policy rules can increase the security-defense effect to against security risk. This paper applies association rule mining to analyze network logs and detect anomalous behaviors, such as connections those shown frequently in short period with the same source IP and port.

96 days ago by National Taiwan University Download

End to End V/s Firewall Security: A Guide to Strengthen Perimeter Security

Firewalls have been a key component of any organizations Network Security Infrastructure. The basic task of the Firewall is to regulate/deter un-authorized access at the perimeter. However Firewalls have done little to thwart un-authorized access inside private networks. There are several inherent deficiencies that exist with Firewalls and this paper examines/explores the ways and means of solving this.

137 days ago by NeoAccel Download

Effective Solutions for Firewall Management: Using SolarWinds Orion Network Configuration Manager With Athena FirePAC

Long hours, non-stop pressure, problem solving 99% of the time - these are the typical words used to describe the day-to-day life of network engineers and firewall administrators. Making routine changes to the infrastructure should not be an additional source of stress, but with the additional roles of monitoring and troubleshooting often times it is. The reasons for this added stress are described in this paper along with an effective solution for addressing these problems using SolarWinds Orion Network Configuration Manager (NCM) and Athena FirePAC for firewall analysis.

156 days ago by Athena Security Download

Protecting Mission-Critical Manufacturing Data With an ERP Firewall

Off late manufacturing sector, outsourcing is becoming more the norm than the exception. Companies have become more and more specialized within their value chains. OEMs that traditionally were production-oriented are increasingly outsourcing many of their manufacturing and supply chain functions to third parties (contract manufacturers, freight forwarders, and third-party logistics providers). Back-office functions, such as accounts payable, human resources, and IT management are steadily being sourced to specialized Business Process Outsourcing (BPO) firms.

200 days ago by GXS Download

Firewire Blocker: A Software Defense Against Firewire-Based Physical Security Attacks on Windows Systems

This paper presents a software solution to Firewire-based physical security attacks on Microsoft Windows operating systems. In this first proof-of-concept, the FirewireBlocker service is running with SYSTEM privileges in order to be able to enable/disable hardware. While users can normally not interface with service, risk for privilege escalation remains. For example, if users with normal user rights have write access on the executable, they could replace it with a malign piece of software which would then be started with SYSTEM privileges. Future versions should establish the principle of least privilege. Further research is required to identify the fewest required privileges the FirewireBlocker service has to run with in order to be able to serve its purpose.

219 days ago by Vienna University Download

Linkopings Universitet whitepapers

Defense Against DoS, Flooding Attacks

The following paper concentrates on the means of defense against denial of service attacks. First, some possible and common denial of service attacks are described to give the reader a basic understanding of what is this type of the attacks. The main part of the project is the mechanism, tools and methods used to prevent the denial of service attacks. At the end a short case study along with the description of the small company network is given. When conducting the experiment the author noticed that a successful attack on the networked system is relatively easy as the needed tools are free to download but at the same time the simple means of defense can be applied to make most of the attacks impossible.

299 days ago by Linkopings Universitet Download

Usability and Security of Personal Firewalls

Effective security of a personal firewall depends on the rule granularity and the implementation of the rule enforcement and the correctness and granularity of user decisions at the time of an alert. A misconfigured or loosely configured firewall may be more dangerous than no firewall at all because of the user's false sense of security. This paper assesses effective security of 13 personal firewalls by comparing possible granularity of rules as well as the usability of rule set-up and its influence on security. In order to evaluate usability, it has submitted each firewall to use cases that require user decisions and cause rule creation. In order to evaluate the firewalls' security, the created rules are analyzed.

1156 days ago by Linkopings Universitet Download

Top stories

Virtual PC hole could lead to attacks, security firm says

Jury rules against Microsoft in patent suit

Microsoft modernizes Web ambitions with IE9

Use the tradeoff matrix in agile projects

Is Google Wave getting Buzzed?

Inside ZDNet Asia

Special Report: Tech Focus in 2010

Latest Videos on Tech Industry

Insight: Interviews with Newsmakers

Search for over 15,000 Tech Jobs in Asia

Find your Tech answers in TechGuides

IT Library: Over 60,000 IT papers at your fingertips

Download IT Priorities 2010 Report