White Papers

Firewall Policy Reconstruction by Active Probing: An Attacker's View

Overview Having a firewall policy that is correct and complete is crucial to the safety of the computer network. An adversary will benefit a lot from knowing the policy or its semantics. This paper shows how an attacker can reconstruct a firewall's policy by probing the firewall by sending tailored packets into a network and forming an idea of what the policy looks like. It presents two approaches of compiling this information into a policy that can be arbitrary close to the original one used in the deployed firewall. The first approach is based on region growing from single firewall response to sample packets. The other approach uses split-and-merge in order to divide the space of the firewall's rules and analyzes each independently.

By downloading you agree to our Terms and Conditions. These include information regarding use of your personal data.

Publisher: DePaul University
File Format: PDF
Date Published: Apr 23, 2008
Format: White Papers
Topics: Firewalls, Network Security, Security Tools

Similiar White Papers

Balancing Security Against Productivity

What makes for great security? Is it about keeping the bad guys out or letting the good guys in? About defending atta

Publisher: Novell | Tags: management, security management

Security: New strides in preventing intrusions.

Need help eliminating risk in your IT environment? This ForwardView webshow describes how security appliances, which inc

Publisher: IBM

Novell Zenworks Endpoint Security Management: Total Control from a Single Console

Still super gluing your USB ports shut? Unauthorized access to networks, lost or stolen laptops and other mobile hardwar

Publisher: Novell | Tags: usb

Novell Zenworks Endpoint Security Management: Total Control from a Single Console

Unauthorized access to networks, lost or stolen laptops and other mobile hardware, and theft of proprietary informati

Publisher: Novell | Tags: laptop, mobile devices

Firewall Rules Analysis

This paper proposes a method to analyze the firewall policy or rule-set using Relational Algebra and Raining 2D-Box Mode

Publisher: Mahasarakham University | Tags: check point, firewall

DePaul University White Papers

Modeling and Verification of IPSec and VPN Security Policies

Featured white papers

The Value of Location Intelligence in the Communications Industry

Pitney Bowes

Public Services are under pressure, the challenge is to do more with less. How do you improve citizen satisfaction, increase cost efficiencies and improve service delivery? The power of location intelligence is helping many local authorities...

Download now »
Best Practices for Translating Customer Satisfaction into Revenue

Citrix Online

Today's support organisations are focused on two top-level metrics: financial results and customer satisfaction. For most, it's easy to track financial performance, but customer satisfaction is akin to speaking a foreign language...

Download now »
HP print solutions and 3M

Hewlett-Packard (HP)

The objective for 3M was to optimize office printing infrastructure at 3M locations worldwide, reduce total cost and environmental footprint. Some of the business benefits acheived by switching to HP print solutions...

Download now »