Saliou, Lionel, Buchanan, William J, Graves, Jamie and Munoz, Jose (2007) Scenario Analysis using Out-of-line Firewall Evaluation Framework. In: 6th European Conference on Information Warfare, and Security, July 2-3, Shrivenham, UK.
|PDF (This paper outlines a novel framework for the measurements of network firewalls dynamic performance) |
Restricted to Registered users only
Available under License Creative Commons Attribution Non-commercial.
Distributed Denial-of-Service (DDoS) attacks against corporate networks and assets are increasing, and their potential risk for future attacks is also a major concern. These attacks typically aim at disabling computer network infrastructure, and, since there is no one method to mitigate this type of threat, organisations must deploy adequate solutions, and assess the adequacy of their choices against their network requirements, through analysis, such as a simulation, or through network device modelling. A key factor is that DDoS is a dynamic type of attack, and thus device performance is a key parameter, especially for intermediate devices, such as network firewalls. Most of the modelling, though, for firewalls is focusing on static and logical performance attributes, such as whether traffic is denied or permitted. Thus existing models typically cannot deal with dynamic issues when related to intermediate devices. Simulation tools might be possible, but it is often difficult to cover a whole range of devices, thus this paper outlines a novel method of modelling the dynamic performance of network firewalls, and in measuring if they can cope with varying network loads.
|Item Type:||Conference or Workshop Item (Paper)|
|Uncontrolled Keywords:||Network security; Distributed denial of service; Dynamic attack; Network firewalls; Dynamic performance evaluation;|
|University Divisions/Research Centres:||Faculty of Engineering, Computing and Creative Industries > School of Computing|
|Dewey Decimal Subjects:||000 Computer science, information & general works > 000 Computer science, knowledge & systems > 004 Data processing & computer science > 004.2 Systems analysis, design & performance|
000 Computer science, information & general works > 000 Computer science, knowledge & systems > 005 Computer programming, programs & data > 005.8 Data security
|Library of Congress Subjects:||Q Science > QA Mathematics > QA75 Electronic computers. Computer science|
|Depositing User:||Lionel Saliou|
|Date Deposited:||20 May 2009 12:24|
|Last Modified:||18 Jun 2012 14:14|
Actions (login required)