Firewall strategies using network processors
作者: Matthew Mariani
DOI:
关键词:
摘要: The emergence of network processors provides a broad range new applications, particularly in the field security. Firewalls have become one basic building blocks implementing network's security policy; however, firewall can potentially lead to bottleneck network. Therefore, improving performance means also protected With ability direcdy monitor and modify packet information at wire speeds, processor avenue for pursuit faster, more efficient products. This paper describes implementation two simulated based firewalls. first architecture, filtering firewall, utilizes tree-based structures manipulating IP transport level rules while utilizing parallelism available during rule look-ups. In second parallel is created using based, load-balancing switch along with machines, both filter operations architecture. When added existing routing software, these implementations demonstrate feasibility creating dynamic packet-filtering routers technology.
rit.edu参考文章(11)
Mark Vandenwauver, Paul Ashley, Practical Intranet Security : Overview of the State of the Art and Available Technologies ,(2013)
Steve R. White, Open Problems in Computer Virus Research ,(1998)
Marcus Gonçalves, Firewalls: A Complete Guide ,(1999)
Uyless Black, Internet Architecture: An Introduction to IP Protocols ,(2000)
Sarah Gordon, Virus Writers: The End of The Innocence? ,(2000)
Chris Hare, Karanjit S. Siyan, Internet firewalls and network security ,(1996)
Jun Xu, Mukesh Singhal, Design of a high-performance ATM firewall computer and communications security. pp. 93- 102 ,(1998) , 10.1145/288090.288113
Gary R. Wright, W. Richard Stevens, TCP/IP Illustrated, Volume 2: The Implementation ,(1995)
Jeffrey O. Kephart, Gregory B. Sorkin, David M. Chess, Steve R. White, Fighting Computer Viruses Scientific American. ,vol. 277, pp. 88- 93 ,(1997) , 10.1038/SCIENTIFICAMERICAN1197-88
James F. Kurose, Keith W. Ross, Computer Networking: A Top-Down Approach Featuring the Internet ,(2000)