A Distributed Dynamic μFirewall Architecture with Mobile Agents and KeyNote Trust Management System

Hai Jin, Feng Xian, Zongfen Han and Shengli Li

View Related Documents

Book Chapter
A Semantic Web Framework for Interleaving Policy Reasoning and External Service Discovery
Jinghai Rao and Norman Sadeh
Lecture Notes in Computer Science, 2005, Volume 3791, Rules and Rule Markup Languages for the Semantic Web, Pages 56-70
- Download PDF (286.3 KB)
Book Chapter
Models of Distributed Secure Computing
Paulo Veríssimo and Luís Rodrigues
Advances in Distributed Computing and Middleware, 1, Volume 1, Distributed Systems for System Architects, Part IV, Pages 427-486
- Download PDF (7.1 MB)
Book Chapter
Security Management
Dinesh Chandra Verma
2009, Principles of Computer Systems and Network Management, Pages 221-250
- Download PDF (492.0 KB)
- View HTML
Book Chapter
Path-Based Access Control for Enterprise Networks
Matthew Burnside and Angelos D. Keromytis
Lecture Notes in Computer Science, 2008, Volume 5222, Information Security, Pages 191-203
- Download PDF (218.5 KB)
Book Chapter
Some Words About Hardening
2006, Hardening Windows, Pages 1-10
- Download PDF (108.5 KB)
Book Chapter
CIPS: Coordinated Intrusion Prevention System
Hai Jin, Zhiling Yang, Jianhua Sun, Xuping Tu and Zongfen Han
Lecture Notes in Computer Science, 2005, Volume 3391, Information Networking. Convergence in Broadband and Mobile Networking, Pages 89-98
- Download PDF (225.9 KB)
Book Chapter
Choosing the Right Firewall
2007, Practical Internet Security, Part XIII, Pages 373-397
- Download PDF (254.7 KB)
Book Chapter
Security for Enterprise Cloud Services₂
William Y. Chang, Hosame Abu-Amara and Jessica Feng Sanford
2010, Transforming Enterprise Cloud Services, Pages 341-384
- Download PDF (4.2 MB)
- View HTML
Book Chapter
Architecting Dependable Access Control Systems for Multi-domain Computing Environments
Maciej P. Machulak, Simon E. Parkin and Aad van Moorsel
Lecture Notes in Computer Science, 2009, Volume 5835, Architecting Dependable Systems VI, Pages 49-75
- Download PDF (421.8 KB)
Book Chapter
Providing Wireless Network Security Solutions for ISP Intranet, Internet and E-Commerce
2006, Guide to Wireless Network Security, Part VII, Pages 683-733
- Download PDF (2.6 MB)

Abstract

Due to end-to-end design principle in distributed applications, many emerging security problems could not be solved by conventional security technologies, such as firewalls and IDSs. To address these problems, we present a distributed dynamic μFirewall architecture based on mobile agents and KeyNote trust management system. In this architecture, KeyNote trust management system provides the scalable distributed control capability and supports a mechanism called “policy-updates on demand”. Mobile agents implement dynamic security policy reconfiguration and enhance the scalability. Each μFirewall is built with a packet filter and DTE-enhanced evaluator to enforce policy at the end points. A distributed intrusion detection and response (DIDR) system supports dynamic security capabilities and provides fast response to attacks from all possible sources. Our architecture is scalable, topology independent, and intrusion-tolerant.

Fulltext Preview

Image of the first page of the fulltext document

Frequently asked questions General info on journals and books Send us your feedback Impressum Contact us

SpringerLink

A Distributed Dynamic μFirewall Architecture with Mobile Agents and KeyNote Trust Management System

View Related Documents

Abstract

Fulltext Preview