Skip to Main Content
With the development of enterprise Intranet and cluster servers, many emerging security challenges could not be solved by conventional firewall due to its inner deficiency. To address these security problems, we present a mobile-agent based distributed dynamic μFirewall architecture. In this architecture, special mobile agents implement a dynamic security policy reconfiguration and enhance the scalability. Each μFirewall is built with a packet filter and DTE-enhanced evaluator to provide dual fine-grain protection at the individual host level. A distributed intrusion detection and response (DIDR) system provides a fast response to both external and internal attacks, and allows an adaptive change in the security policy in the protected network. The DIDR system provides the infrastructure to support hierarchical intrusion responses and dynamic security capabilities. The distributed security architecture is scalable, topology independent, and intrusion-tolerant.
Date of Conference: 17-20 Dec. 2002