By Topic

A mobile-agent based distributed dynamic μFirewall architecture

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

The purchase and pricing options are temporarily unavailable. Please try again later.
4 Author(s)
Feng Xian ; Internet & Cluster Comput. Center, Huazhong Univ. of Sci. & Technol., Wuhan, China ; Hai Jin ; Ke Liu ; Zongfen Han

With the development of enterprise Intranet and cluster servers, many emerging security challenges could not be solved by conventional firewall due to its inner deficiency. To address these security problems, we present a mobile-agent based distributed dynamic μFirewall architecture. In this architecture, special mobile agents implement a dynamic security policy reconfiguration and enhance the scalability. Each μFirewall is built with a packet filter and DTE-enhanced evaluator to provide dual fine-grain protection at the individual host level. A distributed intrusion detection and response (DIDR) system provides a fast response to both external and internal attacks, and allows an adaptive change in the security policy in the protected network. The DIDR system provides the infrastructure to support hierarchical intrusion responses and dynamic security capabilities. The distributed security architecture is scalable, topology independent, and intrusion-tolerant.

Published in:

Parallel and Distributed Systems, 2002. Proceedings. Ninth International Conference on

Date of Conference:

17-20 Dec. 2002