DocumentCode
1008747
Title
A quantitative study of firewall configuration errors
Author
Wool, Avishai
Author_Institution
Dept. of Electr. Eng., Tel Aviv Univ., Israel
Volume
37
Issue
6
fYear
2004
fDate
6/1/2004 12:00:00 AM
Firstpage
62
Lastpage
67
Abstract
The protection that firewalls provide is only as good as the policy they are configured to implement. Analysis of real configuration data show that corporate firewalls are often enforcing rule sets that violate well established security guidelines. Firewalls are the cornerstone of corporate intranet security. Once a company acquires a firewall, a systems administrator must configure and manage it according to a security policy that meets the company´s needs. Configuration is a crucial task, probably the most important factor in the security a firewall provides.
Keywords
authorisation; computer network management; intranets; corporate firewalls; corporate intranet security; firewall configuration errors; security policy; systems administrator; Automotive engineering; Computer viruses; Data security; Databases; Frequency measurement; Medical services; Operating systems; Software measurement; Software quality; Statistical distributions;
fLanguage
English
Journal_Title
Computer
Publisher
ieee
ISSN
0018-9162
Type
jour
DOI
10.1109/MC.2004.2
Filename
1306389
Link To Document