Title :
Self Protection through Collaboration Using D-CAF: A Distributed Context-Aware Firewall
Author :
Varas, Cristian ; Hirsch, Thomas
Author_Institution :
Fraunhofer Inst. fur Offene Kommunikationssysteme (FOKUS), Berlin, Germany
Abstract :
Keeping network services in the Internet available overtime is not an easy task. Sudden changes in usage volumes are common, not least due to flash crowds and denial of service attacks. Given the difficulty to discern malicious users from regular customers, administrators have little chance to mitigate without compromising availability or security. The presented distributed context-aware firewall (D-CAF) architecture, avails itself of the specialized knowledge of the protected services to minimize the impact.The protected services participate in in a valuation process,forwarding a per-user value/cost ratio information to the D-CAF. When a traffic overload occurs, the firewall selectively limits the access to resources of the protected system based on the aggregated reports. The semantic simplicity of the report lends itself to propagation and collaboration between several D-CAF instances. In this paper we discuss the approach, architecture and first testing results.
Keywords :
Internet; authorisation; ubiquitous computing; D-CAF architecture; Internet; collaboration; denial of service attack; distributed context-aware firewall; flash crowd; malicious user; network service; protected service; self protection; Collaboration; Computer crime; Context-aware services; Cost accounting; IP networks; Information security; Internet; Protection; Telecommunication traffic; Testing; Autonomic Communication; Denial of Service; Flash crowds; Intrusion Prevention; Participative Measurement;
Conference_Titel :
Emerging Security Information, Systems and Technologies, 2009. SECURWARE '09. Third International Conference on
Conference_Location :
Athens, Glyfada
Print_ISBN :
978-0-7695-3668-2
DOI :
10.1109/SECURWARE.2009.35
