Title :
DynFire: Dynamic firewalling in heterogeneous environments
Author :
Vensmer, A. ; Kiesel, S.
Author_Institution :
Inst. of Commun. Networks & Comput. Eng., Univ. of Stuttgart, Stuttgart, Germany
Abstract :
This paper presents “DynFire,” a novel approach for the role-based, dynamic control of network firewalls. DynFire allows an individually controlled, secure access to the ITresources of a large organization, with particular focus on mobile users and users with restricted rights, such as subcontractors. The basic assumption behind DynFire is that, within a secured network domain separated from the Internet, we can establish a temporary binding between an IP address and a single user ID. Whenever a user connects to or disconnects from this secure network domain, firewalls are configured accordingly, using a centralized “Firewall Manager” and standardized signaling protocols.
Keywords :
Internet; authorisation; computer network security; mobile computing; organisational aspects; protocols; resource allocation; standardisation; DynFire; IP address; Internet; centralized firewall manager; dynamic firewalling; heterogeneous environments; mobile users; network firewall role-based dynamic control; organizational aspects; secured IT-resource access; secured network domain; standardized signaling protocols; subcontractors; user ID; Fires; IP networks; Internet; Network topology; Protocols; Security; Topology; dynamic firewall control; network security; policy based network access control; signaling protocols;
Conference_Titel :
Internet Security (WorldCIS), 2012 World Congress on
Conference_Location :
Guelph, ON
Print_ISBN :
978-1-4673-1108-3
