12 March 1996 Six pitfalls in firewall deployment
Author Affiliations +
Proceedings Volume 2616, Information Protection and Network Security; (1996); doi: 10.1117/12.232270
Event: Photonics East '95, 1995, Philadelphia, PA, United States
Abstract
This note describes six key pitfalls in the deployment of popular commercial firewalls. The term `deployment' is intended to include the architecture of the firewall software itself, the integration of the firewall with the operating system platform, and the interconnection of the complete hardware/software combination within its target environment. After reviewing the evolution of Internet firewalls against the backdrop of classical trusted systems development, specific flaws and oversights in the familiar commercial deployments are analyzed in some detail. While significantly costlier solutions are available that address some of these problems, the analysis is applicable to the overwhelming majority of firewalls in use at both commercial and Government installations.
© (1996) COPYRIGHT Society of Photo-Optical Instrumentation Engineers (SPIE). Downloading of the abstract is permitted for personal use only.
Bruce Wilner, "Six pitfalls in firewall deployment", Proc. SPIE 2616, Information Protection and Network Security, (12 March 1996); doi: 10.1117/12.232270; http://dx.doi.org/10.1117/12.232270
PROCEEDINGS
9 PAGES


SHARE
KEYWORDS
Computing systems

Internet

Network security

Operating systems

Information security

Computer security

Environmental sensing

Back to Top