Abstract
|
This paper presents "DynFire", a novel approach for the role-based, dynamic control of network firewalls. DynFire allows an individually controlled, secure access to the IT resources of a large organization, with particular focus on mobile users and users with restricted rights, such as subcontractors. The basic assumption behind DynFire is that, within a secured network domain separated from the Internet, we can establish a temporary binding between an IP address and a single user ID. Whenever a user connects to or disconnects from this secure network domain, firewalls are configured accordingly, using a centralized ?Firewall Manager? and standardized signaling protocols.
|
Reference entry
|
Vensmer, A.; Kiesel, S.
DynFire: Dynamic Firewalling in Heterogeneous Environments
World Congress on Internet Security (WorldCIS-2012), Guelph, June 2012
|