Title :
A quantitative study of firewall configuration errors
Author_Institution :
Dept. of Electr. Eng., Tel Aviv Univ., Israel
fDate :
6/1/2004 12:00:00 AM
Abstract :
The protection that firewalls provide is only as good as the policy they are configured to implement. Analysis of real configuration data show that corporate firewalls are often enforcing rule sets that violate well established security guidelines. Firewalls are the cornerstone of corporate intranet security. Once a company acquires a firewall, a systems administrator must configure and manage it according to a security policy that meets the company´s needs. Configuration is a crucial task, probably the most important factor in the security a firewall provides.
Keywords :
authorisation; computer network management; intranets; corporate firewalls; corporate intranet security; firewall configuration errors; security policy; systems administrator; Automotive engineering; Computer viruses; Data security; Databases; Frequency measurement; Medical services; Operating systems; Software measurement; Software quality; Statistical distributions;
