• Home

  • Documents

  • Georg-Christian Pranschke Supervisor: Barry Irwin Security and Networks Research Group Department of...
10
Georg-Christian Pranschke Supervisor: Barry Irwin Security and Networks Research Group Department of Computer Science Rhodes University AUTOMATED FIREWALL RULE SET GENERATION THROUGH PASSIVE TRAFFIC INSPECTION

Georg-Christian Pranschke Supervisor: Barry Irwin Security and Networks Research Group Department of Computer Science Rhodes University AUTOMATED FIREWALL

Tags:

Embed Size (px)

Citation preview

Page 1: Georg-Christian Pranschke Supervisor: Barry Irwin Security and Networks Research Group Department of Computer Science Rhodes University AUTOMATED FIREWALL

Georg-Christian Pranschke Supervisor: Barry Irwin

Security and Networks Research Group

Department of Computer Science

Rhodes University

AUTOMATED FIREWALL RULE SET GENERATION

THROUGH PASSIVE TRAFFIC INSPECTION

Page 2: Georg-Christian Pranschke Supervisor: Barry Irwin Security and Networks Research Group Department of Computer Science Rhodes University AUTOMATED FIREWALL

AU

TO

MA

TED

FIREW

ALL R

ULE

SET

GEN

ER

ATIO

NBackground

Wireshark Tcpdump / Windump

ACM Classification System (1998) C.2.0. Security and Protection

• Introducing firewalls into existing networks is often problematic

• Production traffic cannot be interrupted

• Necessitates time consuming manual analysis of network traffic

• Ever increasing traffic volumes make manual analysis less feasible

Page 3: Georg-Christian Pranschke Supervisor: Barry Irwin Security and Networks Research Group Department of Computer Science Rhodes University AUTOMATED FIREWALL

AU

TO

MA

TED

FIREW

ALL R

ULE

SET

GEN

ER

ATIO

NTraffic Analyser – Flow Creation

Page 4: Georg-Christian Pranschke Supervisor: Barry Irwin Security and Networks Research Group Department of Computer Science Rhodes University AUTOMATED FIREWALL

AU

TO

MA

TED

FIREW

ALL R

ULE

SET

GEN

ER

ATIO

NHigh Level Design Overview – System Components

Page 5: Georg-Christian Pranschke Supervisor: Barry Irwin Security and Networks Research Group Department of Computer Science Rhodes University AUTOMATED FIREWALL

Pipeline: bpf -> sql -> scripts -> fwbuilder

Page 6: Georg-Christian Pranschke Supervisor: Barry Irwin Security and Networks Research Group Department of Computer Science Rhodes University AUTOMATED FIREWALL
Page 7: Georg-Christian Pranschke Supervisor: Barry Irwin Security and Networks Research Group Department of Computer Science Rhodes University AUTOMATED FIREWALL

Charybdis screencast

Scylla screencast

Page 8: Georg-Christian Pranschke Supervisor: Barry Irwin Security and Networks Research Group Department of Computer Science Rhodes University AUTOMATED FIREWALL

AU

TO

MA

TED

FIREW

ALL R

ULE

SET

GEN

ER

ATIO

NResults / Critical Evaluation

• Misconfigured firewall provides only the illusion of network security

• Imperfect information -> no proof of correctness

• “Dancing bears”

• HTTP universal firewall traversal protocol -> SQLi

Page 9: Georg-Christian Pranschke Supervisor: Barry Irwin Security and Networks Research Group Department of Computer Science Rhodes University AUTOMATED FIREWALL
Page 10: Georg-Christian Pranschke Supervisor: Barry Irwin Security and Networks Research Group Department of Computer Science Rhodes University AUTOMATED FIREWALL

AU

TO

MA

TED

FIREW

ALL R

ULE

SET

GEN

ER

ATIO

NQuestions ?


Mythical Rhodes

Mythical Rhodes

Documents
Georg kerschensteiner schule

Georg kerschensteiner schule

Education
LTE Rhodes

LTE Rhodes

Documents
Greeka guide to Rhodes - Icicte · 2010. 10. 19. · Rhodes p 2/14. Map of Rhodes Organize your trip to Rhodes. Greeka.com can also help you organize your entire holiday in Rhodes

Greeka guide to Rhodes - Icicte · 2010. 10. 19. · Rhodes p 2/14. Map of Rhodes Organize your trip to Rhodes. Greeka.com can also help you organize your entire holiday in Rhodes

Documents
RHODES TP FEB 2014 Digital - Rhodes Food Group | Food

RHODES TP FEB 2014 Digital - Rhodes Food Group | Food

Documents
James Rhodes

James Rhodes

Documents
( Prayer by Dr .Gary Rhodes ) · Gary Rhodes , Elliott Avenue Baptlst Church , Spr ing f ield , I kl (nots . Dr . Rhodes . DR . GARY RHODES : ( Prayer by Dr .Gary Rhodes ) PRESIDENT

( Prayer by Dr .Gary Rhodes ) · Gary Rhodes , Elliott Avenue Baptlst Church , Spr ing f ield , I kl (nots . Dr . Rhodes . DR . GARY RHODES : ( Prayer by Dr .Gary Rhodes ) PRESIDENT

Documents
GEORG ÓSKAR

GEORG ÓSKAR

Documents
2020 - Georg Jensen

2020 - Georg Jensen

Documents
Pub47 Rhodes

Pub47 Rhodes

Documents
Georg Philipp Telemann after an engraving by Georg ... · PDF fileGeorg Philipp Telemann after an engraving by Georg Lichtensteger ... Here Georg Philipp Telemann speaks directly to

Georg Philipp Telemann after an engraving by Georg ... · PDF fileGeorg Philipp Telemann after an engraving by Georg Lichtensteger ... Here Georg Philipp Telemann speaks directly to

Documents
RHODES COLLEGE

RHODES COLLEGE

Documents
Georg Simmel

Georg Simmel

Documents
12.09.2007Strategisches Marketing / Georg Boll1 Strategisches Marketing Georg Boll (OSR) Wirtschaftsinformatik Stuttgart

12.09.2007Strategisches Marketing / Georg Boll1 Strategisches Marketing Georg Boll (OSR) Wirtschaftsinformatik Stuttgart

Documents
The Rhodes Historical Review - Rhodes College | Become … · 2015-11-05 · the Department of History at Rhodes College publish The Rhodes Historical Review annually. ... The conquest

The Rhodes Historical Review - Rhodes College | Become … · 2015-11-05 · the Department of History at Rhodes College publish The Rhodes Historical Review annually. ... The conquest

Documents
Georg Winterer

Georg Winterer

Documents
Travers Rhodes

Travers Rhodes

Documents
Operation Egg Drop Rhodes Science 8 Rhodes Science 8

Operation Egg Drop Rhodes Science 8 Rhodes Science 8

Documents
Georg Lukacs 1949

Georg Lukacs 1949

Documents
Georg Rafi

Georg Rafi

Documents
Rhodes Hilton

Rhodes Hilton

Documents
Rhodes 1964

Rhodes 1964

Documents
Rhodes - kefitours.grkefitours.gr/pdf/KEFITOURS_Travel_Guides/EUROPE/... · Updated 15 July 2014 Photo: HBarrison Rhodes BruceHH Michael Cannon Photo: Forrestal_PL Rhodes, the pearl

Rhodes - kefitours.grkefitours.gr/pdf/KEFITOURS_Travel_Guides/EUROPE/... · Updated 15 July 2014 Photo: HBarrison Rhodes BruceHH Michael Cannon Photo: Forrestal_PL Rhodes, the pearl

Documents
Rhodes College Strategic Plan APPROVED College Strategic Plan APPROVED.pdfA Strategic Plan for Rhodes College 2020-2030 The Rhodes Vision Rhodes College aspires to graduate students

Rhodes College Strategic Plan APPROVED College Strategic Plan APPROVED.pdfA Strategic Plan for Rhodes College 2020-2030 The Rhodes Vision Rhodes College aspires to graduate students

Documents
Georg Simmel

Georg Simmel

Documents
BIOFEEDBACK - Rhodes

BIOFEEDBACK - Rhodes

Documents
Georg Lukacs.doc

Georg Lukacs.doc

Documents
Georg Simmel’in Din Teorisinin Temel Yaklaşımları GEORG

Georg Simmel’in Din Teorisinin Temel Yaklaşımları GEORG

Documents
YEARBOOK 2007 - Mandela Rhodes Scholarship · 2020. 7. 30. · Mandela Rhodes Foundation 2007 7 A Message from the Rhodes Trust William Waldegrave Chairman, The Rhodes Trust Oxford

YEARBOOK 2007 - Mandela Rhodes Scholarship · 2020. 7. 30. · Mandela Rhodes Foundation 2007 7 A Message from the Rhodes Trust William Waldegrave Chairman, The Rhodes Trust Oxford

Documents
The Rhodes Scholarships Australia - QUT...Rhodes Scholar, Lauren Dancer Most recently, the 2018 Queensland Rhodes Scholar, Dr Beth Hamilton. Dr Beth Hamilton, 2018 Queensland Rhodes

The Rhodes Scholarships Australia - QUT...Rhodes Scholar, Lauren Dancer Most recently, the 2018 Queensland Rhodes Scholar, Dr Beth Hamilton. Dr Beth Hamilton, 2018 Queensland Rhodes

Documents