AL-SAFE: A Secure Self-Adaptable Application-Level Firewall for IaaS Clouds - Archive ouverte HAL Access content directly
Conference Papers Year : 2016

AL-SAFE: A Secure Self-Adaptable Application-Level Firewall for IaaS Clouds

(1, 2) , (2) , (2) , (2)
1
2

Abstract

Application-level firewalls filter traffic based on a white list of processes that are allowed to access the network. Although they have a complete overview of the system in which they are executed, they can be easily bypassed by knowledgable attackers. In this paper we present AL-SAFE, a cloud-tailored application-level self-adaptable firewall which combines the high degree of visibility of an application-level firewall with the isolation of a traditional standalone firewall. AL-SAFE is able to filter traffic at two distinct points in the virtual infrastructure and adapt the enforced rulesets based on changes in the virtual infrastructure topology and the list of services running inside the virtual machines. Our performance analysis shows that AL-SAFE imposes a tolerable delay to legitimate network connections while it is able to filter out all unauthorised packets.
Fichier principal
Vignette du fichier
al_safe.pdf (293.66 Ko) Télécharger le fichier
Vignette du fichier
al-safe.bib (439 B) Télécharger le fichier
Origin : Files produced by the author(s)
Format : Other
Origin : Files produced by the author(s)
Comment : bib entry
Loading...

Dates and versions

hal-01363540 , version 1 (31-10-2016)

Identifiers

  • HAL Id : hal-01363540 , version 1

Cite

Anna Giannakou, Louis Rilling, Jean-Louis Pazat, Christine Morin. AL-SAFE: A Secure Self-Adaptable Application-Level Firewall for IaaS Clouds. CloudCom2016-8th IEEE International Conference on Cloud Computing Technology and Science, Dec 2016, luxembourg, Luxembourg. ⟨hal-01363540⟩
392 View
162 Download

Share

Gmail Facebook Twitter LinkedIn More