Application gateways / firewall-information security, Computer Network Security

Assignment Help:

Application Gateways / firewall

The application level firewall is installed on a dedicated computer; also called as a proxy server. These servers can store the recently accessed pages in their cache and called as cache servers. As proxy server is placed in unsecured area of the network (for example DMZ), it is exposed to higher levels of risk from unreliable networks. Additional filtering routers can be implemented behind proxy server, further protecting internal systems. The disadvantage is they are characteristically restricted to a single application, as they work at application layer. Figure given below illustrates the different types of Firewalls which is compared to OSI model

 

 

255_Application Gateways -firewall.png

 

 

 Circuit Gateways

The circuit gateway firewall operates at transport layer. Filtering firewalls, do not normally look at data traffic flowing between two networks, but it prevent direct connections between one network and the other. This is can be accomplished by creating tunnels connecting specific processes or systems on each side of firewall, and allows authorized traffic in the tunnels.

 MAC Layer Firewalls

MAC layer firewalls which is designed to operate at media access control layer of OSI network model. This gives the ability to consider specific host computer’s identity in the filtering decisions of it. The MAC addresses of specific host computers are linked to access control list (ACL) entries that identify specific types of packets which can be sent to each host; all other traffic is blocked.

 Hybrid Firewalls


Hybrid Firewalls combine elements of other types of firewalls; that is, elements of packet filtering and proxy services, or of packet filtering and circuit gateways. On the other hand, it may consist of 2 separate firewall devices; each is a separate firewall system, but is connected to work in tandem. Without replacing the existing firewalls completely, an organization can make a security improvement, from this approach.


Related Discussions:- Application gateways / firewall-information security

Computer security, Implementing an effective online authentication scheme i...

Implementing an effective online authentication scheme in practice faces many challenges. Systems with highly sensitive data often require multifactor authentication. But, requirin

Describe the terms prime number and prime factorisation, (a) An opponent is...

(a) An opponent is using RSA with the public key {e=53, n=77}. You intercept the ciphertext C=10. (All values on this problem, including the ciphertext and the cleartext, are nume

What is a firewall, QUESTION (a) Define and distinguish between Electro...

QUESTION (a) Define and distinguish between Electronic Commerce and Electronic Business (b) According to you what are the benefits that Electronic Commerce can brings to org

Securities Issues in a company, 'Near Field Communication' (NFC) technologi...

'Near Field Communication' (NFC) technologies are expected to become commonplace in the near future. Some relevant features are these: A suitable device (such as a mobile pho

Address resolution with message exchange, ADDRESS RESOLUTION WITH MESSAGE E...

ADDRESS RESOLUTION WITH MESSAGE EXCHANGE An alternative to local calculation is a distributed function. A computer that requires to find an address transmits a message across

Software vulnerabilities, 1.  We used the National Vulnerability Database. ...

1.  We used the National Vulnerability Database. Select a recent vulnerability from that Database and analyse it from the following aspects: Criticality level Impact in

Describe how lower bounds on arc flows, QUESTION: (a) Suppose the graph ...

QUESTION: (a) Suppose the graph below, use the Flow Decomposition method to list the cycles and paths produced. (b) Describe how Lower Bounds on Arc Flows are eliminated

Security goals, what is relation ship between computer security goals?

what is relation ship between computer security goals?

Systems development life cycle security-information security, The Role of t...

The Role of the Investigation The first phase, investigation is the most significant. What problem is the system being developed to solve? During investigation phase, objectives

The cost benefit analysis (cba) formula, The Cost Benefit Analysis (CBA) Fo...

The Cost Benefit Analysis (CBA) Formula CBA determines that whether the control alternative being evaluated is worth cost incurred to control vulnerability or not. CBA easily ca

Write Your Message!

Captcha
Free Assignment Quote

Assured A++ Grade

Get guaranteed satisfaction & time on delivery in every assignment order you paid with us! We ensure premium quality solution document along with free turntin report!

All rights reserved! Copyrights ©2019-2020 ExpertsMind IT Educational Pvt Ltd