application firewall research proposal
-
Upload
peter-cheung -
Category
Technology
-
view
185 -
download
0
description
Transcript of application firewall research proposal
![Page 2: application firewall research proposal](https://reader036.fdocuments.in/reader036/viewer/2022082921/555e2829d8b42a384f8b508f/html5/thumbnails/2.jpg)
Security Trend
Security
Product
Hardware(firewall)
Software(antivirus, software firewall
Service
AD Consultant 7x24
![Page 3: application firewall research proposal](https://reader036.fdocuments.in/reader036/viewer/2022082921/555e2829d8b42a384f8b508f/html5/thumbnails/3.jpg)
Hardware
• Why we are not qualify– we don’t have network OS– We don’t have network CPU (firewall, switch,
router)• Investment cycle is very long– Juniper Network OS take over 15 years– CPU need thousands of researchers
![Page 4: application firewall research proposal](https://reader036.fdocuments.in/reader036/viewer/2022082921/555e2829d8b42a384f8b508f/html5/thumbnails/4.jpg)
Software (firewall)• First generation: packet filters
– If a packet matches the packet filter's set of rules, the packet filter will drop (silently discard) the packet, or reject it (discard it, and send "error responses" to the source)
• Second generation: "stateful" filters– Second-generation firewalls perform the work of their first-generation
predecessors but operate up to layer 4
• Third generation: application layer– Our opportunity
• Forth generation: cloud firewall– VM Migration, distributed firewall
![Page 5: application firewall research proposal](https://reader036.fdocuments.in/reader036/viewer/2022082921/555e2829d8b42a384f8b508f/html5/thumbnails/5.jpg)
Why software firewall
• No need huge investment cost– No need to research anything in hardware– Saving time
• Software expertise is easier to find than hardware security expertise
• Great security company must has their own security product
![Page 6: application firewall research proposal](https://reader036.fdocuments.in/reader036/viewer/2022082921/555e2829d8b42a384f8b508f/html5/thumbnails/6.jpg)
Market information
![Page 7: application firewall research proposal](https://reader036.fdocuments.in/reader036/viewer/2022082921/555e2829d8b42a384f8b508f/html5/thumbnails/7.jpg)
What is firewallhttp://upload.wikimedia.org/wikipedia/commons/3/37/Netfilter-packet-flow.svg
![Page 8: application firewall research proposal](https://reader036.fdocuments.in/reader036/viewer/2022082921/555e2829d8b42a384f8b508f/html5/thumbnails/8.jpg)
Application Firewall
• 4 major architectures– Java– .net– Php– Other (ROR, perl, etc)
![Page 9: application firewall research proposal](https://reader036.fdocuments.in/reader036/viewer/2022082921/555e2829d8b42a384f8b508f/html5/thumbnails/9.jpg)
Application Firewall
Java is No 1.C# is No 2.
![Page 10: application firewall research proposal](https://reader036.fdocuments.in/reader036/viewer/2022082921/555e2829d8b42a384f8b508f/html5/thumbnails/10.jpg)
Java web server
• Type:– Tomcat– Websphere– Weblogic– Jboss
• Opensource or close source?
![Page 11: application firewall research proposal](https://reader036.fdocuments.in/reader036/viewer/2022082921/555e2829d8b42a384f8b508f/html5/thumbnails/11.jpg)
How to find our first customer
• Type:– Gov– Big corp– Public tender
• I know some– Oracle director– JOS director– Microsoft director
![Page 12: application firewall research proposal](https://reader036.fdocuments.in/reader036/viewer/2022082921/555e2829d8b42a384f8b508f/html5/thumbnails/12.jpg)
How many people we need
• Architecture – consolidate the whole design• Programmer – Do actual coding• Design – We do need some graphic design• Sales – We need him to help us to find the first
test-case user
![Page 13: application firewall research proposal](https://reader036.fdocuments.in/reader036/viewer/2022082921/555e2829d8b42a384f8b508f/html5/thumbnails/13.jpg)
We we can give to company?
• A workable software firewall• A way to sales• A way to do firewall monitoring and
consultanting business
![Page 14: application firewall research proposal](https://reader036.fdocuments.in/reader036/viewer/2022082921/555e2829d8b42a384f8b508f/html5/thumbnails/14.jpg)
How to form team• This is a research, not just a project• This is a product, not just a project• We need to have heart• Tradition waterfall dev model will not work
![Page 15: application firewall research proposal](https://reader036.fdocuments.in/reader036/viewer/2022082921/555e2829d8b42a384f8b508f/html5/thumbnails/15.jpg)
How to form team
BOD
GOAL
Team leader
(not pm)
Assign job
Core member
![Page 16: application firewall research proposal](https://reader036.fdocuments.in/reader036/viewer/2022082921/555e2829d8b42a384f8b508f/html5/thumbnails/16.jpg)
If we fail, what should company do?
![Page 17: application firewall research proposal](https://reader036.fdocuments.in/reader036/viewer/2022082921/555e2829d8b42a384f8b508f/html5/thumbnails/17.jpg)
Just fire me