Software-based unified security switch
When a network is protected by different types of security devices such as firewalls, antivirus, and intrusion prevention systems, certain issues arises that may affect the network's performance. Such security devices are placed in a linear fashion on a link to the network's edge. A common...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | text |
| Language: | English |
| Published: |
Animo Repository
2009
|
| Subjects: | |
| Online Access: | https://animorepository.dlsu.edu.ph/etd_bachelors/14625 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | De La Salle University |
| Language: | English |
| id |
oai:animorepository.dlsu.edu.ph:etd_bachelors-15267 |
|---|---|
| record_format |
eprints |
| spelling |
oai:animorepository.dlsu.edu.ph:etd_bachelors-152672021-11-13T03:20:04Z Software-based unified security switch Cagampan, Dennis H. Cuaves, Julius R. Narca, Michael Daniel B. Sabas, Isaac Herculano S. When a network is protected by different types of security devices such as firewalls, antivirus, and intrusion prevention systems, certain issues arises that may affect the network's performance. Such security devices are placed in a linear fashion on a link to the network's edge. A common approach to improve performance is to replicate the security devices using an additional link to the network's edge. Traffic is load balanced to the two links using a networking appliance such as a router. However, this approach is very expensive to implement. An alternative solution is the use of a unified security switch. A unified security switch is a device that sits in between the edge device and the internal network. All security devices are connected to it and it monitors the status of each one of them. It classifies captured packet according to the protocol of the packet and forwards the packet to the appropriate security devices the packet must undergo inspection based on the classification. The appropriate security devices are based on an XML configuration and the different packet classifiers. The unified security switch is capable of load balancing security devices of the same function. The unified security switch then consolidates all the receive packets forwarded to the appropriate security devices and then decides whether the packet is allowed to be forwarded to the other network or not. 2009-01-01T08:00:00Z text https://animorepository.dlsu.edu.ph/etd_bachelors/14625 Bachelor's Theses English Animo Repository Computer security Computer networks--Security measures |
| institution |
De La Salle University |
| building |
De La Salle University Library |
| continent |
Asia |
| country |
Philippines Philippines |
| content_provider |
De La Salle University Library |
| collection |
DLSU Institutional Repository |
| language |
English |
| topic |
Computer security Computer networks--Security measures |
| spellingShingle |
Computer security Computer networks--Security measures Cagampan, Dennis H. Cuaves, Julius R. Narca, Michael Daniel B. Sabas, Isaac Herculano S. Software-based unified security switch |
| description |
When a network is protected by different types of security devices such as firewalls, antivirus, and intrusion prevention systems, certain issues arises that may affect the network's performance. Such security devices are placed in a linear fashion on a link to the network's edge. A common approach to improve performance is to replicate the security devices using an additional link to the network's edge. Traffic is load balanced to the two links using a networking appliance such as a router. However, this approach is very expensive to implement. An alternative solution is the use of a unified security switch. A unified security switch is a device that sits in between the edge device and the internal network. All security devices are connected to it and it monitors the status of each one of them. It classifies captured packet according to the protocol of the packet and forwards the packet to the appropriate security devices the packet must undergo inspection based on the classification. The appropriate security devices are based on an XML configuration and the different packet classifiers. The unified security switch is capable of load balancing security devices of the same function. The unified security switch then consolidates all the receive packets forwarded to the appropriate security devices and then decides whether the packet is allowed to be forwarded to the other network or not. |
| format |
text |
| author |
Cagampan, Dennis H. Cuaves, Julius R. Narca, Michael Daniel B. Sabas, Isaac Herculano S. |
| author_facet |
Cagampan, Dennis H. Cuaves, Julius R. Narca, Michael Daniel B. Sabas, Isaac Herculano S. |
| author_sort |
Cagampan, Dennis H. |
| title |
Software-based unified security switch |
| title_short |
Software-based unified security switch |
| title_full |
Software-based unified security switch |
| title_fullStr |
Software-based unified security switch |
| title_full_unstemmed |
Software-based unified security switch |
| title_sort |
software-based unified security switch |
| publisher |
Animo Repository |
| publishDate |
2009 |
| url |
https://animorepository.dlsu.edu.ph/etd_bachelors/14625 |
| _version_ |
1718382639694479360 |