Is A Firewall Enough?

Share Article

Dallas, TX, December 3rd, 2004 --- Firewalls are addressable by IP numbers and thus vulnerable to attacks. With the reports on constant system probing, and increasing damages from Denial-of-Service attacks, is an additional security layer necessary to protect firewalls and for application delivery assurance?

As businesses and governments rely increasingly on the Internet as a communications vehicle to conduct business, to operate supply chains, maintain customer relationships and support products, and to disseminate information the public, this critical infrastructure is equally increasingly threatened by system and network probing to detect and exploit vulnerabilities (Penetration Testing attacks), by Denial-of-Service attacks from armies of easily obtainable "bot-networks", and the payloads of various valid and invalid (malicious) network traffic.

More importantly, internal and priviliged networks face similar threats from compromised systems within the secured perimeter, in most environments without any layer of traffic validation.

Few methods are available to protect against these threats, limited to systems prohibiting communication on ports of the TCP/IP protocol and authenticating access (firewalls), or systems trying to recognize and alert to unusual traffic behaviour, such as intrusion detection systems (IDS).

The majority of network administrators use some kind of firewall to protect their network. However, all firewalls share a similar disadvantage: they are addressable, thus vulnerable to various forms of attacks.

New services, such as deployment of the popular Voice-over-IP (VoIP) to enhance features and reduce cost, remain largely unprotected, leaving these infrastructure components wide open for attacks (in the case of VoIP, threatening to shut down the entire telephony infrastructure with a few keystrokes).

Melior, an authority on CyberWarfare Defense with proven expertise, discusses the pro and contra of adding another layer to firewall and infrastructure protection to prevent Denial-of-Service attacks, syn-floods, and penetration testing probing, as well as new services such as VoIP.

For the full discussion, please visit http://www.ddos.com/index.php?news_id=22

About Melior

Melior Inc. ('melior' is Latin and means 'better') is a privately held US company headquartered in Dallas, Texas, with offices in Dortmund, Germany and New Delhi, India. Melior provides solutions against distributed Denial-of-Service (dDoS) attacks, which also protect against Penetration Testing for vulnerability exploitation.

###

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Matt Gair