This Article 
   
 Share 
   
 Bibliographic References 
   
 Add to: 
 
Digg
Furl
Spurl
Blink
Simpy
Google
Del.icio.us
Y!MyWeb
 
 Search 
   
5th IEEE Symposium on FPGA-Based Custom Computing Machines (FCCM '97)
An FPGA-based coprocessor for ATM firewalls
Napa Valley, CA
April 16-April 18
ISBN: 0-8186-8159-4
ASCII Text
x 
 
J.T. McHenry, P.W. Dowd, F.A. Pellegrino, T.M. Carrozzi, W.B. Cocks, "An FPGA-based coprocessor for ATM firewalls," Field-Programmable Custom Computing Machines, Annual IEEE Symposium on, pp. 30, 5th IEEE Symposium on FPGA-Based Custom Computing Machines (FCCM '97), 1997.
 
 
BibTex
x
 
@article{ 10.1109/FPGA.1997.624602,
author = {J.T. McHenry and P.W. Dowd and F.A. Pellegrino and T.M. Carrozzi and W.B. Cocks},
title = {An FPGA-based coprocessor for ATM firewalls},
journal ={Field-Programmable Custom Computing Machines, Annual IEEE Symposium on},
volume = {0},
year = {1997},
issn = {1082-3409},
pages = {30},
doi = {http://doi.ieeecomputersociety.org/10.1109/FPGA.1997.624602},
publisher = {IEEE Computer Society},
address = {Los Alamitos, CA, USA},
}
 
 
RefWorks Procite/RefMan/Endnote
x 
 
TY - CONF
JO - Field-Programmable Custom Computing Machines, Annual IEEE Symposium on
TI - An FPGA-based coprocessor for ATM firewalls
SN - 1082-3409
SP
EP
A1 - J.T. McHenry,
A1 - P.W. Dowd,
A1 - F.A. Pellegrino,
A1 - T.M. Carrozzi,
A1 - W.B. Cocks,
PY - 1997
KW - field programmable gate arrays; FPGA-based coprocessor; ATM firewalls; traffic selectability; performance penalty; IP level firewalls; high-speed broadband networks; asynchronous transfer mode networks; ATM networks; security management; active connection management; authentication; network security; packet filtering; application level proxy gateways; performance degradation; front end processor; signaling information
VL - 0
JA - Field-Programmable Custom Computing Machines, Annual IEEE Symposium on
ER -
 
J.T. McHenry, Dept. of Defense, Fort Meade, ID, USA
P.W. Dowd, Dept. of Defense, Fort Meade, ID, USA
F.A. Pellegrino, Dept. of Defense, Fort Meade, ID, USA
T.M. Carrozzi, Dept. of Defense, Fort Meade, ID, USA
W.B. Cocks, Dept. of Defense, Fort Meade, ID, USA
This implementation of the firewall enables a high degree of traffic selectability yet avoids the usual performance penalty associated with IP level firewalls. This approach is applicable to high-speed broadband networks, and asynchronous transfer mode (ATM) networks are addressed in particular. Security management is achieved through a new technique of active connection management with authentication. Past approaches to network security involve firewalls providing selection based on packet filtering and application level proxy gateways. IP level firewalling was sufficient for traditional networks but causes a severe performance degradation in high speed broadband environments. The approach described in this paper discusses the use of an FPGA-based front end processor that filters relevant signaling information to the firewall host while at the same time allowing friendly connections to proceed at line speed with no performance degradation.
Index Terms:
field programmable gate arrays; FPGA-based coprocessor; ATM firewalls; traffic selectability; performance penalty; IP level firewalls; high-speed broadband networks; asynchronous transfer mode networks; ATM networks; security management; active connection management; authentication; network security; packet filtering; application level proxy gateways; performance degradation; front end processor; signaling information
Citation:
J.T. McHenry, P.W. Dowd, F.A. Pellegrino, T.M. Carrozzi, W.B. Cocks, "An FPGA-based coprocessor for ATM firewalls," fccm, pp.30, 5th IEEE Symposium on FPGA-Based Custom Computing Machines (FCCM '97), 1997
Usage of this product signifies your acceptance of the Terms of Use.