| ||||||||||||||||||||||||||||||||||||||||||||||||||||
7th USENIX Security Symposium, 1998
[Technical Program]
![[prev]](left_gr.gif)
![[up]](up_gr.gif)
![[next]](right.gif) Next: 1 Introduction
DFN-FWL Firewall-Laboratory for High-Speed Networks Fachbereich Informatik, Universität Hamburg Vogt-Kölln-Str. 30 D-22527 Hamburg Phone: +49-40-5494-2262 Fax: +49-40-5494-2241 {Benecke,Ellermann}@fwl.dfn.de AbstractThis paper discusses some security issues of `Classical IP over ATM' networks. After analyzing new threats to IP networks based on ATM, security mechanisms to protect these networks are introduced. The integration of firewalls into ATM networks requires additional considerations. We conclude that careful configuration of ATM switches and ATM services can provide some level of protection against spoofing and denial of service attacks. Our solutions are intended to be applied to current IP over ATM networks and do not require any changes to these protocols or additions to current switch capabilities.This work was funded by the DFN-Verein (Association for the promotion of a German Research Network) and Deutsche Telekom under project number: DT10.
Carsten Benecke, Uwe Ellermann / DFN-FWL |
|
This paper was originally published in the
Proceedings of the 7th USENIX Security Symposium,
January 26-29, 1998,
San Antonio, Texas
Last changed: 12 April 2002 aw |
|
Technical Program