Abstract
Network and computer systems have become a critical asset to all organizations. These complex networks must connect several different hardware, software and data platforms seamlessly. This complexity makes it difficult to reliably manage and secure the network and its attached systems while maintaining availability to authorized users. Traditional approaches including the use of VLANs, ACLs, firewalls, and proxies are complicated and make it hard to maintain consistent control across the enterprise. Several tools have been developed to help administrators audit and configure these devices. Despite these efforts, networks still remain unsecure and difficult to manage. This paper looks at a radical new centralized approach to network management called Ethane. Ethane provides direct control over the policy for the entire network by exploiting the capabilities of dumb switches connected to a central controller. An easily readable policy language allows network rules to be explicitly defined. Once we describe how the transport layer is secured, we'll look at how Ethane can be combined with virtualization techniques to provide a thorough defense through all system layers. The system not only blocks malicious traffic, it allows users and administrators to view the system as an organizational appliance.
Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
