RSVP as Firewall Signalling Protocol
Key: RGKS00-1
Author: Utz Roedig, Manuel Goertz, Martin Karsten, Ralf Steinmetz
Date: December 2000
Kind: @techreport
Abstract: Within a global networked environment, security aspects have become more and more important and access control at network borders is considered essential. For this purpose firewall systems are used which provide a well-established security mechanism to restrict the exchanged traffic to a certain subset of users and applications. In order to cope with the increasing demand for new applications, a firewall must be flexible and extensible to support such new applications and their protocols. RSVP is a dynamic signalling protocol, which has been invented to negotiate resource requirements between end systems and a packet-based communication network. In this paper, we investigate the interoperation of RSVP with a firewall system in order to support new applications in a generic way. We show how the resulting system flexibility allows for a variety of employment scenarios and incremental deployment of such a technology. We back up our claims by describing a prototype that we have implemented.
View Full paper (PDF) | Download Full paper (PDF)

The documents distributed by this server have been provided by the contributing authors as a means to ensure timely dissemination of scholarly and technical work on a non-commercial basis. Copyright and all rights therein are maintained by the authors or by other copyright holders, not withstanding that they have offered their works here electronically. It is understood that all persons copying this information will adhere to the terms and constraints invoked by each author's copyright. These works may not be reposted without the explicit permission of the copyright holder.