Sandeep Bhatt (Telcordia Technologies):
Managing Network Insecurity
Many factors conspire to make enterprise networks intractable to secure. While hackers, security flaws, viruses and worms gather daily
headlines, one dirty little secret remains undisturbed - the dismal state of network management tools and practices. Current network
management practice is labor-intensive, costly and unreliable. Multiple administrators are tasked to configure and manage individual network
components independently, with the expectation that, when put together, somehow everything will work out "just right." Analyzing a network
can take several weeks, as there are no tools (other than brute force scans) to answer even fundamental questions such as: "What remote
services can be accessed from my workstation?" This talk will describe the "Smart Firewalls" system for network security analysis and
control. Designed to view an entire network as a single system whose global behavior can be checked efficiently from the state of individual
components, Smart Firewalls has been successfully demonstrated in several DoD experiments, and has been used to analyze commercial
enterprise network security.