Main document
Personal website of
Prof. Dr.-Ing. habil. Falko Dressler
Diadem Firewall
Institution
- Computer Networks and Internet, University of Tuebingen
Team
- Prof. Dr. Georg Carle (coordination)
- Dr. Falko Dressler (WP leader)
- Ali Fessi
- Reinhard Mayer
- Gerhard Münz
Funding
- EU (European Commission)
Partners
- France Telecom R&D
- IBM Zuerich Research Lab
- Imperial College London
- Groupe des Ecoles des Télécommunications
- Jozef Stefan Institute
- Polish Telecom
Homepage
Project Time
- 01.01.2004 - 31.12.2006
Description
The vision of the project is to develop a novel and comprehensive security solution for secure broadband services, by combining the following:
- flexible implementation techniques for high-speed packet processing,
- algorithms for intrusion detection,
- and policy-based techniques for automated configuration and decision-handling.
The project aims for the general goal of development and deployment of innovative network components that enable service providers to offer to their customers secure broadband services in an effective and cost-efficient way. In order to achieve this overall goal, the project pursues the following individual objectives:
- Design and implement an innovative architecture for provider-controlled distributed high-speed edge devices, aimed to become a new generation of distributed high-speed broadband firewalls with policy-based control, that are suitable to provide a comprehensive security solution meeting the needs of customers and service providers.
- Develop and deploy enhanced techniques capable of detecting a wide range of security violations, in particular detecting DDOS (Distributed Denial of Service) attacks, but also suitable for detecting and identifying other types of malfunctioning.
- Achieve enhanced detection capabilities by designing flexible and effective solutions for distributed monitoring of application traffic.
- Establish techniques for intelligent response to security violations, in particular providing an effective protection against DDOS attacks.
- Ensure fair, coherent, and efficient enforcement of security policies by management and control of the distributed firewall components.
- Define use-cases for the new technology, deploy them in meaningful test beds, and disseminate know-how and training of target people.
The architecture ensures high performance in combination with functional flexibility using programmable hardware for classification, filtering, sampling and measurements.
Press
- Saboteure und Spione im Visier: Tübinger Informatiker arbeiten an intelligentem Abwehrsystem gegen Angriffe im Internet. attempto! 17/2004.
(Download (German): PDF [342kB])
Selected Publications
Falko Dressler and Hemant Chaskar, "Security Architectures for Wired and Wireless Networks: Threats and Countermeasures," Tutorial, 1st IEEE/ACM International Conference on Communication System Software and Middleware (COMSWARE 2006), New Delhi, India, January 08, 2006.
[BibTeX, Details...]
Falko Dressler, "Adaptive Re-Configuration of Network Monitoring Applications," Proceedings of Dagstuhl Seminar 06011 on Autonomic Networking, Schloss Dagstuhl, Germany, January 2006.
[BibTeX, PDF and Details...]- Falko Dressler, Andreas Klenk, Cornelia Kappler, Ali Fessi and Georg Carle, "Path-coupled Signaling for Dynamic Metering Configuration in IP-based Networks," Proceedings of IFIP Networking and Electronic Commerce Research Conference (NAEC 2005), Riva Del Garda, Italy, October 2005, pp. 388–399. [BibTeX, PDF and Details...]
- [an error occurred while processing this directive]
- [an error occurred while processing this directive]
- [an error occurred while processing this directive]
- Falko Dressler and Georg Carle, "HISTORY - High Speed Network Monitoring and Analysis," Proceedings of 24th IEEE Conference on Computer Communications (INFOCOM 2005), Poster Session, Miami, FL, March 2005.
[BibTeX, PDF and Details...]
- Georg Carle, Falko Dressler and Günter Schäfer, "Netzwerksicherheit - Verteilte Angriffserkennung im Internet," Tutorial, 14. GI/ITG Fachtagung Kommunikation in Verteilten Systemen (KiVS 2005), Kaiserslautern, Germany, March 28, 2005. [BibTeX, Details...]
- [an error occurred while processing this directive]
- [an error occurred while processing this directive]
- [an error occurred while processing this directive]
- Falko Dressler, Gerhard Münz and Georg Carle, "Attack Detection using Cooperating Autonomous Detection Systems (CATS)," Proceedings of 1st IFIP International Workshop on Autonomic Communication (WAC 2004), Poster Session, Berlin, Germany, October 2004. [BibTeX, PDF and Details...]
- [an error occurred while processing this directive]
- [an error occurred while processing this directive]
- [an error occurred while processing this directive]
Extras
Featured Paper
- Focusing on Information Context for ITS using a Spatial Age of
Information Model
In order to cope with the vehicles’ mobility, such information is required to be as fresh as possible for proper operation of cooperative driving applications. The a...
News
- September 29, 2023
Keynote at IEEE PEMWN 2023
Falko Dressler gave a keynote titled Reinforcement Learni... - September 28, 2023
Keynote at IEEE SPAWC 2023
Falko Dressler gave a keynote titled Resilience Through C... - September 27, 2023
Keynote at UAV-IoT 2023
Falko Dressler gave a keynote titled Turning Mobile Syste... - September 22, 2023
Papers presentation at ACM NanoCom 2023
Rebecca Corinna Pampu and Jorge Torres presented two of o... - September 14, 2023
Keynote at ICT-DM 2023
Falko Dressler gave a keynote titled Resilient Worlds - T...
