© 2006 Open Grid Forum Firewall Models Firewall Issues Research Group - OGF 19 Chapel Hill - Januari 30th 2007 Inder Monga, Leon Gommans

© 2006 Open Grid Forum 2 Firewall interfaces Management Enterprise Side Public Side

© 2006 Open Grid Forum 3 Common provisioning model Configuration Enterprise Side Public Side Management Point

© 2006 Open Grid Forum 4 Outsource model Decision request Enterprise Side Public Side Policy Decision Point Decision response

© 2006 Open Grid Forum 5 Secure Label / Token model label and or key Enterprise Side Public Side Management Point

© 2006 Open Grid Forum 6 Examples Provision model: -traditional firewalls & application gateways Outsourcing model -Port knocking (Dyna-fire) Label model -CODO -Token GMPLS firewall

© 2006 Open Grid Forum 7 Management interactions label and or key Enterprise Side Public Side Management Point Network Management WS abstraction

© 2006 Open Grid Forum 8 Research Work on WS abstractions for each of the three models ? Describe framework in Document#3, and bring this to attention of OGSA Security WGs for further definition and concept implementation? Need vendor to support ?

© 2006 Open Grid Forum 9 Contribute Mailing list: Projects page: Contacts: Leon Gommans: Inder Monga: