Abstract
Purchase PDF (539 K)
E-mail Article
Add to my Quick Links
Cited By in Scopus (0)
Purchase PDF (1554 K)
doi:10.1016/j.comcom.2007.01.019 
Copyright © 2007 Elsevier B.V. All rights reserved.
Crosslayer firewall interaction as a means to provide effective and efficient protection at mobile devices
References and further reading may be available for this article. To view references and further reading you must purchase this article.
Peter Langendoerfera, 
, 
, Krzysztof Piotrowskia, Steffen Petera and Martin Lehmannb
Available online 16 February 2007.
Abstract
In this paper, we discuss packet filtering firewalls and an application level gateway approach used to secure handheld devices. We propose a firewall management plane as a means for crosslayer interaction. In our approach the application level gateway updates the firewall rules based on its knowledge about whether or not a certain source is sending malicious packets. Hereby, we pursue a policy of removing malicious packets as close as possible to the network interface. We show that in case of secure web service such a crosslayer interaction can significantly decrease the CPU load in case of attacks, i.e., if many malicious packets arrive at the handheld device. Our measurement results show that our crosslayer approach can reduce the CPU load caused by the application layer gateway by about 10–30%. Finally, we propose an integrated firewall processing approach that promises further improvements. It integrates the application controlled firewall before the MAC and provides crosslayer mechanisms to reduce the performance issues of traditional firewall approaches.
Keywords: Firewall management plane; Crosslayer interaction; XML; MAC firewall; Mobile devices
