Check out the new USENIX Web site.

Home About USENIX Events Membership Publications Students
7th USENIX Security Symposium, 1998    [Technical Program]

Pp. 95–106 of the Proceedings
[prev] [up] [next]
Next: 1 Introduction

Carsten Benecke & Uwe Ellermann
Firewall-Laboratory for High-Speed Networks
Fachbereich Informatik, Universität Hamburg
Vogt-Kölln-Str. 30
D-22527 Hamburg
Phone: +49-40-5494-2262
Fax: +49-40-5494-2241


This paper discusses some security issues of `Classical IP over ATM' networks. After analyzing new threats to IP networks based on ATM, security mechanisms to protect these networks are introduced. The integration of firewalls into ATM networks requires additional considerations. We conclude that careful configuration of ATM switches and ATM services can provide some level of protection against spoofing and denial of service attacks. Our solutions are intended to be applied to current IP over ATM networks and do not require any changes to these protocols or additions to current switch capabilities.

This work was funded by the DFN-Verein (Association for the promotion of a German Research Network) and Deutsche Telekom under project number: DT10.

Carsten Benecke, Uwe Ellermann / DFN-FWL

This paper was originally published in the Proceedings of the 7th USENIX Security Symposium, January 26-29, 1998, San Antonio, Texas
Last changed: 12 April 2002 aw
Technical Program
Conference Index