I am trying to develop the basics of a firewall MIB. From a
administrative and security monitoring point of view, I need to know
what are key to detecting problems, and which items need to ne
changed in response to different conditions. I am interesting in
contacting others who have an interest or knowledge of firewall
security applications that may benefit from a consolidated management
concept. Referrals to key personnel in software research and
development and security operations would be highly appreciated.
My overall research goal is to use SNMP to instrument
security applications (such as an IDS, firewalls or S-HTTP) in order
to provide more effective configuration, status and control. My
belief is that a common security management framework that interacts
with several different application may be a more efficient and
effective tool than several standalone tools.
References to any previous/related work in this area would be