Great Circle Associates Firewalls
(September 1997) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: Technical Comparison of Firewalls -- Will Everyone PLEASE Chill
From: "osiris @ gnss . com" <osiris @ gnss . com>
Organization: Global Network Security Systems
Date: Thu, 11 Sep 1997 21:21:02 -0700
To: Geoff Mulligan <geoff @ mulligan . com>
Cc: Stephen Greenwalt <StephenG @ DENVERSYS . COM>, "'Paul Ferguson'" <ferguson @ cisco . com>, "'firewalls @ greatcircle . com'" <firewalls @ GreatCircle . COM>, osiris @ gnss . com
References: <199709120003 . SAA26732 @ future . mulligan . com> 
The traffic devoted to this argument is hardly worth the effort. Below, you will
find what GNSS currently has on it. (A little nicety for the original, poor soul
that asked the question.) But, really, chill...it ain't no thang. Info follows:

"Comparison: Firewalls." June 17, 1996. LanTimes.
Comprehensive comparison of seven or eight of firewall products.
http://www.lantimes.com/lantimes/usetech/compare/pcfirewl.html

Do you use NT? Start here:
Windows NT Firewalls:
Guardian Vs. Firewall/Plus Vs. Eagle NT Vs. AltaVista Firewall
(PC Today)
http://www.pctoday.com/editorial/hth/970720.html

InfoWorld's Firewall Product Comparison
(Good resource that also discusses cost)
http://www.infoworld.com/cgi-bin/displayArchive.pl?/96/46/firea.dat.htm

Seven Locks' now-watered-down comparison:
it states only the characteristics of each:
http://www.sevenlocks.com/quarc/security/tocfirewallcomparisoncharts.htm

Can Firewalls Take the Heat?
Study at data.com. Short but sweet, important because of the comparison chart
(However, caveat emptor, as always)
http://www.data.com/Lab_Tests/Firewalls.html

Filtering Gateways vs. Application Gateways
David Dalva, Trusted Information Systems, Inc.
(You know what this is; just a look at methodology)
http://www.tis.com/docs/products/gauntlet/FWComp.html

Defending the Front Line
Lan Times
Kevin Tolly, John Curtis, and Elke Passarge
http://www.raptor.com/news/lantimes/firetext.html#comp

Scorecard from above article (hard-core)
http://www.wcmh.com/96jun/606s054b.html

Find the Right Firewall
(ZDNET.)
Bench Test and Stats:
http://www8.zdnet.com/zdimag/content/anchors/970127/1.html

Feature Comparison: (Comprehensive)
http://www8.zdnet.com/zdimag/content/anchors/970127/features.html

Behind the line of fire.
(PC Mag. Short, sweet, blah.)
http://www8.zdnet.com/pcmag/issues/1522/pcmg0058.htm

The whole bloody list of vendors and sites:
http://www.zeuros.co.uk/firewall/vendors.htm

"Firewall products today,"
Cooper, S P. UCRL-JC-119743, 18 pgs., February 28, 1995.
 http://www.llnl.gov/tid/lof/documents/pdf/225846.pdf

"Firewall Performance Measurement Techniques:
A Scientific Approach." Marcus Ranum.
February 4, 1996
(Ask Marcus Ranum...he has moved this document.)

Fortified evaluation checklist on firewall products:
Comma Delimited:
 http://www.fortified.com/files/fweval.txt
Excel Spreadsheet:
 http://www.fortified.com/files/fweval.zip

Rating of application layer proxies
AT-0008 Revision 2
Michael C. Richardson --  mcr @
 sandelman .
 ottawa .
 on .
 ca
http://www.sandelman.ottawa.on.ca/SSW/proxyrating/proxyrating.html

Just the Facts About Firewalls
Chey Cobb, Webmaster, NCSA
(Some Interesting Info)
http://www.ncsa.com/library/firefacts.html

Group of 15 firewalls hold up under security scrutiny
Stephen Lawson ,  InfoWorld Electric
http://www.infoworld.com/cgi-bin/displayArchives.pl?96067.firewall.htm

Firewall purchasing decisions are not always obvious
First Union Bank and Intersolv find similar
solutions to network security dilemma
Anne Knowles , Infoworld
(Interesting article)
http://www.infoworld.com/cgi-bin/displayArchives.pl?97-nr03-12.58d.htm

Internet firewalls Playing with fire
Tested and reviewed by Mark Pace Additional testing by Brooks Talley
Technology Analyst Introduction by Michelle Murdock
Edited by Julia C. Carreon - Associate Editor
http://www.infoworld.com/cgi-bin/displayArchives.pl?dt_iwe31-96_84.htm

Choosing a Firewall
ZED Data Systems
http://www.zed.ca/firewall.htm

George R. Kurtz & David Roath.  "Shopping for Firewalls",
in Infosecurity News, MIS Institute Press, 1995.

"Firewall Application Notes."
More general document that describes building a firewall.
Also addresses application proxies, Sendmail in relation to firewalls,
and the characteristics of a bastion host. Livingston Enterprises, Inc.
 http://www.telstra.com.au/pub/docs/security/firewall-1.1.ps.Z

Firewall theory and architecture
http://fw4.iti.salford.ac.uk/ice-tel/firewall/theory.html

and finally, some more traditional reading materials:

Firewalls and Internet Security: Repelling the Wily Hacker. Addison-Wesley
Publishing Company. William R. Cheswick and Steven M. Bellovin. April, 1994. ISBN:
0-201-63357-4.

Internet Security Resource Library: Internet Firewalls and Network Security,
Internet Security Techniques, Implementing Internet Security. New Riders. ISBN:
1-56205-506-2. 1995.

Internet Firewalls and Network Security. Chris Hare and Karanjit Siyan. Second
Edition. New Riders. ISBN: 1-56205-632-8. 1996.

Internet Security : Risk Analysis, Strategies and Firewalls
 by Othmar Kyas. ISBN: 185032302X

Protecting Your Web Site With Firewalls
Marcus Goncalves, Vinicius A. Goncalves
April 1997. ISBN: 0136282075

Designing & Implementing Internet Firewalls
Tina Darmohray. July 1997.  ISBN: 0133730026

Keeping Your Site Comfortably Secure: An
Introduction to Internet Firewalls
BPI Information Services.  December 1994
ISBN: 1579791867

"Network Firewalls." Steven M. Bellovin and William R. Cheswick. IEEECM, 32(9),
pp. 50[nd]57. September 1994.

PCWEEK Intranet and Internet Firewall Strategies. Ed Amoroso and Ron Sharp.
Ziff-Davis Press. 1996. ISBN: 1562764225.

Building Internet Firewalls. D. Brent Chapman and Elizabeth D. Zwicky. O'Reilly &
Associates. ISBN: 1-56592-124-0. 1995

I trust that will get the original, requesting party off the in the right
direction. This has been a public service from the bozos at http://www.gnss.com. I
believe we can move on now. (I should say this, though: all of us - at one time or
another - plug our product or service. Perhaps the better approach would be this:
if you are going to do it, also include a healthy list of other resources. But,
the sheer volume of messages we received here over that last plug was
just...surprising.) To the original, requesting, party...if you are still out
there:

The link: http://www.zeuros.co.uk/firewall/vendors.htm will take you to *every*
last vendor out there. In my opinion, I would use this as a starting point and
judge the products for myself. Some of the articles above have been subjected to
scrutiny - as everything eventually does on this network - and therefore, you may
find inconsistencies, corrections and so forth. Believe it or not, only the
vendors have the latest and greatest on their own stuff. Put on a wetsuit and dive
in. Oh yes...one last note: the above articles may not be as "technical" as you
had wanted. If so, we apologize. If anyone actually has resources of this nature
that are updated or newer (and not just further flames to the original spamming
party) please forward them to GNSS. We'd love to have them.

Osiris -- Team Leader and Head Bozo
Global Network Security Systems
References:
Indexed By Date Previous: Re: Simple question
From: Paul Ferguson <ferguson @ cisco . com>
Next: RE: Advice
From: Russ <Russ . Cooper @ rc . on . ca>
Indexed By Thread Previous: Re: Technical Comparison of Firewalls Available
From: Geoff Mulligan <geoff @ mulligan . com>
Next: Re: Technical Comparison of Firewalls Available
From: Peter da Silva <peter @ baileynm . com>
Google
 
Search Internet Search www.greatcircle.com