{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,7,17]],"date-time":"2026-07-17T15:27:34Z","timestamp":1784302054164,"version":"3.55.0"},"reference-count":33,"publisher":"Association for Computing Machinery (ACM)","issue":"4","license":[{"start":{"date-parts":[[2004,11,1]],"date-time":"2004-11-01T00:00:00Z","timestamp":1099267200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Comput. Syst."],"published-print":{"date-parts":[[2004,11]]},"abstract":"<jats:p>In recent years packet-filtering firewalls have seen some impressive technological advances (e.g., stateful inspection, transparency, performance, etc.) and wide-spread deployment. In contrast, firewall and security &lt;i&gt;management&lt;\/i&gt; technology is lacking. In this paper we present &lt;i&gt;Firmato&lt;\/i&gt;, a firewall management toolkit, with the following distinguishing properties and components: (1) an entity-relationship model containing, in a unified form, global knowledge of the security policy and of the network topology; (2) a model definition language, which we use as an interface to define an instance of the entity-relationship model; (3) a model compiler, translating the global knowledge of the model into firewall-specific configuration files; and (4) a graphical firewall rule illustrator.<\/jats:p>\n          <jats:p>We implemented a prototype of our toolkit to work with several commercially available firewall products. This prototype was used to control an operational firewall for several months. We believe that our approach is an important step toward streamlining the process of configuring and managing firewalls, especially in complex, multi-firewall installations.<\/jats:p>","DOI":"10.1145\/1035582.1035583","type":"journal-article","created":{"date-parts":[[2005,1,26]],"date-time":"2005-01-26T16:35:53Z","timestamp":1106757353000},"page":"381-420","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":101,"title":["<i>Firmato<\/i>"],"prefix":"10.1145","volume":"22","author":[{"given":"Yair","family":"Bartal","sequence":"first","affiliation":[{"name":"The Hebrew University of Jerusalem, Jerusalem, Israel"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Alain","family":"Mayer","sequence":"additional","affiliation":[{"name":"CenterRun Inc., Redwood City, CA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Kobbi","family":"Nissim","sequence":"additional","affiliation":[{"name":"Microsoft Research, SVC, Mountain View, CA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Avishai","family":"Wool","sequence":"additional","affiliation":[{"name":"Tel Aviv University, Ramat Aviv, Israel"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2004,11]]},"reference":[{"key":"e_1_2_1_1_1","volume-title":"Network Flows: Theory, Algorithms, and Applications","author":"Ahuja R. K.","year":"1993","unstructured":"Ahuja , R. K. , Magnanti , T. L. , and Orlin , J. B . 1993 . Network Flows: Theory, Algorithms, and Applications . Prentice-Hall , Upper Saddle River, New Jersey. Ahuja, R. K., Magnanti, T. L., and Orlin, J. B. 1993. Network Flows: Theory, Algorithms, and Applications. Prentice-Hall, Upper Saddle River, New Jersey."},{"key":"e_1_2_1_2_1","volume-title":"Proceedings of the 20th IEEE Symp. on Security and Privacy. IEEE","author":"Bartal Y.","unstructured":"Bartal , Y. , Mayer , A. , Nissim , K. , and Wool , A . 1999. Firmato: A novel firewall management toolkit . In Proceedings of the 20th IEEE Symp. on Security and Privacy. IEEE , Oakland, CA. 17--31. Bartal, Y., Mayer, A., Nissim, K., and Wool, A. 1999. Firmato: A novel firewall management toolkit. In Proceedings of the 20th IEEE Symp. on Security and Privacy. IEEE, Oakland, CA. 17--31."},{"key":"e_1_2_1_3_1","unstructured":"Bellovin S. M. 1999. Distributed firewalls. ;login: The Magazine of USENIX & SAGE. 39--47.  Bellovin S. M. 1999. Distributed firewalls. ;login: The Magazine of USENIX & SAGE. 39--47."},{"key":"e_1_2_1_4_1","volume-title":"Proceedings of the 7th USENIX Security Symposium. Usenix Association","author":"Carney M.","unstructured":"Carney , M. and Loe , B . 1998. A comparison of methods for implementing adaptive security policies . In Proceedings of the 7th USENIX Security Symposium. Usenix Association , Berkeley. 1--14. Carney, M. and Loe, B. 1998. A comparison of methods for implementing adaptive security policies. In Proceedings of the 7th USENIX Security Symposium. Usenix Association, Berkeley. 1--14."},{"key":"e_1_2_1_5_1","unstructured":"Chapman D. B. and Zwicky E. D. 1995. Building Internet Firewalls. O'Reilly & Associates Inc.   Chapman D. B. and Zwicky E. D. 1995. Building Internet Firewalls. O'Reilly & Associates Inc."},{"key":"e_1_2_1_6_1","unstructured":"Chapman D. W. and Fox A. 2001. Cisco Secure PIX Firewalls. Cisco Press.   Chapman D. W. and Fox A. 2001. Cisco Secure PIX Firewalls. Cisco Press."},{"key":"e_1_2_1_7_1","unstructured":"Cheswick W. R. Bellovin S. M. and Rubin A. 2003. Firewalls and Internet Security: Repelling the Wily Hacker 2nd ed. Addison-Wesley.   Cheswick W. R. Bellovin S. M. and Rubin A. 2003. Firewalls and Internet Security: Repelling the Wily Hacker 2nd ed. Addison-Wesley."},{"key":"e_1_2_1_8_1","unstructured":"Dot. 2001. Graphviz---open source graph drawing software. version 1.7. http:\/\/www.research.att.com\/sw\/tools\/graphviz\/.  Dot. 2001. Graphviz---open source graph drawing software. version 1.7. http:\/\/www.research.att.com\/sw\/tools\/graphviz\/."},{"key":"e_1_2_1_9_1","unstructured":"FWB 2002. Firewall builder. http:\/\/www.fwbuilder.org.  FWB 2002. Firewall builder. http:\/\/www.fwbuilder.org."},{"key":"e_1_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/32.221135"},{"key":"e_1_2_1_11_1","unstructured":"Garey M. R. and Johnson D. S. 1979. Computers and Intractability: A Guide to the Theory of NP-Completeness. Freeman San Francisco.   Garey M. R. and Johnson D. S. 1979. Computers and Intractability: A Guide to the Theory of NP-Completeness. Freeman San Francisco."},{"key":"e_1_2_1_12_1","volume-title":"Proceedings of the IEEE Symposium on Security and Privacy. IEEE","author":"Guttman J. D.","year":"1997","unstructured":"Guttman , J. D. 1997 . Filtering postures: Local enforcement for global policies . In Proceedings of the IEEE Symposium on Security and Privacy. IEEE , Oakland, CA. Guttman, J. D. 1997. Filtering postures: Local enforcement for global policies. In Proceedings of the IEEE Symposium on Security and Privacy. IEEE, Oakland, CA."},{"key":"e_1_2_1_13_1","volume-title":"Foundations of Security Analysis and Design (FOSAD), LNCS 2171","author":"Guttman J. D.","unstructured":"Guttman , J. D. 2001. Security goals: Packet trajectories and strand spaces . In Foundations of Security Analysis and Design (FOSAD), LNCS 2171 . Springer-Verlag . Guttman, J. D. 2001. Security goals: Packet trajectories and strand spaces. In Foundations of Security Analysis and Design (FOSAD), LNCS 2171. Springer-Verlag."},{"key":"e_1_2_1_14_1","volume-title":"Proceedings of the 6th European Symposium on Research in Computer Security (ESORICS), LNCS","author":"Guttman J. D.","year":"2000","unstructured":"Guttman , J. D. , Herzog , A. , and Javier Thayer , F. 2000 . Authentication and confidentiality via IPsec . In Proceedings of the 6th European Symposium on Research in Computer Security (ESORICS), LNCS 1895. Springer-Verlag. Guttman, J. D., Herzog, A., and Javier Thayer, F. 2000. Authentication and confidentiality via IPsec. In Proceedings of the 6th European Symposium on Research in Computer Security (ESORICS), LNCS 1895. Springer-Verlag."},{"key":"e_1_2_1_15_1","unstructured":"Held G. and Hundley K. 1999. Cisco Access Lists. McGraw-Hill.  Held G. and Hundley K. 1999. Cisco Access Lists. McGraw-Hill."},{"key":"e_1_2_1_16_1","volume-title":"Proceedings of the 15th Annual Computer Security Applications Conference","author":"Hinrichs S.","year":"1999","unstructured":"Hinrichs , S. 1999 . Policy-based management: Bridging the gap . In Proceedings of the 15th Annual Computer Security Applications Conference . Phoenix, AZ. Hinrichs, S. 1999. Policy-based management: Bridging the gap. In Proceedings of the 15th Annual Computer Security Applications Conference. Phoenix, AZ."},{"key":"e_1_2_1_17_1","unstructured":"HLFL 2002. HLFL---high level firewall language. http:\/\/www.hlfl.org.  HLFL 2002. HLFL---high level firewall language. http:\/\/www.hlfl.org."},{"key":"e_1_2_1_18_1","first-page":"12","article-title":"What's beyond firewalls","volume":"10","author":"Howe C. D.","year":"1996","unstructured":"Howe , C. D. , Erwin , B. , Barth , C. , and Elliot , S. 1996 . What's beyond firewalls ? The Forrester Report 10 , 12 (Nov.). Howe, C. D., Erwin, B., Barth, C., and Elliot, S. 1996. What's beyond firewalls? The Forrester Report 10, 12 (Nov.).","journal-title":"The Forrester Report"},{"key":"e_1_2_1_19_1","unstructured":"ICSA Labs. 2003. Certified firewall products. http:\/\/www.icsalabs.com\/html\/communities\/firewalls\/certification\/rxvendors\/index.shtml.  ICSA Labs. 2003. Certified firewall products. http:\/\/www.icsalabs.com\/html\/communities\/firewalls\/certification\/rxvendors\/index.shtml."},{"key":"e_1_2_1_20_1","volume-title":"Proceedings of the 7th ACM Conference on Computer and Communications Security (CCS). ACM","author":"Ioannidis S.","unstructured":"Ioannidis , S. , Keromytis , A. D. , Bellovin , S. M. , and Smith , J. M . 2000. Implementing a distributed firewall . In Proceedings of the 7th ACM Conference on Computer and Communications Security (CCS). ACM , Athens, Greece. 10.1145\/352600.353052 Ioannidis, S., Keromytis, A. D., Bellovin, S. M., and Smith, J. M. 2000. Implementing a distributed firewall. In Proceedings of the 7th ACM Conference on Computer and Communications Security (CCS). ACM, Athens, Greece. 10.1145\/352600.353052"},{"key":"e_1_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/138873.138874"},{"key":"e_1_2_1_22_1","volume-title":"First USENIX Conference on Network Administration (NETA). USENIX","author":"Limoncelli T. A.","year":"1999","unstructured":"Limoncelli , T. A. 1999 . Tricks you can do if your firewall is a bridge . In First USENIX Conference on Network Administration (NETA). USENIX , Santa Clara, CA. Limoncelli, T. A. 1999. Tricks you can do if your firewall is a bridge. In First USENIX Conference on Network Administration (NETA). USENIX, Santa Clara, CA."},{"key":"e_1_2_1_23_1","unstructured":"Lucent 2002. Lucent VPN firewall brick. http:\/\/www.lucent.com\/security.  Lucent 2002. Lucent VPN firewall brick. http:\/\/www.lucent.com\/security."},{"key":"e_1_2_1_24_1","volume-title":"Proceedings of the IEEE Symposium on Security and Privacy. IEEE","author":"Mayer A.","unstructured":"Mayer , A. , Wool , A. , and Ziskind , E . 2000. Fang: A firewall analysis engine . In Proceedings of the IEEE Symposium on Security and Privacy. IEEE , Oakland, CA. 177--187. Mayer, A., Wool, A., and Ziskind, E. 2000. Fang: A firewall analysis engine. In Proceedings of the IEEE Symposium on Security and Privacy. IEEE, Oakland, CA. 177--187."},{"key":"e_1_2_1_25_1","unstructured":"Reed D. 2002. Filter language compiler. http:\/\/cheops.anu.edu.au\/ avalon\/flc.html.  Reed D. 2002. Filter language compiler. http:\/\/cheops.anu.edu.au\/ avalon\/flc.html."},{"key":"e_1_2_1_26_1","doi-asserted-by":"crossref","unstructured":"Rubin A. Geer D. and Ranum M. 1997. Web Security Sourcebook. Wiley Computer Publishing.   Rubin A. Geer D. and Ranum M. 1997. Web Security Sourcebook. Wiley Computer Publishing.","DOI":"10.1201\/1079\/43236.25.8.19980201\/30191.7"},{"key":"e_1_2_1_27_1","volume-title":"Advances in Computers","author":"Sandhu R. S.","unstructured":"Sandhu , R. S. 1998. Role-based access control . In Advances in Computers , M. Zerkowitz, Ed. Vol. 48. Academic Press . Sandhu, R. S. 1998. Role-based access control. In Advances in Computers, M. Zerkowitz, Ed. Vol. 48. Academic Press."},{"key":"e_1_2_1_28_1","volume-title":"Solsoft NP: Putting security policies into practice. Enterprise Management Associates white paper","author":"Solsoft","year":"2000","unstructured":"Solsoft . 2000 . Solsoft NP: Putting security policies into practice. Enterprise Management Associates white paper . http:\/\/www.solsoft.com\/library\/ema_profiler.pdf. Solsoft. 2000. Solsoft NP: Putting security policies into practice. Enterprise Management Associates white paper. http:\/\/www.solsoft.com\/library\/ema_profiler.pdf."},{"key":"e_1_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1145\/581271.581273"},{"key":"e_1_2_1_30_1","volume-title":"Essential Checkpoint Firewall-1: An Installation, Configuration, and Troubleshooting Guide","author":"Welch-Abernathy D. D.","unstructured":"Welch-Abernathy , D. D. 2002. Essential Checkpoint Firewall-1: An Installation, Configuration, and Troubleshooting Guide . Addison-Wesley . Welch-Abernathy, D. D. 2002. Essential Checkpoint Firewall-1: An Installation, Configuration, and Troubleshooting Guide. Addison-Wesley."},{"key":"e_1_2_1_31_1","volume-title":"10th USENIX Security Symposium. USENIX, Washington, D.C. 85--97","author":"Wool A.","year":"2001","unstructured":"Wool , A. 2001 . Architecting the Lumeta firewall analyzer . In 10th USENIX Security Symposium. USENIX, Washington, D.C. 85--97 . Wool, A. 2001. Architecting the Lumeta firewall analyzer. In 10th USENIX Security Symposium. USENIX, Washington, D.C. 85--97."},{"key":"e_1_2_1_32_1","doi-asserted-by":"crossref","first-page":"459","DOI":"10.1016\/j.cose.2004.02.003","article-title":"The use and usability of direction-based filtering in firewalls","volume":"23","author":"Wool A.","year":"2004","unstructured":"Wool , A. 2004 a. The use and usability of direction-based filtering in firewalls . Computers & Security 23 , 6, 459 -- 468 . Wool, A. 2004a. The use and usability of direction-based filtering in firewalls. Computers & Security 23, 6, 459--468.","journal-title":"Computers & Security"},{"key":"e_1_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2004.2"}],"container-title":["ACM Transactions on Computer Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1035582.1035583","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1035582.1035583","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T16:24:30Z","timestamp":1750263870000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1035582.1035583"}},"subtitle":["A novel firewall management toolkit"],"short-title":[],"issued":{"date-parts":[[2004,11]]},"references-count":33,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2004,11]]}},"alternative-id":["10.1145\/1035582.1035583"],"URL":"https:\/\/doi.org\/10.1145\/1035582.1035583","relation":{},"ISSN":["0734-2071","1557-7333"],"issn-type":[{"value":"0734-2071","type":"print"},{"value":"1557-7333","type":"electronic"}],"subject":[],"published":{"date-parts":[[2004,11]]},"assertion":[{"value":"2004-11-01","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}