stateful inspection
Also referred to as dynamic packet filtering. Stateful inspection is a firewall architecture that works at the network layer. Unlike static packet filtering, which examines a packet based on the information in its header, stateful inspection tracks each connection traversing all interfaces of the firewall and makes sure they are valid. An example of a stateful firewall may examine not just the header information but also the contents of the packet up through the application layer in order to determine more about the packet than just information about its source and destination. A stateful inspection firewall also monitors the state of the connection and compiles the information in a state table. Because of this, filtering decisions are based not only on administrator-defined rules (as in static packet filtering) but also on context that has been established by prior packets that have passed through the firewall.
As an added security measure against port scanning, stateful inspection firewalls close off ports until connection to the specific port is requested.
Check Point Software is credited with coining the term stateful inspection in the use of its FireWall-1 in 1993.
stateful inspection |
-
1
enterprise application
An enterprise application is the term used to describe applications -- or software -- that a business would use to assist the organization in...
-
2
open source
Generically, open source refers to a program in which the source code is available to the general public for use and/or modification from its...
-
-
3
CPU - Central Processing Unit
Definition: CPU is the abbreviation for central processing unit. The CPU is the brains of the computer where most calculations take place.
-
4
mobile operating system
An operating system for mobile devices.
-
5
Facebook
The name of a social networking site (SNS) that connects people with friends and others who work, study and live around them.
-
6
ERP - Enterprise Resource Planning
Short for enterprise resource planning, ERP is business management software that allows an organization to use a system of integrated applications...
-
7
RSA Secure ID
RSA SecurID ( “SecurID”) is a two-factor authentication technology that is used to protect network resources.
-
8
ecommerce remarketing
In email and online marketing, remarketing or ecommerce remarketing refers to the techniques, strategies and often the automated email...
-
9
Wi-Fi
A popular wireless networking technology that provides high-speed Internet and network connections.
-
10
RAM
Pronounced ramm, acronym for random access memory, a type of computer memory that can be accessed randomly; that is, any byte of memory can be...
-
11
biometrics
The study of measurable biological characteristics. In computer security, biometrics refers to authentication techniques that rely on physical...
Connect with Webopedia
-
-
Cloud Computing White Papers and Resources for Small Businesses
Keeping track of cloud computing trends, research and statistics gives small businesses knowledge and a solid foundation to get the most value...
