• A
  • A
  • A
  • ABC
  • ABC
  • ABC
  • А
  • А
  • А
  • А
  • А
Regular version of the site
For visually-impairedFor visually-impairedUser profile (HSE staff only)Search
Advanced search
Menu
HSE University

Web Application Firewall Cluster Configuration Management System for Heterogeneous Networks

Student: Sobko Sergey

Supervisor: Sergey Mikhailovich Salibekyan

Faculty: HSE Tikhonov Moscow Institute of Electronics and Mathematics (MIEM HSE)

Educational Programme: Computers, Computer Systems and Networks (Specialist)

Final Grade: 10

Year of Graduation: 2016

The objective of the thesis is research and development of methods for simplifying implementation of Web Application Firewall solutions into heterogeneous networks. Existing methods of implementation for different Web Application Firewall products into heterogeneous networks were reviewed and analysis of configuration management systems and application centric network infrastructure management systems was done. The ISO/IEC 14977:1996 standard was used to invent a new domain-specific language for OS and WAF network configuration management for PT Application Firewall network implementation as a service device. Command-line interface software and REST API were developed to set up the WAF. A special package with the device specification and an intergartion code was designed for PT Application Firewall integration with Cisco ACI fabric. The development object was deployed at several large companies and is now used in every Positive Technologies WAF pilot implementation. It was exhibited at an international conference on informational security in collaboration with Cisco. Further product development will revolve around cloud-based WAF deployment. This thesis consists of an introduction, 7 parts, conclusion, bibliography, 4 appendices, including 11 tables, 31 listings, 14 figures and 28 bibliographical links. The overall number of pages is 78.

Full text (added May 25, 2016)

Student Theses at HSE must be completed in accordance with the University Rules and regulations specified by each educational programme.

Summaries of all theses must be published and made freely available on the HSE website.

The full text of a thesis can be published in open access on the HSE website only if the authoring student (copyright holder) agrees, or, if the thesis was written by a team of students, if all the co-authors (copyright holders) agree. After a thesis is published on the HSE website, it obtains the status of an online publication.

Student theses are objects of copyright and their use is subject to limitations in accordance with the Russian Federation’s law on intellectual property.

In the event that a thesis is quoted or otherwise used, reference to the author’s name and the source of quotation is required.

Search all student theses