Strict connection authentication

EdenWall allows for authentication of all connections (or of a chosen subset) passing through the gateway.

The firewall sees not only computers (IP addresses), but also users at source of network traffic. Filtering rules are not associated to just computers, but truly to users, so that the security policy can be strictly respected.

  1. Client’s application generates a "regular" network packet (named P)
  2. EdenWall intercepts this packet and sends a decision request to the authentication server (named S)
  3. S sends a refresh request to all NuFW agents active on the M machine
  4. Client C’s NuFW agent sends an authentication related to the initial packet P
  5. S gathers data from C and from the firewall and sends its decision to the firewall
  6. The firewall applies the decision, by blocking or transmitting the decision received from S