التفاصيل البيبلوغرافية
| العنوان: |
FARE: FDD-based firewall anomalies resolution tool. |
| المؤلفون: |
Saâdaoui, Amina, Ben Youssef Ben Souayeh, Nihel, Bouhoula, Adel |
| المصدر: |
Journal of Computational Science; Nov2017, Vol. 23, p181-191, 11p |
| مصطلحات موضوعية: |
FIBER Distributed Data Interface (Computer network standard), ANOMALY detection (Computer security), FIREWALLS (Computer security), DATA structures, COMPLETENESS theorem |
| مستخلص: |
Problems arising from firewall misconfigurations are common and have dramatic consequences for networks operations. Therefore, the discovery and removal of these misconfigurations is a serious and complex problem to solve. In this paper, we address this problem using a data structure (FDD: firewall decision diagram). We propose a new approach to rule-set optimization and clean-up, by removing superfluous rules from a simple firewall and a totally automatic method to detect and fix misconfigurations. We present also a new classification of anomalies in multi-firewall environment bringing out real configurations errors. We proved the correctness and completeness of our method and demonstrated its scalability and applicability on configurations provided by the Tunisian Ministry of Finance Computer Centre (CIMF), and found promising results. [ABSTRACT FROM AUTHOR] |
|
Copyright of Journal of Computational Science is the property of Elsevier B.V. and its content may not be copied or emailed to multiple sites or posted to a listserv without the copyright holder's express written permission. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.) |
| قاعدة البيانات: |
Supplemental Index |
Full Text Finder