文章基本信息

标题：Fine Grained Distributed Firewalls Anomaly Detector and Solver With Policy-Based Segmentation Technique
本地全文：下载
作者：Rajesh B ; Kiran Kumar D ; Sunil Kumar B 等
期刊名称：International Journal of Computer Science & Technology
印刷版ISSN：2229-4333
电子版ISSN：0976-8491
出版年度：2013
卷号：4
期号：2
页码：485-489
语种：English
出版社：Ayushmaan Technologies
摘要：To provide the business application services over internet, Firewalls are among the most pervasive network security mechanisms, deployed extensively from the borders of networks to end systems. With the advent of global Internet connection, network security has gained significant attention in research and industrial communities. Day to day increasing threat of various network attacks, firewalls have become important elements for various sizes of applications. But still our business services(web applications) are suffering from unintended security leakages by unauthorized actions and designing and managing Web access control policies are often error-prone due to the lack of effective analysis mechanisms.Firewall policy configuration is an important factor to determine the firewall security efficiency. In this paper, we introduced Distributed Firewall Anomaly Detector and Solver (DFADS) to detect all anomalies that could exist in a single- or multi-firewall environment. We also present some techniques and approaches to automatically discover policy anomalies in centralized and distributed legacy firewalls.DFADS usea policybased segmentation technique to accurately identify policy anomalies and derive effective anomaly resolutions, along with an intuitive visualization representation of analysis results. Our experiments also supporting that this mechanism is efficiently resolving the policy configuration problems.
关键词：Distributed Firewalls;Firewall Policies;Firewall Anomalies; Network Security;FADS