Handling anomalies in distributed firewalls

被引:0
|
作者
Bouhoula, Adel [1 ]
Trabelsi, Zouheir
机构
[1] Ecole Super Commun Tunis, Cite Technologies Commun, Tunis 2083, Tunisia
[2] United Arab Emirates Univ, Coll Informat Technol, Al Ain 17555, U Arab Emirates
来源
2006 Innovations in Information Technology | 2006年
关键词
distributed firewall; filtering rules; anomalies; security policy; inference system;
D O I
暂无
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
Distributed Firewalls filter the incoming and outgoing network traffic based on a set of predefined filtering rules. The filtering rules have to be well defined and coherent in order to guarantee the desired responses of the Firewalls. In this paper, we propose an inference system for detecting all anomalies that could exist in a multi-Firewall network environment. Three classes of anomalies are described, namely, the Redundancy, Locking and Incoherence anomalies. Then, we give an example of common network architecture with the corresponding filtering policy. The example demonstrates how anomalies can be easily detected using the proposed inference model. Related works are discussed; and it will be demonstrated that the proposed inference model is more simple and general than related models.
引用
收藏
页码:237 / 241
页数:5
相关论文
共 50 条
  • [21] Improving distributed firewalls performance through vertical load balancing
    Paul, O
    NETWORKING 2004: NETWORKING TECHNOLOGIES, SERVICES, AND PROTOCOLS; PERFORMANCE OF COMPUTER AND COMMUNICATION NETWORKS; MOBILE AND WIRELESS COMMUNICATIONS, 2004, 3042 : 25 - 37
  • [22] Distributed Specification-Based Firewalls for Power Grid Substations
    Wu, Shinn-Shyan
    Liu, Chen-Ching
    Stefanov, Alexandru
    2014 IEEE PES INNOVATIVE SMART GRID TECHNOLOGIES CONFERENCE EUROPE (ISGT EUROPE), 2014,
  • [23] MatchMaker - A flexible synchronizing mechanism for distributed applications through firewalls
    Baloian, N.
    Jansen, M.
    Pino, J. A.
    2006 10TH INTERNATIONAL CONFERENCE ON COMPUTER SUPPORTED COOPERATIVE WORK IN DESIGN, PROCEEDINGS, VOLS 1 AND 2, 2006, : 929 - 934
  • [24] Anomaly detection of policies in distributed firewalls using data log analysis
    Azam Andalib
    Seyed Morteza Babamir
    The Journal of Supercomputing, 2023, 79 : 19473 - 19514
  • [25] Micro-firewalls for dynamic network security with distributed intrusion detection
    Hwang, K
    Gangadharan, M
    IEEE INTERNATIONAL SYMPOSIUM ON NETWORK COMPUTING AND APPLICATIONS, PROCEEDINGS, 2001, : 68 - 79
  • [26] A Statistical Framework for Handling Network Anomalies
    Bouguessa, Mohamed
    Chouchane, Amani
    2018 IEEE/ACM INTERNATIONAL CONFERENCE ON ADVANCES IN SOCIAL NETWORKS ANALYSIS AND MINING (ASONAM), 2018, : 709 - 714
  • [27] Oblivious and distributed firewall policies for securing firewalls from malicious attacks
    Allami, Ali
    Nicewarner, Tyler
    Goss, Ken
    Kundu, Ashish
    Jiang, Wei
    Lin, Dan
    COMPUTERS & SECURITY, 2025, 150
  • [28] Implementing the coupled objects paradigm for synchronizing distributed applications through firewalls
    Baloian, Nelson
    Pino, Jose A.
    Jansen, Marc
    COMPUTER SUPPORTED COOPERATIVE WORK IN DESIGN III, 2007, 4402 : 599 - +
  • [29] Anomaly detection of policies in distributed firewalls using data log analysis
    Andalib, Azam
    Babamir, Seyed Morteza
    JOURNAL OF SUPERCOMPUTING, 2023, 79 (17): : 19473 - 19514
  • [30] An accurate FDD-based approach for discovering Distributed Firewalls Misconfigurations
    Saadaoui, Amina
    Ben Souayeh, Nihel Ben Youssef
    Bouhoula, Adel
    2016 IEEE TRUSTCOM/BIGDATASE/ISPA, 2016, : 552 - 559
12345