To Provide An Innovative Policy Anomaly Management Framework For Firewalls
Journal Title: International Journal of Science Engineering and Advance Technology - Year 2014, Vol 2, Issue 12
Abstract
Firewalls have been widely organized on the Internet for securing private networks. A firewall checks each incoming or outgoing packet to choose whether to accept or discard the packet based on its policy. Optimizing firewall policies is vital for improving network performance. In this paper we propose the first cross-domain privacy-preserving cooperative firewall policy optimization protocol. Specifically for any two adjacent firewalls belonging to two different administrative domains our protocol can recognize in each firewall the rules that can be removed because of the other firewall. The optimization process involves cooperative computation between the two firewalls without any party disclosing its policy to the other. Firewalls are significant in securing private networks of businesses, institutions and home networks. A firewall is frequently placed at the entry between a private network and the external network so that it can ensure each incoming or outgoing packet and choose whether to accept or abandon the packet based on its policy. A firewall policy is typically specified as a sequence of rules called Access Control List (ACL) and each rule has a predicate over multiple packet header fields i.e., source IP, destination IP, source port, destination port, and protocol type and a decision i.e., accept and discard for the packets that counterpart the predicate. In this paper we recommend the first cross-domain privacypreserving cooperative firewall policy optimization protocol.
Authors and Affiliations
Subha Sree Mallela| Department of Computer Science And Engineering Akula Sree Ramulu Institute of Engineering and Technology, Prathipadu, Tadepalligudem, A.P, India, subhasree.mallela@gmail.com, M M Bala Krishna| Department of Computer Science And Engineering Akula Sree Ramulu Institute of Engineering and Technology, Prathipadu, Tadepalligudem, A.P, India, balu_522@yahhoo.co.in, KTV Subba Rao| Department of Computer Science And Engineering Akula Sree Ramulu Institute of Engineering and Technology, Prathipadu, Tadepalligudem, A.P, India, ogidi@rediffmail.com
Keywords
Related Articles
- EP ID EP16414
- DOI -
- Views 288
- Downloads 24
Improved Converter Design Use of SHE-PWM for Harmonic Immunity in VSC HVDC Transmission
The idea of multilevel inverters, presented around 20 years back involves performing power change in various voltage ventures to get enhanced force quality, lower exchanging misfortunes, better electromagnetic simila...
Radiaton Pattern Reconfiguration Using Parasitic Elements
A parasitic surface based reconfiguration technique for microstrip antenna beam steering has been presented and discussed in this paper. This concept can be used in reconfigurable antennas without additional modifica...
A New Analysis on Fraud Ranking In Mobile Apps
Fraud in the mobile Application market refers to fake or misleading exercises which have a reason for knocking up the Applications in the popularity list. To be sure, it turns out to be increasingly visit for Applica...
Structural and Thermal Simulation of Fins Of An Air Cooled Engine Cylinder Under Varying Speed Conditions
Engine cylinder is the main component of the automobile which is subjected to high temperature variations and thermal stresses. Fins are basically mechanical structures which are used to cool various structures via t...
An Improved Cost Estimation in Software Project Development Using Neural Networks and COCOMOII model
An sympathetic of quality aspects is relevant for the software association to deliver high software dependability. An empirical consideration of metrics to prophesy the quality attributes is basic in order to acquire...