To Provide An Innovative Policy Anomaly Management Framework For Firewalls
Journal Title: International Journal of Science Engineering and Advance Technology - Year 2014, Vol 2, Issue 12
Abstract
Firewalls have been widely organized on the Internet for securing private networks. A firewall checks each incoming or outgoing packet to choose whether to accept or discard the packet based on its policy. Optimizing firewall policies is vital for improving network performance. In this paper we propose the first cross-domain privacy-preserving cooperative firewall policy optimization protocol. Specifically for any two adjacent firewalls belonging to two different administrative domains our protocol can recognize in each firewall the rules that can be removed because of the other firewall. The optimization process involves cooperative computation between the two firewalls without any party disclosing its policy to the other. Firewalls are significant in securing private networks of businesses, institutions and home networks. A firewall is frequently placed at the entry between a private network and the external network so that it can ensure each incoming or outgoing packet and choose whether to accept or abandon the packet based on its policy. A firewall policy is typically specified as a sequence of rules called Access Control List (ACL) and each rule has a predicate over multiple packet header fields i.e., source IP, destination IP, source port, destination port, and protocol type and a decision i.e., accept and discard for the packets that counterpart the predicate. In this paper we recommend the first cross-domain privacypreserving cooperative firewall policy optimization protocol.
Authors and Affiliations
Subha Sree Mallela| Department of Computer Science And Engineering Akula Sree Ramulu Institute of Engineering and Technology, Prathipadu, Tadepalligudem, A.P, India, subhasree.mallela@gmail.com, M M Bala Krishna| Department of Computer Science And Engineering Akula Sree Ramulu Institute of Engineering and Technology, Prathipadu, Tadepalligudem, A.P, India, balu_522@yahhoo.co.in, KTV Subba Rao| Department of Computer Science And Engineering Akula Sree Ramulu Institute of Engineering and Technology, Prathipadu, Tadepalligudem, A.P, India, ogidi@rediffmail.com
Keywords
Related Articles
- EP ID EP16414
- DOI -
- Views 333
- Downloads 24
Developing A Hexapod Walking Machine
This project deals with the walking machines. A brief history and the evolution of the walking machines which are classified based on their legs, different walking mechanisms exists out of which Theo Jansen’s walki...
An Innovative Approach for Various Grades Of Geo-Polymer Concrete With The Replacement Of River Sand With Robosand
One of the endeavors to create ecologically neighborly cement is to decrease the use of Portland concrete by utilizing by-item materials, for example, fly powder. It is realized that generation of one ton of Portland...
Analyzation of Multistoried Building Strengthening in Seismic Region within fills and Using Etabs
Current building codes for seismic design and evaluation in Europe and American component execution based criteria that involve the estimation of inelastic reaction of the building because of seismic. These seismic r...
Smart Monitoring and Controlling of a System Using ARM11 SOC
This paper focuses on Smart monitoring and controlling of a system using ARM 11 SOC .Here Raspberry pi which is ARM11 SoC development board acts as the platform to which interfaces modules and monitor controlling mo...
The fundamental target of mathematics instruction is to invigorate one's instinct and logical point of view. Since the instinct is fuzzy, one can't be kept to two– esteemed logical considering. There ought to be som...