An Axiomatic Approach to Firewall Rule Update
نویسنده
چکیده
A firewall administrator often needs to update a given firewall, to take account of evolving security requirements or to correct a wrongly classified packet. We look at the problem of firewall update, mainly from an axiomatic viewpoint. An axiom for firewall update is a property which any reasonable method of updating should fulfill. We propose a number of such axioms. We also give some simple examples of firewall update algorithms and check them against the axioms.
منابع مشابه
Axiomatic and game-theoretic analysis of bankruptcy and taxation problems: An update
A group of agents have claims on a resource, but there is not enough of it to honor all of the claims. How should it be divided? A group of agents decide to undertake a public project that they can jointly afford. How much should each of them contribute? This essay is an update of Thomson (2003), a survey of the literature devoted to the study of such problems. JEL classification number: C79; D...
متن کاملA configurable Classification Engine for Polymorphous Chip Architecture
The ever-increasing demands for bandwidth requirement, faster IP forwarding, efficient and effective firewall and flexible differentiated services has resulted in the evolution of sophisticated Network Processor Units (NPUs). We describe a novel approach to implement a pipelined, configurable IPv6 and IPv4 coprocessor for a Network Processor Unit. The coprocessor is capable of providing Forward...
متن کاملImplementation of Portion Approach in Distributed Firewall Application for Network Security Framework
The stimulate of this research seeks collaboration of firewalls which, could reach to the capability of distributed points of security policy; the front-end entity may much interact by the invaders so the separation between this entity and back-end entity to make the secure domain protection is necessary; collaborative security entity has the various task in the organization and there is a cert...
متن کاملComparing and debugging firewall rule tables
Firewalls are one of the essential components of secure networks. However, configuring firewall rule tables for large networks with complex security requirements is a difficult and error prone task. A method of representing firewall rule table that allows comparison of two tables is developed, and an algorithm that determines if two tables are equivalent is provided. (That is the set of packets...
متن کاملInferring Higher Level Policies from Firewall Rules
Packet filtering firewall is one of the most important mechanisms used by corporations to enforce their security policy. Recent years have seen a lot of research in the area of firewall management. Typically, firewalls use a large number of low-level filtering rules which are configured using vendor-specific tools. System administrators start off by writing rules which implement the security po...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2009