期刊名称:International Journal of Computer Science & Technology
印刷版ISSN:2229-4333
电子版ISSN:0976-8491
出版年度:2013
卷号:4
期号:1
页码:237-240
语种:English
出版社:Ayushmaan Technologies
摘要:Firewalls are a well known and advanced security mechanisms which ensure the security of private networks in different businesses organization and institutions. The reliability of security provided by a firewall merely depends on the quality of policy configuration of the firewall. Due to the complex nature of firewall configurations as well as the lack of systematic analysis mechanisms and tools it is very difficult task to manage the anomalies in its policies. Detection and recovery of anomalies in firewall policies became a challenging job for the researchers. In this paper we have introduced a novel idea to detect and prevent the anomalies from firewall policies. We have adopted a rule-based segmentation technique to identify firewall anomalies policies and derive effective and secure resolutions. We introduced a grid-based representation technique, with an intuitive cognitive sense about policy anomaly. We also discuss the concept of implementation part of a visualization-based firewall policy analysis tool called Firewall Anomaly Management Environment (FAME). In addition, we have shown an experimental result how efficiently our approach can discover and resolve anomalies in firewall policies.
