首页    期刊浏览 2024年11月25日 星期一
登录注册

文章基本信息

  • 标题:Characterising ACLs by Rule Dependency: Effects on Optimisation Effectiveness
  • 本地全文:下载
  • 作者:Vic Grout ; Stuart Cunningham ; Rich Picking
  • 期刊名称:International Journal of Computer Science and Network Security
  • 印刷版ISSN:1738-7906
  • 出版年度:2007
  • 卷号:7
  • 期号:6
  • 页码:10-16
  • 出版社:International Journal of Computer Science and Network Security
  • 摘要:This paper considers the effects of dependencies between rules in Access Control Lists (ACLs). Dependent rules may not be reordered in an ACL if the policies of the list are to be preserved. This is an obstacle to the optimisation of rule order intended to reduce the time taken matching packets against rules. In this paper, the concept of rule dependency is defined in relation to the problem of minimising processing latency. The concepts of dependence and possible dependence are introduced and the relationship between them considered. Two measures of dependency, the dependency index and the fragmented dependency index are defined and formulated and an upper bound for each is derived. Examples of real-world ACLs are studied and the implications for practical optimisation discussed.
  • 关键词:Access Control Lists (ACLs); Rule dependencies; Optimisation; Packet latency
国家哲学社会科学文献中心版权所有