期刊名称:Journal of Theoretical and Applied Information Technology
印刷版ISSN:1992-8645
电子版ISSN:1817-3195
出版年度:2014
卷号:66
期号:1
出版社:Journal of Theoretical and Applied
摘要:Security issues are becoming more critical in network systems. Firewalls offer an important defense and protection for network, permit to strengthen security aspect. Firewalls are network devices or programs which enforce an organization's security policy, permit to control and monitor the traffic flow of network; they are installed between networks or hosts that employ differing security postures. Generally firewalls were deployed at network perimeters in order to provide some measure of protection for internal hosts. Different firewalls support different policy editing commands. The set of policy editing commands that a firewall supports is called its policy editing language. In [1], the authors provide deployment algorithm for type II language. This paper aims to develop an efficient algorithm for the updates of the security policy. Our proposal is considered improved type II edition policies algorithm. Although the proposed algorithm in [1] gives correct results, but it has severe shortcomings of security in the implementation of the new policy of security, in addition, this algorithm has a high degree of complexity. We will propose an algorithm that will address these two weaknesses of the old algorithm, which allows us to gain in terms of security and complexity.
