Firewall Compressor: An Algorithm for Minimizing Firewall Policies
Source: Michigan State University
A firewall is a security guard placed between a private network and the outside Internet that monitors all incoming and outgoing packets. The function of a firewall is to examine every packet and decide whether to accept or discard it based upon the firewall's policy. This policy is specified as a sequence of (possibly conflicting) rules. With the explosive growth of Internet-based applications and malicious attacks, the number of rules in firewalls have been increasing rapidly, which consequently degrades network performance and throughput. This paper proposes Firewall Compressor, a framework that can significantly reduce the number of rules in a firewall while keeping the semantics of the firewall unchanged.
| Format: | Size: | 221.30 | |
| Date: | Jan 2008 |
People who downloaded this item also downloaded
- A Systematic Methodology for Firewall Penetration Testing
- Automatic Detection of Firewall Misconfigurations Using Firewall and Network Routing Policies
- Analysis of Firewall Policy Rules Using Traffic Mining Techniques
- What Do Firewalls Protect? an Empirical Study of Firewalls, Vulnerabilities, and Attacks
- PolicyVis: Firewall Security Policy Visualization and Inspection
