redundancy management and anomaly detection on firewall ruleset using fame
Author(s):
J.SETHURAM , SRI VIDYA COLLEGE OF ENGINEERING & TECHNOLOGY; G.SANKAREESWARI, SRI VIDYA COLLEGE OF ENGINEERING & TECHNOLOGY
Keywords:
Firewall policy, Anomaly detection, Firewall decision diagrams, Policy conflicts, FAME
Abstract:
Network security is essential for protecting the private and public networks such as banking, storage environments and educational zones. Network uses different types of security mechanisms for providing security to the network. The firewall is one of the security mechanism is used in the network security. The Firewalls are used as a protection barrier among the two different networks. The recital of firewall is mainly based on firewall policies. The firewall rules are used to decide whether the packets to be permit or refuse. These rules are crucial for the operation of firewall policies. The firewall policy contains some misconfigurations like rule redundancies, anomalies and conflicts. Such, conflicts are resolved by various mechanisms based on their errors. In this paper, we articulate a redundancy removal algorithm to manage such redundancies and a novel anomaly detection tool namely FAME (Firewall Anomaly Management Environment) uses segmentation technique to resolve anomalies.
Other Details:
| Manuscript Id | : | IJSTEV1I10141
|
| Published in | : | Volume : 1, Issue : 10
|
| Publication Date | : | 01/05/2015
|
| Page(s) | : | 275-278
|
Download Article
