Detection of Anomalies in Packet Filter Configurations(サービス管理・ビジネス管理,料金管理,及び一般)
スポンサーリンク
概要
- 論文の詳細を見る
Packet filtering in a firewall is one of the useful tools for the network security. Packet filtering examines network packet and decides whether to accept, or deny it and this decision is determined by a packet filtering configuration developed by the network administrator. An administrator may find hard to understand and maintain a configuration, and this burden will further be increased to find anomalies between two configurations, especially when the size of filters in configuration increased. The difficulty may leave the administrator with less confidence that the configurations are correctly and completely implemented. The paper introduces SIERRA (A systolic filter sieve array) to interpret the meaning of configuration in space range, and presents how to use SIERRA tree to decide anomalies in different cases.
- 社団法人電子情報通信学会の論文
- 2006-05-04
著者
-
Yin Yi
Graduate School of Engineering, Nagoya Institute of Technology
-
Katayama Yoshiaki
Graduate School of Engineering, Nagoya Institute of Technology
-
Takahashi Naohisa
Graduate School of Engineering, Nagoya Institute of Technology
-
Katayama Yoshiaki
Graduate School Of Engineering Nagoya Institute Of Technology
-
Yin Yi
Graduate School Of Engineering Nagoya Institute Of Technology
-
Yin Yi
Nagoya Institute of Technology Gokiso
-
Takahashi Naohisa
Graduate School Of Engineering Nagoya Institute Of Technology
-
Yin Yi
Nagoya Institute of Technology
関連論文
- BISCAL: bit vector based spatial calculus for analyzing the mis-configurations in firewall policies (インターネットアーキテクチャ)
- Detection of Anomalies in Packet Filter Configurations
- Detection of Anomalies in Packet Filter Configurations(サービス管理・ビジネス管理,料金管理,及び一般)
- Hierarchical Composition of Self-Stabilizing Protocols Preserving the Fault-Containment Property
- Detection of Conflicts Caused by a Combination of Filters Based on Spatial Relationships