Title :
Protection system for network boundary security
Author :
Huang, Xiaobo ; Zhang, Mingxue ; Wang, Xiaoyan
Author_Institution :
Dept. of Found. Courses, Xuzhou Air Force Acad., Xuzhou, China
Abstract :
To satisfy the special needs of confidential networks, a protection method of combining ingress and egress access control for network boundary security is proposed. In preventing network attacks, a combined mechanism of packets filtering firewall and intrusion detection system based on artificial neural network and rule matching is implemented to increase the accuracy of intrusion detection. In preventing information leakage, techniques of identity authentication and content filtering are integrated into the mechanism of egress access control so that strategies with more flexibility in security auditing and access control can be implemented, which is effective to prevent the sensitive or secret data from leaking out and to trace the source of leakage.
Keywords :
access control; authorisation; computer network security; neural nets; artificial neural network; content filtering; egress access control; identity authentication; information leakage; ingress access control; intrusion detection system; network boundary security; packet filtering firewall; protection system; rule matching; security auditing; Computers; Databases; Filtering; Fires; Intrusion detection; Network Boundary; artificial neural network; contents filtering; firewall; identity authentication; intrusion detection;
Conference_Titel :
Computer Science and Information Technology (ICCSIT), 2010 3rd IEEE International Conference on
Conference_Location :
Chengdu
Print_ISBN :
978-1-4244-5537-9
DOI :
10.1109/ICCSIT.2010.5564727
