Title :
Firewall Rule Ordering Based on Statistical Model
Author :
Wang, WeiPing ; Chen, Heran ; Chen, Jiayao ; Liu, Bowen
Author_Institution :
Manage. Sch., Univ. of Sci. & Technol. of China, Hefei, China
Abstract :
Firewall played an important role as a tool that protects the network of the enterprise. On optimizing firewall policy, firewalls can filter packets effectively and improve the performance of firewalls. Otherwise, if a firewall policy is not written properly, firewall will easily become a fatal point of network attacks. In this paper, we first propose a statistical model that statistic packets which go into or out of networks using non-parameter statistic theory. Based on this model, we then propose an algorithm that optimizes the rule ordering of a firewall which can improve the performance of a firewall obviously. We will prove this through our experiment.
Keywords :
authorisation; computer networks; statistical analysis; firewall rule ordering; non-parameter statistic theory; optimizing firewall policy; statistical model; Conference management; Costs; Filters; Information management; Management information systems; Protection; Protocols; Statistics; Technology management; Tin; Firewall; Optimum ordering; Rule_Space; Statistical model;
Conference_Titel :
Computer Engineering and Technology, 2009. ICCET '09. International Conference on
Conference_Location :
Singapore
Print_ISBN :
978-1-4244-3334-6
DOI :
10.1109/ICCET.2009.62
