Skip to main content
Conference Proceedings

The semantics loss tracker of firewall rules

Advances in Intelligent Systems and Computing (2019) 769 220-231
DOI: 10.1007/978-3-319-93692-5_22
6Citations
Citations of this article
2Readers
Mendeley users who have this article in their library.
Get full text

Abstract

Frequently, firewall rules are overlapped and duplicated. The problems are usually resolved by merging rules. However, sometimes merged rules lead to the semantics loss. This paper proposed the tracker system for analyzing and alerting the semantics loss of firewall rules while they are being merged, namely SELTracker. SELTracker data structure is built from the Path Selection Tree (PST). PST does only keep all anomaly rules but also maintain normal rules. While firewall rules are being merged, SELTracker analyzes merging rules against PST. Based on the testing results, the proposed system has the ability to effectively detect the semantics loss. Moreover, SELTracker can also detect all other anomalies.

Author supplied keywords

Cite

CITATION STYLE

APA

Khummanee, S. (2019). The semantics loss tracker of firewall rules. In Advances in Intelligent Systems and Computing (Vol. 769, pp. 220–231). Springer Verlag. https://doi.org/10.1007/978-3-319-93692-5_22

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free