Comparison Model and Algorithm for Distributed Firewall Policy

Wang, Weiping; Chen, Wenhui; Li, Zhepeng; Chen, Huaping

doi:10.1007/978-3-540-37275-2_67

Weiping Wang⁶,
Wenhui Chen⁶,
Zhepeng Li⁶ &
…
Huaping Chen⁶

Part of the book series: Lecture Notes in Computer Science ((LNAI,volume 4114))

Included in the following conference series:

International Conference on Intelligent Computing

611 Accesses
1 Citations

Abstract

As a traditional technique of information security, distributed firewall has taken very important position, while problems remain. Correct configuration of distributed firewall policies and keeping individual firewall filter decisions compatible to each other are quite inconvenient for administrators. To realize the comparison between firewalls’ policies, this paper provide FPT(firewall policy tree) model, and the construction algorithm which can turn a firewall policy into a policy tree, as well as the comparison algorithm. Combination of the two algorithms can be used to perform a comparison between distributed firewalls’ policies. By doing this, the paper can obtain the set of data packages on which different firewalls have made inconsistent filter decision, and find out the inconsistency in distributed firewall policies. Besides, this model could be extended to package classification systems for policies comparison.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Firewall Filtering Technology and Application Based on Decision Tree

Anomaly Detection System and Resolution of Anomalies for Firewall Policies

A new approach to deploy a self-adaptive distributed firewall

Article Open access 04 June 2018

Author information

Authors and Affiliations

School of Management, University of Science & Technology of China, 230026, China
Weiping Wang, Wenhui Chen, Zhepeng Li & Huaping Chen

Authors

Weiping Wang
View author publications
You can also search for this author in PubMed Google Scholar
Wenhui Chen
View author publications
You can also search for this author in PubMed Google Scholar
Zhepeng Li
View author publications
You can also search for this author in PubMed Google Scholar
Huaping Chen
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Institute of Intelligent Machines , Chinese Academy of Sciences , Anhui, Hefei, China
De-Shuang Huang
Queen’s University , Belfast, UK
Kang Li & George William Irwin &

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Wang, W., Chen, W., Li, Z., Chen, H. (2006). Comparison Model and Algorithm for Distributed Firewall Policy. In: Huang, DS., Li, K., Irwin, G.W. (eds) Computational Intelligence. ICIC 2006. Lecture Notes in Computer Science(), vol 4114. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-37275-2_67

Download citation

DOI: https://doi.org/10.1007/978-3-540-37275-2_67
Published: 18 June 2010
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-37274-5
Online ISBN: 978-3-540-37275-2
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics