A Topology-Based Conflict Detection System for Firewall Policies using Bit-Vector-Based Spatial Calculus
نویسندگان
چکیده
منابع مشابه
A Topology-Based Conflict Detection System for Firewall Policies using Bit-Vector-Based Spatial Calculus
Firewalls use packet filtering to either accept or deny packets on the basis of a set of predefined rules called filters. The firewall forms the initial layer of defense and protects the network from unauthorized access. However, maintaining firewall policies is always an error prone task, because the policies are highly complex. Conflict is a misconfiguration that occurs when a packet matches ...
متن کاملDesign and Implementation of Conflict Detection System for Time-Based Firewall Policies
Firewalls are one of the most common mechanisms used to protect the network from unauthorized access and security threats. Nowadays, time-based firewall policies are widely in use in many firewalls such as CISCO ACLs and Linux iptables to control network traffic with respect to time. However, network administrators struggle to maintain the firewall policies due to their high complexity. A confl...
متن کاملLogic-based Conflict Detection for Distributed Policies
Policies are used to describe rules that are employed to modify (often distributed) system behaviour at runtime. Typically policies are created by many different people and there are many policies leading naturally to inconsistency between the policies, a problem that has been recognised and termed policy conflict. We present a novel formal semantics for distributed policies expressed in the AP...
متن کاملSmokey: A User-Based Distributed Firewall System
Traditional intranets have a central location on the network which easily allows the enforcement of a central security policy. They rely on the notion that there is one central entry point for all internal machines. Additionally, all machines that are considered logically inside the intranet reside behind the entry point. Increasingly this is not the case. We propose Smokey, a system that manag...
متن کاملmetrics for the detection of changed buildings in 3d old vector maps using als data (case study: isfahan city)
هدف از این تحقیق، ارزیابی و بهبود متریک های موجود جهت تایید صحت نقشه های قدیمی سه بعدی برداری با استفاده از ابر نقطه حاصل از لیزر اسکن جدید شهر اصفهان می باشد . بنابراین ابر نقطه حاصل از لیزر اسکنر با چگالی حدودا سه نقطه در هر متر مربع جهت شناسایی عوارض تغییر کرده در نقشه های قدیمی سه بعدی استفاده شده است. تمرکز ما در این تحقیق بر روی ساختمان به عنوان یکی از اصلی ترین عارضه های شهری می باشد. من...
ذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: International Journal of Communications, Network and System Sciences
سال: 2011
ISSN: 1913-3715,1913-3723
DOI: 10.4236/ijcns.2011.411084