• DocumentCode
    3761569
  • Title

    Research on self-learning method on generation and optimization of industrial firewall rules

  • Author

    Wenli Shang; Ming Wan; Peng Zeng; Quansheng Qiao

  • Author_Institution
    Shenyang Institute of Automation, Chinese Academy of Science, China
  • fYear
    2015
  • Firstpage
    47
  • Lastpage
    52
  • Abstract
    In order to make the rule setting more convenient, this paper presents a self-learning method on the generation and optimization of industrial firewall rules. This method includes three parts: packet preprocessing, rule self-learning and rule optimization. First, packet capturing and analysis accomplish the data preprocessing; Secondly, by using the self-learning module, this method generates the firewall rule set. Finally, the rule set is optimized to reduce the number of rules and shorten the packet matching length. Experiments and comparative results show that the proposed method meet effectiveness and real-time requirements of industrial control system communication control.
  • Keywords
    "Firewalls (computing)","Protocols","Industrial control","Optimization","Algorithm design and analysis","Ports (Computers)"
  • Publisher
    ieee
  • Conference_Titel
    Information Security and Cyber Forensics (InfoSec), 2015 Second International Conference on
  • Type

    conf

  • DOI
    10.1109/InfoSec.2015.7435505
  • Filename
    7435505
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3761569