• DocumentCode
    2306503
  • Title

    Efficient method for inferring a firewall policy

  • Author

    Kim, Hyeonwoo ; Ju, Hongtaek

  • Author_Institution
    Dept. of Comput. Eng., Keimyung Univ., Daegu, South Korea
  • fYear
    2011
  • fDate
    21-23 Sept. 2011
  • Firstpage
    1
  • Lastpage
    8
  • Abstract
    We propose a framework which infers the policy of firewall deployed in the Internet access point and computer system. The proposed methodology shows how to infer a firewall policy from restricted probing packets, using consecutive characteristics of the IP address and TCP/UDP port number. We also show the experimental results and the performance of the proposed method.
  • Keywords
    Internet; authorisation; computer network security; transport protocols; IP address; Internet access point; TCP-UDP port number; computer system; firewall policy; restricted probing packets; Fires; IP networks; Internet; Protocols; Search problems; Servers; Shape; Firewall; Firewall policy; Network Fingerprinting;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Network Operations and Management Symposium (APNOMS), 2011 13th Asia-Pacific
  • Conference_Location
    Taipei
  • Print_ISBN
    978-1-4577-1668-3
  • Type

    conf

  • DOI
    10.1109/APNOMS.2011.6077015
  • Filename
    6077015
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2306503