Title :
Information game of public firewall rules
Author :
Liao, Qi ; Li, Zhen ; Striegel, Aaron
Author_Institution :
Dept. of Comput., Univ. of Notre Dame, Notre Dame, IN, USA
Abstract :
Firewalls are among the most important components in network security. Traditionally, the rules of the firewall are kept private under the assumption that privacy of the rule set makes attacks on the network more difficult. We posit that this assumption is no longer valid in the Internet of today due to two factors: the emergence of botnets reducing probing difficulty and second, the emergence of distributed applications where private rules increase the difficulty of troubleshooting. We argue that the enforcement of the policy is the key, not the secrecy of the policy itself. In this paper, we demonstrate through the application of game theory that public firewall rules when coupled with false information (lying) are not only viable but actually better.
Keywords :
Internet; game theory; security of data; Internet; botnet emergence; distributed application; information game theory; network security; public firewall rule; Computer network management; Computer science; Computer security; Educational institutions; Engineering management; Game theory; Information security; Internet; Intrusion detection; Productivity;
Conference_Titel :
Secure Network Protocols, 2009. NPSec 2009. 5th IEEE Workshop on
Conference_Location :
Princeton, NJ
Print_ISBN :
978-1-4244-4866-1
Electronic_ISBN :
978-1-4244-4865-4
DOI :
10.1109/NPSEC.2009.5342253
