XML based open tool for anomalies detection in firewall filtering rules

Author

Benelbahri, Mohamed Anis ; Bouhoula, Adel ; Trabelsi, Zouheir

Author_Institution

Cite Technologique des Commun., El Ghazala

fYear

2007

fDate

18-20 Nov. 2007

Firstpage

163

Lastpage

167

Abstract

In our days, firewalls are widely deployed to secure both hosts and networks against attacks and unwanted data flows. They control incoming and outgoing packets based on filtering rules´ lists which reflect the desired security policy. Therefore, filtering rules must be coherent, well edited and free from anomalies and mainly on the case of distributed firewalls. Many approaches, consequently, are developed to analyze access lists and validate them. In addition, many dedicated languages are used by constructors on the implementation of their firewalls. That´s why; we present, in our paper, an open tool which translates all filtering rules languages to a unified representation using XML. Then, we extract their fields from the XML file and analyze them by applying the appropriate algorithm. We have implemented this tool and the first tests show its efficiency.

Keywords

XML; authorisation; computer networks; XML; XML based open tool; anomalies detection; distributed firewalls; firewall filtering rules; unified representation; Algorithm design and analysis; Boolean functions; Communications technology; Data structures; Educational institutions; Filtering algorithms; Filters; Logic programming; Security; XML; Distributed Firewalls; XML; anomalies; security policy;

fLanguage

English

Publisher

ieee

Conference_Titel

Innovations in Information Technology, 2007. IIT '07. 4th International Conference on

Conference_Location

Dubai

Print_ISBN

978-1-4244-1840-4

Electronic_ISBN

978-1-4244-1841-1

Type

conf

DOI

10.1109/IIT.2007.4430449

Filename

4430449