Title :
Study on Intelligent Firewall System Combining Intrusion Detection and Egress Access Control
Author :
Huang, Xiaobo ; Wang, Xiaoyan ; Zhu, Shisong
Author_Institution :
Dept. of Found. Courses, Xuzhou Air Force Acad., Xuzhou, China
Abstract :
To satisfy the special needs of confidential networks, a protection method of combining ingress and egress access control for network boundary security is proposed. In preventing network attacks, a combined mechanism of packets filtering firewall and intrusion detection system based on artificial neural network and rule matching is implemented to increase the accuracy of intrusion detection. In preventing information leakage, techniques of identity authentication and content filtering are integrated into the mechanism of egress access control so that strategies with more flexibility in security auditing and access control can be implemented, which is effective to prevent the sensitive or secret data from leaking out and to trace the source of leakage.
Keywords :
authorisation; computer network security; neural nets; artificial neural network; content filtering; egress access control; identity authentication; information leakage; intelligent firewall system; intrusion detection system; network boundary security; packets filtering firewall; protection method; rule matching; Authentication; Context; Fires; Information filters; artificial neural network; contents filtering; egress access control; intelligent firewall; intrusion detection;
Conference_Titel :
Intelligent System Design and Engineering Application (ISDEA), 2010 International Conference on
Conference_Location :
Changsha
Print_ISBN :
978-1-4244-8333-4
DOI :
10.1109/ISDEA.2010.57
