For Libraries For Publication Open Access Downloads About Us Contact Us
Paper Titles
Research on Technology for Producing Green and Environmental - Friendly Silicate Glass
p.1899
Numerical Modeling of Thermogravitational Convection in Air Gap of System of Rear Ventilated Facades
p.1903
A Wavelet-Based Method for Automatic Location of Peaks in Gamma-Ray Spectra
p.1911
An Efficient Coverage Hole Patching Algorithm Based on Intersection Knowledge
p.1920
An Improved Method of Firewall Policy Anomaly Detection Based on Decision Tree
p.1925
An Improved Trace Method for Moving Target under Occlusion
p.1931
Decomposing Complete 3-Uniform Hypergraph into 5-Cycles
p.1935
Gait Analysis and Trajectory Planning for Lower Limb Rehabilitation Training
p.1940
Modeling and Evaluation in an Interworking of WLAN and WiMAX Network
p.1944

An Improved Method of Firewall Policy Anomaly Detection Based on Decision Tree

Article Preview

Abstract:

Anomalous access control policy on firewall reduces the efficiency of the equipment, thus affecting the overall security of the network. This paper introduces an improved method of firewall policy anomaly detection based on decision tree, by transforming all the firewall access control rules into a decision tree to store the information in a tree data structure, each rule corresponds to the only one path of the tree. The experiment results show that this method solves some shortcomings in the existing decision tree based firewall policy anomaly detection methods, avoids spending time on comparison of rules whose attribute domains are uncorrelated and traversal comparison of all rules, reduces its running time and improves the efficiency of anomaly detection.

You might also be interested in these eBooks
Renewable Energy and Power Technology II View Preview

Info:

Periodical:

Applied Mechanics and Materials (Volumes 672-674)

Pages:

1925-1930

DOI:

https://doi.org/10.4028/www.scientific.net/AMM.672-674.1925

Citation:

Cite this paper

Online since:

October 2014

Authors:

Tao Zhang, Yuan Yuan Ma, Wei Li*, Jian Shi, Na Wang

Keywords:

Anomaly Detection, Decision Tree, Firewall

Export:

RIS, BibTeX

Price:

Permissions CCC:

Request Permissions

Permissions PLS:

Request Permissions

Сopyright:

© 2014 Trans Tech Publications Ltd. All Rights Reserved

Share:

Citation:

* - Corresponding Author

References

[1] Wool A: Computer. Vol. 37 (2004), p.62.

Google Scholar

[2] E. Al-Shaer and H. Hamed: Integrated Network Management. Vol. 22 (2003), p.34.

Google Scholar

[3] Y.B. Zhao and H.M. Zou: Computer Engineering. Vol. 35 (2009), p.109. In Chinese.

Google Scholar

[4] Y. Sun, J.Y. Luo and Y. Liu: Computer Engineering. Vol. 35 (2009), p.164. In Chinese.

Google Scholar

[5] Y.H. Zhao, B. Hu and C.H. Zhou: Formal Description and Verification of Security Filtered Rules, IEEE International Conference on Networking and Distributed Computing, Hangzhou, China, 21-24 October (2010).

DOI: 10.1109/icndc.2010.55

Google Scholar

[6] Y. Xu, T. Dong: Computer Technology and Development. Vol. 23 (2013), p.128 In Chinese.

Google Scholar

[7] E. Al-Shaer and H. Hamed: IEEE Journals, Vol. 23 (2005), p. (2069).

Google Scholar

© 2025 Trans Tech Publications Ltd. All rights are reserved, including those for text and data mining, AI training, and similar technologies. For open access content, terms of the Creative Commons licensing CC-BY are applied.
Scientific.Net is a registered trademark of Trans Tech Publications Ltd.