For Libraries For Publication Open Access Downloads About Us Contact Us
Paper Titles
PID Controller Parameters Identification Based on Data Model
p.4254
The Improvements of the Nonsingular H-Matrix Determination
p.4262
Inplementation of an Efficient Parallel Multilevel Fast Multipole Algorithm
p.4268
Research of Mobile IPv6 Switch
p.4273
Research on Firewall System for Confidential Network
p.4279
Delay-Dependent Robust Passive Control for Uncertain Discrete Singular Systems with Multiple Time-Delays
p.4284
Design of a CAN Network with Ethernet and Wireless CAN Interface
p.4291
Dynamic Grid-Based Algorithms in DDM
p.4297
A Self-Adaptive and Variable Step Length Alopex Algorithm
p.4302

Research on Firewall System for Confidential Network

Article Preview

Abstract:

To satisfy the special needs of confidential networks, a protection method of combining ingress and egress access control for network boundary security is proposed. In preventing network attacks, a combined mechanism of packets filtering firewall and intrusion detection system based on artificial neural network and rule matching is implemented to increase the accuracy of intrusion detection. In preventing information leakage, techniques of identity authentication and content filtering are integrated into the mechanism of egress access control so that strategies with more flexibility in security auditing and access control can be implemented, which is effective to prevent the sensitive or secret data from leaking out and to trace the source of leakage.

You might also be interested in these eBooks
Materials Science and Information Technology View Preview

Info:

Periodical:

Advanced Materials Research (Volumes 433-440)

Pages:

4279-4283

DOI:

https://doi.org/10.4028/www.scientific.net/AMR.433-440.4279

Citation:

Cite this paper

Online since:

January 2012

Authors:

Xiao Bo Huang, Xiao Lin Huang, Quan Pu

Keywords:

Artificial Neural Network (ANN), Confidential Network, Contents Filtering, Firewall, Identity Authentication, Intrusion Detection

Export:

RIS, BibTeX

Price:

Permissions CCC:

Request Permissions

Permissions PLS:

Request Permissions

Сopyright:

© 2012 Trans Tech Publications Ltd. All Rights Reserved

Share:

Citation:

References

[1] Teresa F Lunt. A Survey of Intrusion Detection Techniques, Computers & Security[J], 1993, 12(4): 405-418.

DOI: 10.1016/0167-4048(93)90029-5

Google Scholar

[2] Netfilter, Firewall, NAT an packet filter for Linux[EB/OL], http: /www. Netfilter. org/documentation/index. html.

Google Scholar

[3] Snort, the de facto standard for intrusion detection/prevention[EB/OL], http: /www. snort. org.

Google Scholar

[4] SourceForge. net: The libpcap project[EB/OL], http: /sourceforge. net/projects/libpcap.

Google Scholar

[5] C. Rigney, S. Willens, A. Rubens, W. Simpson, RFC 2865, Remote Authentication Dial In User Service (RADIUS)[EB/OL], June 2000. http: /www. ietf. org/rfc/rfc2865. txt.

DOI: 10.17487/rfc2865

Google Scholar

[6] RFC 2551, Lightweight Directory Access Protocol[EB/OL], http: /www. ietf. org/rfc/rfc2551. txt.

Google Scholar

[7] DAI Kui. Implementation technology of neural network[M],. Changsha: National University of Defense Technology Press, (1998).

Google Scholar

[8] R S Boyer, J S Moore. A Fast String Searching Algorithm[J], Communications of the ACM, 1977, 20: 762-772.

DOI: 10.1145/359842.359859

Google Scholar

[9] He Longtao, Fang Binxing, Humingzeng, Improvement of Boyer-Moore String Matching Algorithm[J], Journal of Computer Applications, 2003, 23(3): 6-9.

Google Scholar

© 2025 Trans Tech Publications Ltd. All rights are reserved, including those for text and data mining, AI training, and similar technologies. For open access content, terms of the Creative Commons licensing CC-BY are applied.
Scientific.Net is a registered trademark of Trans Tech Publications Ltd.