Ahmed et al., 2010 - Google Patents

Safe and efficient strategies for updating firewall policies

Ahmed et al., 2010

Document ID: 6988942040327326126
Author: Ahmed Z; Imine A; Rusinowitch M
Publication year: 2010
Publication venue: International Conference on Trust, Privacy and Security in Digital Business

External Links

Cited by

Snippet

Due to the large size and complex structure of modern networks, firewall policies can contain several thousand rules. The size and complexity of these policies require automated tools providing a user-friendly environment to specify, configure and safely deploy a target …

Continue reading at link.springer.com (other versions)

235000013615 non-nutritive sweetener 0 description 10

Classifications

- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0209—Architectural arrangements, e.g. perimeter networks or demilitarized zones
- H04L63/0218—Distributed architectures, e.g. distributed firewalls
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
- H04L63/0263—Rule management
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1433—Vulnerability analysis

Similar Documents

Publication	Publication Date	Title
US9553845B1 (en)	2017-01-24	Methods for validating and testing firewalls and devices thereof
EP3343841B1 (en)	2020-10-21	Access relationships in a computer system
US7257815B2 (en)	2007-08-14	Methods and system of managing concurrent access to multiple resources
CN113055369B (en)	2023-03-21	Security in software defined networks
EP1634175B1 (en)	2015-06-24	Multilayer access control security system
US20060164199A1 (en)	2006-07-27	Network appliance for securely quarantining a node on a network
US20090238474A1 (en)	2009-09-24	String searching facility
US20220159016A1 (en)	2022-05-19	Network data traffic identification
Abbes et al.	2016	Detection of firewall configuration errors with updatable tree
US11388144B2 (en)	2022-07-12	Session setup in network applications
Lagrasse et al.	2020	Digital forensic readiness framework for software-defined networks using a trigger-based collection mechanism
US11700258B2 (en)	2023-07-11	Access relationships in a computer system
Al-Shaer	2014	Automated firewall analytics: Design, configuration and optimization
Krit et al.	2017	Overview of firewalls: Types and policies: Managing windows embedded firewall programmatically
Gouda et al.	2008	Verification of distributed firewalls
Ahmed et al.	2010	Safe and efficient strategies for updating firewall policies
KR100372798B1 (en)	2003-02-19	System and method for dynamic micro placement of ip connection filters
US8892492B2 (en)	2014-11-18	Declarative network access control
Bouhoula et al.	2008	Firewall filtering rules analysis for anomalies detection
Karoui et al.	2013	Formal specification, verification and correction of security policies based on the decision tree approach
US20120324569A1 (en)	2012-12-20	Rule compilation in a firewall
Thakar et al.	2012	An approach to improve performance of a packet-filtering firewall
Bouhoula et al.	2016	A security policy query engine for fully automated resolution of anomalies in firewall configurations
Bezzazi et al.	2012	Optimized strategy of deployment firewall policies
Fuertes et al.	2016	Software-based computing platform as an experimental topology assembled to detect and mitigate DDoS attacks using virtual environments