Simulation study of firewalls to aid improved performance

Subrata Acharya; Jia Wang; Zihui Ge; Taieb Znati; Albert Greenberg

doi:10.1109/ANSS.2006.42

Simulation study of firewalls to aid improved performance

Subrata Acharya, Jia Wang, Zihui Ge, Taieb Znati, Albert Greenberg

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

5 Citations (Scopus)

Abstract

The overall performance of a firewall is crucial in enforcing and administrating security, especially when the network is under attack. The continuous growth of the Internet, coupled with the increasing sophistication of the attacks, is placing stringent demands on firewall performance. Under such circumstances it becomes very vital to understand the fundamental behind firewalls and their operation. In this paper, we describe a simulation framework for the study and analysis of firewalls. Based on this framework, we design methodologies to inspect and analyze both multi-dimensional firewall rules and traffic logs information. The data used for this study was collected over a large set of firewall rules and traffic logs at tens of enterprise networks managed by a Tier-1 service provider. The analysis presented in the paper firmly state the importance of considering traffic information in the process of firewall optimization. To the best of our knowledge ours is the first attempt to show the relevance of considering traffic characteristics to aid firewall optimization.

Original language	English
Title of host publication	Proceedings - 39th Annual Simulation Symposium
Publisher	IEEE Computer Society
Pages	19-26
Number of pages	8
ISBN (Print)	0769525598, 9780769525594
DOIs	https://doi.org/10.1109/ANSS.2006.42
Publication status	Published - 2006
Externally published	Yes
Event	39th Annual Simulation Symposium, 2006 - San Diego, CA, United States Duration: Apr 2 2006 → Apr 6 2006

Publication series

Name	Proceedings - Simulation Symposium
Volume	2006
ISSN (Print)	1080-241X

Other

Other	39th Annual Simulation Symposium, 2006
Country/Territory	United States
City	San Diego, CA
Period	4/2/06 → 4/6/06

ASJC Scopus subject areas

Engineering(all)

Access to Document

10.1109/ANSS.2006.42

Cite this

Acharya, S, Wang, J, Ge, Z, Znati, T & Greenberg, A 2006, Simulation study of firewalls to aid improved performance. in Proceedings - 39th Annual Simulation Symposium., 1612840, Proceedings - Simulation Symposium, vol. 2006, IEEE Computer Society, pp. 19-26, 39th Annual Simulation Symposium, 2006, San Diego, CA, United States, 4/2/06. https://doi.org/10.1109/ANSS.2006.42

@inproceedings{d6535cafa3a640799458fee0964b5c79,

title = "Simulation study of firewalls to aid improved performance",

abstract = "The overall performance of a firewall is crucial in enforcing and administrating security, especially when the network is under attack. The continuous growth of the Internet, coupled with the increasing sophistication of the attacks, is placing stringent demands on firewall performance. Under such circumstances it becomes very vital to understand the fundamental behind firewalls and their operation. In this paper, we describe a simulation framework for the study and analysis of firewalls. Based on this framework, we design methodologies to inspect and analyze both multi-dimensional firewall rules and traffic logs information. The data used for this study was collected over a large set of firewall rules and traffic logs at tens of enterprise networks managed by a Tier-1 service provider. The analysis presented in the paper firmly state the importance of considering traffic information in the process of firewall optimization. To the best of our knowledge ours is the first attempt to show the relevance of considering traffic characteristics to aid firewall optimization.",

author = "Subrata Acharya and Jia Wang and Zihui Ge and Taieb Znati and Albert Greenberg",

year = "2006",

doi = "10.1109/ANSS.2006.42",

language = "English",

isbn = "0769525598",

series = "Proceedings - Simulation Symposium",

publisher = "IEEE Computer Society",

pages = "19--26",

booktitle = "Proceedings - 39th Annual Simulation Symposium",

note = "39th Annual Simulation Symposium, 2006 ; Conference date: 02-04-2006 Through 06-04-2006",

}

TY - GEN

T1 - Simulation study of firewalls to aid improved performance

AU - Acharya, Subrata

AU - Wang, Jia

AU - Ge, Zihui

AU - Znati, Taieb

AU - Greenberg, Albert

PY - 2006

Y1 - 2006

N2 - The overall performance of a firewall is crucial in enforcing and administrating security, especially when the network is under attack. The continuous growth of the Internet, coupled with the increasing sophistication of the attacks, is placing stringent demands on firewall performance. Under such circumstances it becomes very vital to understand the fundamental behind firewalls and their operation. In this paper, we describe a simulation framework for the study and analysis of firewalls. Based on this framework, we design methodologies to inspect and analyze both multi-dimensional firewall rules and traffic logs information. The data used for this study was collected over a large set of firewall rules and traffic logs at tens of enterprise networks managed by a Tier-1 service provider. The analysis presented in the paper firmly state the importance of considering traffic information in the process of firewall optimization. To the best of our knowledge ours is the first attempt to show the relevance of considering traffic characteristics to aid firewall optimization.

AB - The overall performance of a firewall is crucial in enforcing and administrating security, especially when the network is under attack. The continuous growth of the Internet, coupled with the increasing sophistication of the attacks, is placing stringent demands on firewall performance. Under such circumstances it becomes very vital to understand the fundamental behind firewalls and their operation. In this paper, we describe a simulation framework for the study and analysis of firewalls. Based on this framework, we design methodologies to inspect and analyze both multi-dimensional firewall rules and traffic logs information. The data used for this study was collected over a large set of firewall rules and traffic logs at tens of enterprise networks managed by a Tier-1 service provider. The analysis presented in the paper firmly state the importance of considering traffic information in the process of firewall optimization. To the best of our knowledge ours is the first attempt to show the relevance of considering traffic characteristics to aid firewall optimization.

UR - http://www.scopus.com/inward/record.url?scp=33750115332&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=33750115332&partnerID=8YFLogxK

U2 - 10.1109/ANSS.2006.42

DO - 10.1109/ANSS.2006.42

M3 - Conference contribution

AN - SCOPUS:33750115332

SN - 0769525598

SN - 9780769525594

T3 - Proceedings - Simulation Symposium

SP - 19

EP - 26

BT - Proceedings - 39th Annual Simulation Symposium

PB - IEEE Computer Society

T2 - 39th Annual Simulation Symposium, 2006

Y2 - 2 April 2006 through 6 April 2006

ER -

Simulation study of firewalls to aid improved performance

Abstract

Publication series

Other

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this