XML based open tool for anomalies detection in firewall filtering rules

Mohamed Anis Benelbahri, Adel Bouhoula, Zouheir Trabelsi

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Citation (Scopus)

Abstract

In our days, firewalls are widely deployed to secure both hosts and networks against attacks and unwanted data flows. They control incoming and outgoing packets based on filtering rules' lists which reflect the desired security policy. Therefore, filtering rules must be coherent, well edited and free from anomalies and mainly on the case of distributed firewalls. Many approaches, consequently, are developed to analyze access lists and validate them. In addition, many dedicated languages are used by constructors on the implementation of their firewalls. That's why; we present, in our paper, an open tool which translates all filtering rules languages to a unified representation using XML. Then, we extract their fields from the XML file and analyze them by applying the appropriate algorithm. We have implemented this tool and the first tests show its efficiency.

Original languageEnglish
Title of host publicationInnovations'07
Subtitle of host publication4th International Conference on Innovations in Information Technology, IIT
PublisherIEEE Computer Society
Pages163-167
Number of pages5
ISBN (Print)9781424418411
DOIs
Publication statusPublished - 2007
EventInnovations'07: 4th International Conference on Innovations in Information Technology, IIT - Dubai, United Arab Emirates
Duration: Nov 18 2007Nov 20 2007

Publication series

NameInnovations'07: 4th International Conference on Innovations in Information Technology, IIT

Other

OtherInnovations'07: 4th International Conference on Innovations in Information Technology, IIT
Country/TerritoryUnited Arab Emirates
CityDubai
Period11/18/0711/20/07

Keywords

  • Anomalies
  • Distributed firewalls
  • Security policy
  • XML

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Computer Science Applications
  • Information Systems

Fingerprint

Dive into the research topics of 'XML based open tool for anomalies detection in firewall filtering rules'. Together they form a unique fingerprint.

Cite this