A Firewall Policy Anomaly Detection Framework for Reliable Network Security
| dc.authorid | 0000-0003-2707-6075 | en_US |
| dc.contributor.author | Togay, Cengiz | |
| dc.contributor.author | Kaşif, Ahmet | |
| dc.contributor.author | Catal, Cagatay | |
| dc.contributor.author | Tekinerdogan, Bedir | |
| dc.date.accessioned | 2022-08-05T13:28:42Z | |
| dc.date.available | 2022-08-05T13:28:42Z | |
| dc.date.issued | 2021 | en_US |
| dc.department | BTÜ, Mühendislik ve Doğa Bilimleri Fakültesi, Bilgisayar Mühendisliği Bölümü | en_US |
| dc.description.abstract | One of the key challenges in computer networks is network security. For securing the network, various solutions have been proposed, including network security protocols and firewalls. In the case of so-called packet-filtering firewalls, policy rules are implemented to monitor changes to the network and preserve the required security level. Due to the dramatic increase of devices, however, and herewith the rapid increase of the size of the policy rules, firewall policy anomalies occur more frequently. This requires careful implementation of the policy rules to ensure cost-efficient solutions for anomaly detection to support network security. In this study, we present an anomaly detection framework for detecting intrafirewall policy anomaly rules. The framework supports the simulation of packets through the firewall ruleset for validating and enhancing the security level of the network. The framework is validated using four different types of firewall policy anomalies. Experimental results demonstrate that the framework is effective and efficient in detecting firewall policy anomalies. | en_US |
| dc.identifier.doi | 10.1109/TR.2021.3089511 | en_US |
| dc.identifier.endpage | 347 | en_US |
| dc.identifier.issn | 0018-9529 | |
| dc.identifier.issue | 1 | en_US |
| dc.identifier.scopusquality | Q1 | en_US |
| dc.identifier.startpage | 339 | en_US |
| dc.identifier.uri | https://hdl.handle.net/20.500.12885/2030 | |
| dc.identifier.volume | 71 | en_US |
| dc.identifier.wosquality | N/A | en_US |
| dc.indekslendigikaynak | Web of Science | en_US |
| dc.institutionauthor | Kaşif, Ahmet | |
| dc.language.iso | en | en_US |
| dc.publisher | IEE | en_US |
| dc.relation.ispartof | IEEE TRANSACTIONS ON RELIABILITY | en_US |
| dc.relation.publicationcategory | Makale - Uluslararası Hakemli Dergi - Kurum Öğretim Elemanı | en_US |
| dc.rights | info:eu-repo/semantics/closedAccess | en_US |
| dc.subject | Anomaly detection | en_US |
| dc.subject | Security | en_US |
| dc.subject | IP networks | en_US |
| dc.subject | Firewalls (computing) | en_US |
| dc.subject | Shadow mapping | en_US |
| dc.subject | Redundancy | en_US |
| dc.subject | Correlation | en_US |
| dc.subject | Anomaly detection | en_US |
| dc.subject | firewall policy | en_US |
| dc.subject | logic programming | en_US |
| dc.subject | network security | en_US |
| dc.subject | packet filtering | en_US |
| dc.title | A Firewall Policy Anomaly Detection Framework for Reliable Network Security | en_US |
| dc.type | Article | en_US |
Dosyalar
Lisans paketi
1 - 1 / 1
Küçük Resim Yok
- İsim:
- license.txt
- Boyut:
- 1.44 KB
- Biçim:
- Item-specific license agreed upon to submission
- Açıklama:
