Call for Paper - January 2023 Edition
IJCA solicits original research papers for the January 2023 Edition. Last date of manuscript submission is December 20, 2022. Read More

Firewall Anomaly Management: A survey

Print
PDF
International Journal of Computer Applications
© 2014 by IJCA Journal
Volume 105 - Number 18
Year of Publication: 2014
Authors:
Ameya Hanamsagar
Ninad Jane
Bhagyashree Borate
Aditi Wasvand
S. A. Darade
10.5120/18474-9363

Ameya Hanamsagar, Ninad Jane, Bhagyashree Borate, Aditi Wasvand and S a Darade. Article: Firewall Anomaly Management: A survey. International Journal of Computer Applications 105(18):1-5, November 2014. Full text available. BibTeX

@article{key:article,
	author = {Ameya Hanamsagar and Ninad Jane and Bhagyashree Borate and Aditi Wasvand and S.a. Darade},
	title = {Article: Firewall Anomaly Management: A survey},
	journal = {International Journal of Computer Applications},
	year = {2014},
	volume = {105},
	number = {18},
	pages = {1-5},
	month = {November},
	note = {Full text available}
}

Abstract

Firewall secures a private network from intrusions from other networks. The firewall has ACLs (Access Control List) that contain rules used to allow or deny incoming traffic. These rules form the security policy of the firewall. The large size and complexity of modern networks result in large and complex firewall policies. Designing policies for a network of firewalls is a difficult task as a number of cases have to be taken into consideration for access control. Also, a network administrator may want to update the policies in order to replace them with new ones. The process of updating firewall policies is difficult and error prone. In this paper, we provide a structured and comprehensive overview of various techniques in regards to firewall anomaly detection. We briefly describe and compare various known algorithms and tools used to detect and/or resolve the firewall anomalies.

References

  • Sandeep Reddy Pedditi, Du Zhang, and Chung-E Wang, "FIEP: An Initial Design of A Firewall Information Exchange Protocol," IEEE 14th International Conference on Information Reuse and Integration (IRI), 2013.
  • E. Al-Shaer and H. Hamed, "Discovery of Policy Anomalies in Distributed Firewalls,"IEEE INFOCOM '04,vol. 4, 2004. pp. 2605-2616
  • L. Yuan, H. Chen, J. Mai, C. Chuah, Z. Su, P. Mohapatra, and C. Davis, "Fireman: A Toolkit for Firewall Modeling and Analysis," Proc. IEEE Symp. Security and Privacy, 2006
  • Y. Bartal, A. J. Mayer, K. Nissim, A. Wool, "Firmato: A novel firewall management toolkit," ACM Transactions on Computer Systems 22, 2004, pp. 381-420
  • Suchart Khummanee, Atipong Khumseela and Somnuk Puangpronpitag, "Towards a New Design of Firewall: Anomaly Elimination and Fast Verifying of Firewall Rules," 10th International Joint Conference on Computer Science and Software Engineering (JCSSE), 2013, pp. 93-98
  • Chi-Shih Chao, "A flexible and feasible anomaly diagnosis system for Internet firewall rules," 13th Asia-Pacific Network Operations and Management Symposium (APNOMS), 2011
  • A. X. Liu and M. G. Gouda, "Firewall policy queries," IEEE Transactions on Parallel and Distributed Systems (TPDS), 20(6), pp. 766–777, 2009
  • Hongxin Hu, Gail-Joon Ahn and Ketan Kulkarni, "Detecting and Resolving Firewall Policy Anomalies," IEEE Transactions on Dependable and Secure Computing, vol. 9, issue 3, pp. 318-331
  • Alan Jeffrey and Taghrid Samak, "Model Checking Firewall Policy Configurations," IEEE International Symposium on Policies for Distributed Systems and Networks, 2009, pp. 60-67
  • A. Mayer, A. Wool and E. Ziskind, "Offline firewall analysis," International Journal of Information Security 5 (3), 2005, pp. 125–144
  • Alex X. Liu, "Firewall policy verification and troubleshooting," The International Journal of Computer and Telecommunications Networking, Vol 53 Issue 16, 2009, pp. 2800-2809
  • A. Mayer, A. Wool, and E. Ziskind, "Fang: A Firewall Analysis Engine," Proc. IEEE Symp. Security and Privacy, pp. 177-189, 2000.
  • Cisco ASA Series Firewall ASDM Configuration Guide, Cisco Systems Inc. , updated March 31, 2014
  • A. X. Liu, "Formal Verification of Firewall Policies," IEEE International Conference in Communications, 2008, pp. 1494 - 1498.
  • S. R. Pedditi, "An initial design of firewall information exchange protocol (FIEP)," MS Degree Project Report, Department of Computer Science, California State University, Sacramento, May 2012.
  • Keromytis, A. D. and Prevelakis, V. , "Designing Firewalls: A survey", in C. Douligeris and D. N. Serpanos, "In Network Security: Current Status and Future Directions", Wiley - IEEE Press, 2007
  • Cisco Security Appliance Command Line Configuration Guide, Cisco Systems Inc. , 2009
  • Juniper Netscreen Series Security Systems, Juniper Networks Inc. , Dec 2011
  • Check Point Threat Prevention Appliances, Check Point Software Technologies, Ltd. , 2012.