• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>International Conference on Computing and Information Technology >The Semantics Loss Tracker of Firewall Rules
【24h】

The Semantics Loss Tracker of Firewall Rules

机译:防火墙规则的语义丢失跟踪器

获取原文
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Frequently, firewall rules are overlapped and duplicated. The problems are usually resolved by merging rules. However, sometimes merged rules lead to the semantics loss. This paper proposed the tracker system for analyzing and alerting the semantics loss of firewall rules while they are being merged, namely SELTracker. SELTracker data structure is built from the Path Selection Tree (PST). PST does only keep all anomaly rules but also maintain normal rules. While firewall rules are being merged, SELTracker analyzes merging rules against PST. Based on the testing results, the proposed system has the ability to effectively detect the semantics loss. Moreover, SELTracker can also detect all other anomalies.
机译:通常,防火墙规则重叠并重复。通常通过合并规则来解决这些问题。但是,有时合并规则导致语义丢失。本文提出了用于分析和警告防火墙规则的语义丢失的跟踪系统,即Seltracker。 Seltracker数据结构是从路径选择树(PST)构建的。 PST只保留所有异常规则,还保持正常规则。虽然防火墙规则正在合并,Seltracker分析了PST的合并规则。基于测试结果,所提出的系统能够有效地检测语义损失。此外,Seltracker还可以检测到所有其他异常。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号