TY - JOUR
T1 - A bit vector-based diagnosis mechanism for firewall rule anomalies in IPv6 networking environment
AU - Chao, Chi Shih
AU - Yang, Stephen J.H.
N1 - Publisher Copyright:
© 2021 Taiwan Academic Network Management Committee. All rights reserved.
PY - 2021
Y1 - 2021
N2 - Firewalls are what some consider to be the most essential devices which can safeguard networks. Misconfigurations of firewall rules often lead to rule anomalies which can be easily used by network attacks to paralyze the managed network. However, finding such rule anomalies is no easy task due to its time-consuming, laboring, strenuous characteristics. What’s worse is, with the massive and increasing deployment of IPv6 in the current Internet, anomaly diagnosis for firewall rules becomes even harder. In this paper, a bit vector-based anomaly diagnosis approach is proposed and realized where it can pinpoint anomalies among IPv6 firewall rules not only effectively, but also much more efficiently and more easily. As a result, a visualized platform for our IPv6 firewall rule anomaly diagnosis has been implemented and comprehensive performance evaluations on anomaly diagnosis have been conducted also, in which our developed approach shows its excellence and feasibility.
AB - Firewalls are what some consider to be the most essential devices which can safeguard networks. Misconfigurations of firewall rules often lead to rule anomalies which can be easily used by network attacks to paralyze the managed network. However, finding such rule anomalies is no easy task due to its time-consuming, laboring, strenuous characteristics. What’s worse is, with the massive and increasing deployment of IPv6 in the current Internet, anomaly diagnosis for firewall rules becomes even harder. In this paper, a bit vector-based anomaly diagnosis approach is proposed and realized where it can pinpoint anomalies among IPv6 firewall rules not only effectively, but also much more efficiently and more easily. As a result, a visualized platform for our IPv6 firewall rule anomaly diagnosis has been implemented and comprehensive performance evaluations on anomaly diagnosis have been conducted also, in which our developed approach shows its excellence and feasibility.
KW - BST-based vectorization
KW - Diagnosis visualization
KW - Rule anomalies in IPv6 firewalls
KW - Rule anomaly diagnosis
KW - System usability
UR - http://www.scopus.com/inward/record.url?scp=85113751505&partnerID=8YFLogxK
U2 - 10.53106/160792642021072204014
DO - 10.53106/160792642021072204014
M3 - 期刊論文
AN - SCOPUS:85113751505
SN - 1607-9264
VL - 22
SP - 867
EP - 876
JO - Journal of Internet Technology
JF - Journal of Internet Technology
IS - 4
ER -