Simulation study of firewalls to aid improved performance

The overall performance of a firewall is crucial in enforcing and administrating security, especially when the network is under attack. The continuous growth of the Internet, coupled with the increasing sophistication of the attacks, is placing stringent demands on firewall performance. Under such c...

Full description

Saved in:
Bibliographic Details
Main Authors: Acharya, S., Jia Wang, Zihui Ge, Znati, T., Greenberg, A.
Format: Conference Proceeding
Language:English
Subjects:
Analytical models
Communication system traffic control
Computational modeling
Computer science
Computer security
Information analysis
Information security
Internet
Telecommunication traffic
Traffic control
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
cited_by
cites
container_end_page 26
container_issue
container_start_page 8 pp.
container_title
container_volume
creator Acharya, S.
Jia Wang
Zihui Ge
Znati, T.
Greenberg, A.
description The overall performance of a firewall is crucial in enforcing and administrating security, especially when the network is under attack. The continuous growth of the Internet, coupled with the increasing sophistication of the attacks, is placing stringent demands on firewall performance. Under such circumstances it becomes very vital to understand the fundamental behind firewalls and their operation. In this paper, we describe a simulation framework for the study and analysis of firewalls. Based on this framework, we design methodologies to inspect and analyze both multi-dimensional firewall rules and traffic logs information. The data used for this study was collected over a large set of firewall rules and traffic logs at tens of enterprise networks managed by a Tier-1 service provider. The analysis presented in the paper firmly state the importance of considering traffic information in the process of firewall optimization. To the best of our knowledge, ours is the first attempt to show the relevance of considering traffic characteristics to aid firewall optimization.
doi_str_mv 10.1109/ANSS.2006.42
format conference_proceeding
fullrecord <record><control><sourceid>proquest_6IE</sourceid><recordid>TN_cdi_proquest_miscellaneous_31558248</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><ieee_id>1612840</ieee_id><sourcerecordid>31558248</sourcerecordid><originalsourceid>FETCH-LOGICAL-i206t-5eb4a048985bdd3cb921c09424769eb836488f1272713a0c15be0c94cdfe9fcc3</originalsourceid><addsrcrecordid>eNotjjtrwzAURkUf0DTN1q2Lpm5O79XDlsYQ-oLQDmkhm5HlK1Cx49SyW_Lva0i_5VsOh8PYLcISEezD6m27XQqAfKnEGZsJKTFDKHbn7BqK3GqhtTUXbIZgIBMKd1dskdIXTFMai1zPmN3GdmzcELs9T8NYH3kXeIg9_bqmSXzouIs1j-2h736o5gfqQ9e3bu_phl0G1yRa_P-cfT49fqxfss378-t6tcmigHzINFXKgTLW6Kqupa-sQA9WCTUVUmVkrowJKApRoHTgUVcE3ipfB7LBezln9yfvlPA9UhrKNiZPTeP21I2plKi1EcpM4N0JjERUHvrYuv5YYo7CKJB_rGFVrA</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>conference_proceeding</recordtype><pqid>31558248</pqid></control><display><type>conference_proceeding</type><title>Simulation study of firewalls to aid improved performance</title><source>IEEE Electronic Library (IEL) Conference Proceedings</source><creator>Acharya, S. ; Jia Wang ; Zihui Ge ; Znati, T. ; Greenberg, A.</creator><creatorcontrib>Acharya, S. ; Jia Wang ; Zihui Ge ; Znati, T. ; Greenberg, A.</creatorcontrib><description>The overall performance of a firewall is crucial in enforcing and administrating security, especially when the network is under attack. The continuous growth of the Internet, coupled with the increasing sophistication of the attacks, is placing stringent demands on firewall performance. Under such circumstances it becomes very vital to understand the fundamental behind firewalls and their operation. In this paper, we describe a simulation framework for the study and analysis of firewalls. Based on this framework, we design methodologies to inspect and analyze both multi-dimensional firewall rules and traffic logs information. The data used for this study was collected over a large set of firewall rules and traffic logs at tens of enterprise networks managed by a Tier-1 service provider. The analysis presented in the paper firmly state the importance of considering traffic information in the process of firewall optimization. To the best of our knowledge, ours is the first attempt to show the relevance of considering traffic characteristics to aid firewall optimization.</description><identifier>ISSN: 1080-241X</identifier><identifier>ISBN: 0769525598</identifier><identifier>ISBN: 9780769525594</identifier><identifier>EISSN: 2331-107X</identifier><identifier>DOI: 10.1109/ANSS.2006.42</identifier><language>eng</language><publisher>IEEE</publisher><subject>Analytical models ; Communication system traffic control ; Computational modeling ; Computer science ; Computer security ; Information analysis ; Information security ; Internet ; Telecommunication traffic ; Traffic control</subject><ispartof>39th Annual Simulation Symposium (ANSS'06), 2006, p.8 pp.-26</ispartof><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://ieeexplore.ieee.org/document/1612840$$EHTML$$P50$$Gieee$$H</linktohtml><link.rule.ids>309,310,780,784,789,790,2056,4048,4049,27924,54554,54919,54931</link.rule.ids><linktorsrc>$$Uhttps://ieeexplore.ieee.org/document/1612840$$EView_record_in_IEEE$$FView_record_in_$$GIEEE</linktorsrc></links><search><creatorcontrib>Acharya, S.</creatorcontrib><creatorcontrib>Jia Wang</creatorcontrib><creatorcontrib>Zihui Ge</creatorcontrib><creatorcontrib>Znati, T.</creatorcontrib><creatorcontrib>Greenberg, A.</creatorcontrib><title>Simulation study of firewalls to aid improved performance</title><title>39th Annual Simulation Symposium (ANSS'06)</title><addtitle>SIMSYM</addtitle><description>The overall performance of a firewall is crucial in enforcing and administrating security, especially when the network is under attack. The continuous growth of the Internet, coupled with the increasing sophistication of the attacks, is placing stringent demands on firewall performance. Under such circumstances it becomes very vital to understand the fundamental behind firewalls and their operation. In this paper, we describe a simulation framework for the study and analysis of firewalls. Based on this framework, we design methodologies to inspect and analyze both multi-dimensional firewall rules and traffic logs information. The data used for this study was collected over a large set of firewall rules and traffic logs at tens of enterprise networks managed by a Tier-1 service provider. The analysis presented in the paper firmly state the importance of considering traffic information in the process of firewall optimization. To the best of our knowledge, ours is the first attempt to show the relevance of considering traffic characteristics to aid firewall optimization.</description><subject>Analytical models</subject><subject>Communication system traffic control</subject><subject>Computational modeling</subject><subject>Computer science</subject><subject>Computer security</subject><subject>Information analysis</subject><subject>Information security</subject><subject>Internet</subject><subject>Telecommunication traffic</subject><subject>Traffic control</subject><issn>1080-241X</issn><issn>2331-107X</issn><isbn>0769525598</isbn><isbn>9780769525594</isbn><fulltext>true</fulltext><rsrctype>conference_proceeding</rsrctype><creationdate>2006</creationdate><recordtype>conference_proceeding</recordtype><sourceid>6IE</sourceid><recordid>eNotjjtrwzAURkUf0DTN1q2Lpm5O79XDlsYQ-oLQDmkhm5HlK1Cx49SyW_Lva0i_5VsOh8PYLcISEezD6m27XQqAfKnEGZsJKTFDKHbn7BqK3GqhtTUXbIZgIBMKd1dskdIXTFMai1zPmN3GdmzcELs9T8NYH3kXeIg9_bqmSXzouIs1j-2h736o5gfqQ9e3bu_phl0G1yRa_P-cfT49fqxfss378-t6tcmigHzINFXKgTLW6Kqupa-sQA9WCTUVUmVkrowJKApRoHTgUVcE3ipfB7LBezln9yfvlPA9UhrKNiZPTeP21I2plKi1EcpM4N0JjERUHvrYuv5YYo7CKJB_rGFVrA</recordid><startdate>2006</startdate><enddate>2006</enddate><creator>Acharya, S.</creator><creator>Jia Wang</creator><creator>Zihui Ge</creator><creator>Znati, T.</creator><creator>Greenberg, A.</creator><general>IEEE</general><scope>6IE</scope><scope>6IL</scope><scope>CBEJK</scope><scope>RIE</scope><scope>RIL</scope><scope>7SC</scope><scope>8FD</scope><scope>JQ2</scope><scope>L7M</scope><scope>L~C</scope><scope>L~D</scope></search><sort><creationdate>2006</creationdate><title>Simulation study of firewalls to aid improved performance</title><author>Acharya, S. ; Jia Wang ; Zihui Ge ; Znati, T. ; Greenberg, A.</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-i206t-5eb4a048985bdd3cb921c09424769eb836488f1272713a0c15be0c94cdfe9fcc3</frbrgroupid><rsrctype>conference_proceedings</rsrctype><prefilter>conference_proceedings</prefilter><language>eng</language><creationdate>2006</creationdate><topic>Analytical models</topic><topic>Communication system traffic control</topic><topic>Computational modeling</topic><topic>Computer science</topic><topic>Computer security</topic><topic>Information analysis</topic><topic>Information security</topic><topic>Internet</topic><topic>Telecommunication traffic</topic><topic>Traffic control</topic><toplevel>online_resources</toplevel><creatorcontrib>Acharya, S.</creatorcontrib><creatorcontrib>Jia Wang</creatorcontrib><creatorcontrib>Zihui Ge</creatorcontrib><creatorcontrib>Znati, T.</creatorcontrib><creatorcontrib>Greenberg, A.</creatorcontrib><collection>IEEE Electronic Library (IEL) Conference Proceedings</collection><collection>IEEE Proceedings Order Plan All Online (POP All Online) 1998-present by volume</collection><collection>IEEE Xplore All Conference Proceedings</collection><collection>IEEE Electronic Library (IEL)</collection><collection>IEEE Proceedings Order Plans (POP All) 1998-Present</collection><collection>Computer and Information Systems Abstracts</collection><collection>Technology Research Database</collection><collection>ProQuest Computer Science Collection</collection><collection>Advanced Technologies Database with Aerospace</collection><collection>Computer and Information Systems Abstracts – Academic</collection><collection>Computer and Information Systems Abstracts Professional</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Acharya, S.</au><au>Jia Wang</au><au>Zihui Ge</au><au>Znati, T.</au><au>Greenberg, A.</au><format>book</format><genre>proceeding</genre><ristype>CONF</ristype><atitle>Simulation study of firewalls to aid improved performance</atitle><btitle>39th Annual Simulation Symposium (ANSS'06)</btitle><stitle>SIMSYM</stitle><date>2006</date><risdate>2006</risdate><spage>8 pp.</spage><epage>26</epage><pages>8 pp.-26</pages><issn>1080-241X</issn><eissn>2331-107X</eissn><isbn>0769525598</isbn><isbn>9780769525594</isbn><abstract>The overall performance of a firewall is crucial in enforcing and administrating security, especially when the network is under attack. The continuous growth of the Internet, coupled with the increasing sophistication of the attacks, is placing stringent demands on firewall performance. Under such circumstances it becomes very vital to understand the fundamental behind firewalls and their operation. In this paper, we describe a simulation framework for the study and analysis of firewalls. Based on this framework, we design methodologies to inspect and analyze both multi-dimensional firewall rules and traffic logs information. The data used for this study was collected over a large set of firewall rules and traffic logs at tens of enterprise networks managed by a Tier-1 service provider. The analysis presented in the paper firmly state the importance of considering traffic information in the process of firewall optimization. To the best of our knowledge, ours is the first attempt to show the relevance of considering traffic characteristics to aid firewall optimization.</abstract><pub>IEEE</pub><doi>10.1109/ANSS.2006.42</doi><tpages>9</tpages></addata></record>
fulltext fulltext_linktorsrc
identifier ISSN: 1080-241X
ispartof 39th Annual Simulation Symposium (ANSS'06), 2006, p.8 pp.-26
issn 1080-241X
2331-107X
language eng
recordid cdi_proquest_miscellaneous_31558248
source IEEE Electronic Library (IEL) Conference Proceedings
subjects Analytical models
Communication system traffic control
Computational modeling
Computer science
Computer security
Information analysis
Information security
Internet
Telecommunication traffic
Traffic control
title Simulation study of firewalls to aid improved performance
url http://sfxeu10.hosted.exlibrisgroup.com/loughborough?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-12T15%3A14%3A27IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_6IE&rft_val_fmt=info:ofi/fmt:kev:mtx:book&rft.genre=proceeding&rft.atitle=Simulation%20study%20of%20firewalls%20to%20aid%20improved%20performance&rft.btitle=39th%20Annual%20Simulation%20Symposium%20(ANSS'06)&rft.au=Acharya,%20S.&rft.date=2006&rft.spage=8%20pp.&rft.epage=26&rft.pages=8%20pp.-26&rft.issn=1080-241X&rft.eissn=2331-107X&rft.isbn=0769525598&rft.isbn_list=9780769525594&rft_id=info:doi/10.1109/ANSS.2006.42&rft_dat=%3Cproquest_6IE%3E31558248%3C/proquest_6IE%3E%3Cgrp_id%3Ecdi_FETCH-LOGICAL-i206t-5eb4a048985bdd3cb921c09424769eb836488f1272713a0c15be0c94cdfe9fcc3%3C/grp_id%3E%3Coa%3E%3C/oa%3E%3Curl%3E%3C/url%3E&rft_id=info:oai/&rft_pqid=31558248&rft_id=info:pmid/&rft_ieee_id=1612840&rfr_iscdi=true