高级防火墙规则匹配算法

2018 IEEE International Conference on Service Operations and Logistics, and Informatics (SOLI) Pub Date : 2018-07-01 DOI:10.1109/SOLI.2018.8476719

Elvira Febiani, Huaqun Guo, W. Goh

{"title":"高级防火墙规则匹配算法","authors":"Elvira Febiani, Huaqun Guo, W. Goh","doi":"10.1109/SOLI.2018.8476719","DOIUrl":null,"url":null,"abstract":"The importance of internal network security has been on the rise due to the demand of businesses in organizations that deal complicated device connections in SCADA networks. Ideally, the firewall rule searching speed must be as effective as O(1) time complexity, to filter all network traffic regardless of the number of fields filtered and the number of firewall rules. This paper proposes an advanced firewall rules matching algorithm with designed hash table function. The proposed firewall rule matching algorithm based on our designed hash table function is able to achieve far better speed than other search algorithms. Additionally, our hash table-based algorithm shows a constant execution time regardless the number of firewall rules.","PeriodicalId":424115,"journal":{"name":"2018 IEEE International Conference on Service Operations and Logistics, and Informatics (SOLI)","volume":"98 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-07-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"An Advanced Firewall Rule Matching Algorithm\",\"authors\":\"Elvira Febiani, Huaqun Guo, W. Goh\",\"doi\":\"10.1109/SOLI.2018.8476719\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The importance of internal network security has been on the rise due to the demand of businesses in organizations that deal complicated device connections in SCADA networks. Ideally, the firewall rule searching speed must be as effective as O(1) time complexity, to filter all network traffic regardless of the number of fields filtered and the number of firewall rules. This paper proposes an advanced firewall rules matching algorithm with designed hash table function. The proposed firewall rule matching algorithm based on our designed hash table function is able to achieve far better speed than other search algorithms. Additionally, our hash table-based algorithm shows a constant execution time regardless the number of firewall rules.\",\"PeriodicalId\":424115,\"journal\":{\"name\":\"2018 IEEE International Conference on Service Operations and Logistics, and Informatics (SOLI)\",\"volume\":\"98 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2018-07-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2018 IEEE International Conference on Service Operations and Logistics, and Informatics (SOLI)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SOLI.2018.8476719\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2018 IEEE International Conference on Service Operations and Logistics, and Informatics (SOLI)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SOLI.2018.8476719","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

摘要

由于在SCADA网络中处理复杂设备连接的组织中的业务需求，内部网络安全的重要性一直在上升。理想情况下，防火墙规则搜索速度必须等于0(1)时间复杂度，以过滤所有网络流量，而不管过滤的字段数量和防火墙规则的数量。本文提出了一种基于设计的哈希表函数的高级防火墙规则匹配算法。基于我们设计的哈希表函数的防火墙规则匹配算法能够达到比其他搜索算法更好的速度。此外，我们基于散列表的算法显示，无论防火墙规则的数量如何，执行时间都是恒定的。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

An Advanced Firewall Rule Matching Algorithm

The importance of internal network security has been on the rise due to the demand of businesses in organizations that deal complicated device connections in SCADA networks. Ideally, the firewall rule searching speed must be as effective as O(1) time complexity, to filter all network traffic regardless of the number of fields filtered and the number of firewall rules. This paper proposes an advanced firewall rules matching algorithm with designed hash table function. The proposed firewall rule matching algorithm based on our designed hash table function is able to achieve far better speed than other search algorithms. Additionally, our hash table-based algorithm shows a constant execution time regardless the number of firewall rules.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2018 IEEE International Conference on Service Operations and Logistics, and Informatics (SOLI)

自引率

0.00%

发文量