3/2023 - 4 |
Design and Implementation of an Automated Dynamic Rule System for Distributed FirewallsTUDOSI, A.-D. , GRAUR, A. , BALAN, D. G. , POTORAC, A. D. , TARABUTA, R.-C. |
Extra paper information in |
Click to see author's profile in SCOPUS, IEEE Xplore, Web of Science |
Download PDF (695 KB) | Citation | Downloads: 624 | Views: 1,277 |
Author keywords
application programming interfaces, communication system security, computer network management, firewalls, platform virtualization
References keywords
link(7), firewall(7), network(6), firewalls(6), distributed(6), intelligent(4), architecture(4), application(4)
Blue keywords are present in both the references section and the paper title.
About this article
Date of Publication: 2023-08-31
Volume 23, Issue 3, Year 2023, On page(s): 29 - 38
ISSN: 1582-7445, e-ISSN: 1844-7600
Digital Object Identifier: 10.4316/AECE.2023.03004
Web of Science Accession Number: 001062641900004
SCOPUS ID: 85172371749
Abstract
Zero-day vulnerabilities are undisclosed security flaws exploited by attackers to gain unauthorized access to vulnerable systems. Firewalls and antivirus software are essential for preventing intrusions. While firewalls monitor network traffic to prevent unauthorized access, they may struggle to filter all incoming traffic due to attacker-generated anomalies. We present a novel approach to automate the generation of dynamic firewall rules, aiming to address this challenge through the utilization of a custom software solution in conjunction with a suitable programming language. This approach autonomously maintains and updates firewall rules, bolstering network security and streamlining the identification and mitigation of zero-day vulnerabilities. We evaluated the approach on a simulated network, demonstrating its efficacy in detecting and preventing unauthorized access through zero-day attacks. Our automated method for dynamic firewall rule creation offers an efficient means to address zero-day vulnerabilities. It empowers businesses to safeguard against cyberattacks and protect sensitive data. With adaptability to changing network requirements, it is valuable for organizations of different scales. In conclusion, our proposed automated approach for dynamic firewall rule generation provides a scientifically validated solution to address zero-day vulnerabilities. It enhances security measures, defends against emerging threats, and enables businesses to protect their systems and data effectively. |
References | | | Cited By «-- Click to see who has cited this paper |
[1] IBM, "Cost of a data breach 2022," 2022. [Online] Available: Temporary on-line reference link removed - see the PDF document
[2] J. Liang and Y. Kim, "Evolution of firewalls: Toward securer network using next generation firewall," in 2022 IEEE 12th Annual Computing and Communication Workshop and Conference (CCWC), IEEE, Jan. 2022, pp. 0752-0759. [CrossRef] [Web of Science Times Cited 12] [SCOPUS Times Cited 20] [3] H. J. Kiratsata, D. P. Raval, P. K. Viras, P. Lalwani, H. Patel, and P. S. D., "Behaviour analysis of open-source firewalls under security crisis," in 2022 International Conference on Wireless Communications Signal Processing and Networking (WiSPNET), IEEE, Mar. 2022, pp. 105-109. [CrossRef] [SCOPUS Times Cited 5] [4] Fortinet, "What is a zero day vulnerability or exploit?," 2022. [Online] Available: Temporary on-line reference link removed - see the PDF document [5] P. Kumari and A. K. Jain, "A comprehensive study of DDoS attacks over IoT network and their countermeasures," Comput. Secur., vol. 127, p. 103096, Apr. 2023. [CrossRef] [Web of Science Times Cited 58] [SCOPUS Times Cited 92] [6] A.-D. Tudosi, D. G. Balan, and A. D. Potorac, "Secure network architecture based on distributed firewalls," in 2022 International Conference on Development and Application Systems (DAS), IEEE, May 2022, pp. 85-90. [CrossRef] [SCOPUS Times Cited 8] [7] A. Bouhoula and Z. Trabelsi, "Handling anomalies in distributed firewalls," in 2006 Innovations in Information Technology, IEEE, Nov. 2006, pp. 1-5. [CrossRef] [SCOPUS Times Cited 3] [8] A. Tiwari, S. Papini, and V. Hemamalini, "An enhanced optimization of parallel firewalls filtering rules for scalable high-speed networks," Mater Today Proc, vol. 62, pp. 4800-4805, 2022. [CrossRef] [Web of Science Times Cited 1] [SCOPUS Times Cited 2] [9] E. P. da Costa Junior, S. T. Medeiros, C. E. da Silva, and M. Madruga, "An Architecture for Self-adaptive Distributed Firewall," in Anais do XVI Simposio Brasileiro de Seguranca da Informacao e de Sistemas Computacionais (SBSeg 2016), Sociedade Brasileira de Computacao - SBC, Nov. 2016, pp. 338-351. [CrossRef] [10] C. A. Teodorescu, "Perspectives and reviews in the development and evolution of the zero-day attacks," Informatica Economica, vol. 26, no. 2/2022, pp. 46-56, Jun. 2022. [CrossRef] [11] P. Cisar, B. Popovic, K. Kuk, S. M. Cisar, and I. Vukovic, "Machine learning aspects of internet firewall data," 2022, pp. 43-59. [CrossRef] [Web of Science Times Cited 1] [SCOPUS Times Cited 2] [12] "Check Point Research Reports a 38% Increase in 2022 Global Cyberattacks," 2023. [Online] Available: Temporary on-line reference link removed - see the PDF document [13] F. Al-Haidari, M. Sqalli, K. Salah, and J. Hamodi, "An entropy-based countermeasure against intelligent dos attacks targeting firewalls," in Proceedings - 2009 IEEE International Symposium on Policies for Distributed Systems and Networks, POLICY 2009, 2009, pp. 41-44. [CrossRef] [Web of Science Times Cited 3] [SCOPUS Times Cited 12] [14] J. Thames and R. Abler, "Implementing distributed internet security using a firewall collaboration framework," in Proceedings 2007 IEEE SoutheastCon, IEEE, 2007, pp. 680-685. [CrossRef] [Web of Science Times Cited 2] [SCOPUS Times Cited 4] [15] N. V Sharma, Kavita, G. Aggarwal, and S. Sharma, "Performance study of snort and suricata for intrusion detection system," IOP Conf Ser Mater Sci Eng, vol. 1099, no. 1, p. 012009, Mar. 2021. [CrossRef] [16] Netgate, "pfSense - World's Most Trusted Open Source Firewall," 2022. [Online] Available: Temporary on-line reference link removed - see the PDF document [17] V. Asghari, S. Amiri, and S. Amiri, "Implementing UTM based on PfSense platform," in 2015 2nd International Conference on Knowledge-Based Engineering and Innovation (KBEI), IEEE, Nov. 2015, pp. 1150-1152. [CrossRef] [SCOPUS Times Cited 1] [18] J. Hendrickson, "pfSense-API," 2022. [Online] Available: Temporary on-line reference link removed - see the PDF document [19] J. Li, D. He, F. Liu, and H. Wang, "The application of regex in advertisements filtration and performance analysis," in 2016 8th International Conference on Intelligent Human-Machine Systems and Cybernetics (IHMSC), IEEE, Aug. 2016, pp. 28-32. [CrossRef] [Web of Science Times Cited 3] [SCOPUS Times Cited 4] [20] A. Dhanapal and P. Nithyanandam, "An effective mechanism to regenerate HTTP flooding DDoS attack using real time data set," in 2017 International Conference on Intelligent Computing, Instrumentation and Control Technologies (ICICICT), IEEE, Jul. 2017, pp. 570-575. [CrossRef] [SCOPUS Times Cited 18] [21] U. Khamdamov, K. Sultanov, D. Sultanov, and A. Abdullayev, "Designing client-server and service oriented architecture of the distance learning system," in 2020 International Conference on Information Science and Communications Technologies (ICISCT), IEEE, Nov. 2020, pp. 1-4. [CrossRef] [SCOPUS Times Cited 1] [22] A. Tudosi, "Firewall log analyzer," Jun. 14, 2023. [Online] Available: Temporary on-line reference link removed - see the PDF document [23] I. Ahmad, E. Suwarni, R. I. Borman, Asmawati, F. Rossi, and Y. Jusman, "Implementation of RESTful API web services architecture in takeaway application development," in 2021 1st International Conference on Electronic and Electrical Engineering and Intelligent System (ICE3IS), IEEE, Oct. 2021, pp. 132-137. [CrossRef] [Web of Science Times Cited 2] [SCOPUS Times Cited 7] [24] A.-D. Tudosi, A. Graur, D. G. Balan, and A. D. Potorac, "Network congestion solution for FTP services based on distributed firewall and snort," in 2022 21st RoEduNet Conference: Networking in Education and Research (RoEduNet), IEEE, Sep. 2022, pp. 1-4. [CrossRef] [SCOPUS Times Cited 2] [25] "LOIC - A network stress testing application," 2009. [Online] Available: Temporary on-line reference link removed - see the PDF document [26] K. Fotiadou, T.-H. Velivassaki, A. Voulkidis, D. Skias, S. Tsekeridou, and T. Zahariadis, "Network traffic anomaly detection via deep learning," Information, vol. 12, no. 5, p. 215, May 2021, [CrossRef] [Web of Science Times Cited 21] [SCOPUS Times Cited 44] Web of Science® Citations for all references: 103 TCR SCOPUS® Citations for all references: 225 TCR Web of Science® Average Citations per reference: 4 ACR SCOPUS® Average Citations per reference: 8 ACR TCR = Total Citations for References / ACR = Average Citations per Reference We introduced in 2010 - for the first time in scientific publishing, the term "References Weight", as a quantitative indication of the quality ... Read more Citations for references updated on 2024-11-20 09:27 in 129 seconds. Note1: Web of Science® is a registered trademark of Clarivate Analytics. Note2: SCOPUS® is a registered trademark of Elsevier B.V. Disclaimer: All queries to the respective databases were made by using the DOI record of every reference (where available). Due to technical problems beyond our control, the information is not always accurate. Please use the CrossRef link to visit the respective publisher site. |
Faculty of Electrical Engineering and Computer Science
Stefan cel Mare University of Suceava, Romania
All rights reserved: Advances in Electrical and Computer Engineering is a registered trademark of the Stefan cel Mare University of Suceava. No part of this publication may be reproduced, stored in a retrieval system, photocopied, recorded or archived, without the written permission from the Editor. When authors submit their papers for publication, they agree that the copyright for their article be transferred to the Faculty of Electrical Engineering and Computer Science, Stefan cel Mare University of Suceava, Romania, if and only if the articles are accepted for publication. The copyright covers the exclusive rights to reproduce and distribute the article, including reprints and translations.
Permission for other use: The copyright owner's consent does not extend to copying for general distribution, for promotion, for creating new works, or for resale. Specific written permission must be obtained from the Editor for such copying. Direct linking to files hosted on this website is strictly prohibited.
Disclaimer: Whilst every effort is made by the publishers and editorial board to see that no inaccurate or misleading data, opinions or statements appear in this journal, they wish to make it clear that all information and opinions formulated in the articles, as well as linguistic accuracy, are the sole responsibility of the author.