摘要
提出一种基于统计分析和规则冲突检测的防火墙优化方法,从防火墙规则的匹配概率入手,结合规则间的冲突检测,实现防火墙规则的精简和线型匹配优化。实验表明,该方法在一般情况下能对防火墙已有的规则进行精简,使其平均规则匹配次数减少40%,性能得到较大的提高。
This paper proposes a firewall-optimization method based on statistics analysis and anomaly detection. This method starts from the firewall rules matching probability, combines with anomaly detection, simplifies and optimizes the firewall rules. Experiments show that in ordinary circumstances, this method can simplify the firewall rules, and reduce the average number of rule comparisons required for firewall by 40%, greatly improving the performance.
出处
《计算机工程》
CAS
CSCD
北大核心
2008年第15期129-131,共3页
Computer Engineering
基金
国家"863"计划基金资助项目"信息安全增值服务平台"(2005AA145110)
上海浦东科技创新公共服务平台基金资助项目"上海信息安全公共服务平台"(PDPT2005-04)
关键词
防火墙规则匹配
统计分析
规则冲突检测
平均规则匹配次数
firewall rules matching
statistic analysis
rule anomaly detection
average number of rules matching