Algorithms for Analysing Firewall and Router Access Lists

Details Algorithms for Analysing Firewall and Router Access Lists Algorithms for Analysing Firewall and Router Access Lists

2000-08-09

arxiv.org/abs/cs/0008006v1

Computer Science

Networking and Internet Architecture

12 pages; revised and shortened version appeared in Workshop on Dependable IP Systems and Platforms, In Proc ICDSN, June 2000

Scientific paper

Network firewalls and routers use a rule database to decide which packets will be allowed from one network onto another. By filtering packets the firewalls and routers can improve security and performance. However, as the size of the rule list increases, it becomes difficult to maintain and validate the rules, and lookup latency may increase significantly. Ordered binary decision diagrams (BDDs) - a compact method of representing and manipulating boolean expressions - are a potential method of representing the rules. This paper presents a new algorithm for representing such lists as a BDD and then shows how the resulting boolean expression can be used to analyse rule sets.

Affiliated with

Also associated with

No associations

Rating

Algorithms for Analysing Firewall and Router Access Lists does not yet have a rating. At this time, there are no reviews or comments for this scientific paper.

If you have personal experience with Algorithms for Analysing Firewall and Router Access Lists, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Algorithms for Analysing Firewall and Router Access Lists will most certainly appreciate the feedback.

Rate now

Comments { 0 }

Profile ID: LFWR-SCP-O-524143