IMPROVING FIREWALL PERFORMANCE BY USING A CACHE TABLE
Firewalls are the cornerstone of network security. Modern firewalls not only operate at the network layer, but also at the transport and application layers to provide maximum security. Firewalls are commonly implemented as packet filters and operated by examining the incoming packets and comparing t...
Gespeichert in:
| Veröffentlicht in: | International journal of advances in engineering and technology 2014-11, Vol.7 (5), p.1-1 |
|---|---|
| Hauptverfasser: | , , , |
| Format: | Artikel |
| Sprache: | eng |
| Schlagworte: | |
| Online-Zugang: | Volltext |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | 1 |
|---|---|
| container_issue | 5 |
| container_start_page | 1 |
| container_title | International journal of advances in engineering and technology |
| container_volume | 7 |
| creator | Ganesh, Ashwin Sudarsan, Anirudhan Vasu, Ajay Krishna Ramalingam, Dinesh |
| description | Firewalls are the cornerstone of network security. Modern firewalls not only operate at the network layer, but also at the transport and application layers to provide maximum security. Firewalls are commonly implemented as packet filters and operated by examining the incoming packets and comparing them with a set of predefined rules, called an access control list. The firewall then decides, whether to route the packet into the trusted network or to filter it. In this paper, the authors propose a method to improve firewall performance, by minimizing the average number of comparisons, required before a rule is matched to an incoming packet. The proposed method, uses a linked list data structure to cache some of the rules defined in the access control list. The proposed algorithm functions, by exploiting traffic behavior and determining which rules are matched more frequently. Such rules, are cached in the linked list, which effectively functions as a cache table. A comparison of the proposed work and the conventional static approach is also presented. |
| format | Article |
| fullrecord | <record><control><sourceid>proquest</sourceid><recordid>TN_cdi_proquest_miscellaneous_1660078720</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>3500429771</sourcerecordid><originalsourceid>FETCH-LOGICAL-p610-d0db9807198fc747c340d9a3add6228d4caf88fe06220f51a62a38d7e647ac653</originalsourceid><addsrcrecordid>eNpdjl9LwzAUxYMoOOa-Q8AXXwo3SZs_j1lJt0K3jloVn0ZsUnDUdS72-5uhD-J5OfdwflzOFZpRykhCFGfXf-5btAjhAFEcKCVqhrJys2vq53K7wkXZmBddVXhnmqJuNnqbG7x8xU-Pl1bjXOdrg1u9rMwduuntEPzi1-eoLUybr5OqXpW5rpITJ5A4cG9KgiBK9p1IRcdScMoy6xynVLq0s72UvYeYoM-I5dQy6YTnqbAdz9gcPfy8PZ3Hz8mHr_3He-j8MNijH6ewJ5wDCCkoRPT-H3oYp_MxjosUzVRKWaS-AUzGSiw</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>1625942320</pqid></control><display><type>article</type><title>IMPROVING FIREWALL PERFORMANCE BY USING A CACHE TABLE</title><source>Elektronische Zeitschriftenbibliothek - Frei zugängliche E-Journals</source><creator>Ganesh, Ashwin ; Sudarsan, Anirudhan ; Vasu, Ajay Krishna ; Ramalingam, Dinesh</creator><creatorcontrib>Ganesh, Ashwin ; Sudarsan, Anirudhan ; Vasu, Ajay Krishna ; Ramalingam, Dinesh</creatorcontrib><description>Firewalls are the cornerstone of network security. Modern firewalls not only operate at the network layer, but also at the transport and application layers to provide maximum security. Firewalls are commonly implemented as packet filters and operated by examining the incoming packets and comparing them with a set of predefined rules, called an access control list. The firewall then decides, whether to route the packet into the trusted network or to filter it. In this paper, the authors propose a method to improve firewall performance, by minimizing the average number of comparisons, required before a rule is matched to an incoming packet. The proposed method, uses a linked list data structure to cache some of the rules defined in the access control list. The proposed algorithm functions, by exploiting traffic behavior and determining which rules are matched more frequently. Such rules, are cached in the linked list, which effectively functions as a cache table. A comparison of the proposed work and the conventional static approach is also presented.</description><identifier>ISSN: 2231-1963</identifier><identifier>EISSN: 2231-1963</identifier><language>eng</language><publisher>Bareilly: I A E T Publishing Company</publisher><subject>Firewalls ; Lists ; Networks ; Performance enhancement ; Routing (telecommunications) ; Security ; Tables (data) ; Transport</subject><ispartof>International journal of advances in engineering and technology, 2014-11, Vol.7 (5), p.1-1</ispartof><rights>Copyright I A E T Publishing Company Nov 2014</rights><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><link.rule.ids>314,778,782</link.rule.ids></links><search><creatorcontrib>Ganesh, Ashwin</creatorcontrib><creatorcontrib>Sudarsan, Anirudhan</creatorcontrib><creatorcontrib>Vasu, Ajay Krishna</creatorcontrib><creatorcontrib>Ramalingam, Dinesh</creatorcontrib><title>IMPROVING FIREWALL PERFORMANCE BY USING A CACHE TABLE</title><title>International journal of advances in engineering and technology</title><description>Firewalls are the cornerstone of network security. Modern firewalls not only operate at the network layer, but also at the transport and application layers to provide maximum security. Firewalls are commonly implemented as packet filters and operated by examining the incoming packets and comparing them with a set of predefined rules, called an access control list. The firewall then decides, whether to route the packet into the trusted network or to filter it. In this paper, the authors propose a method to improve firewall performance, by minimizing the average number of comparisons, required before a rule is matched to an incoming packet. The proposed method, uses a linked list data structure to cache some of the rules defined in the access control list. The proposed algorithm functions, by exploiting traffic behavior and determining which rules are matched more frequently. Such rules, are cached in the linked list, which effectively functions as a cache table. A comparison of the proposed work and the conventional static approach is also presented.</description><subject>Firewalls</subject><subject>Lists</subject><subject>Networks</subject><subject>Performance enhancement</subject><subject>Routing (telecommunications)</subject><subject>Security</subject><subject>Tables (data)</subject><subject>Transport</subject><issn>2231-1963</issn><issn>2231-1963</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2014</creationdate><recordtype>article</recordtype><sourceid>ABUWG</sourceid><sourceid>AFKRA</sourceid><sourceid>BENPR</sourceid><sourceid>CCPQU</sourceid><sourceid>DWQXO</sourceid><recordid>eNpdjl9LwzAUxYMoOOa-Q8AXXwo3SZs_j1lJt0K3jloVn0ZsUnDUdS72-5uhD-J5OfdwflzOFZpRykhCFGfXf-5btAjhAFEcKCVqhrJys2vq53K7wkXZmBddVXhnmqJuNnqbG7x8xU-Pl1bjXOdrg1u9rMwduuntEPzi1-eoLUybr5OqXpW5rpITJ5A4cG9KgiBK9p1IRcdScMoy6xynVLq0s72UvYeYoM-I5dQy6YTnqbAdz9gcPfy8PZ3Hz8mHr_3He-j8MNijH6ewJ5wDCCkoRPT-H3oYp_MxjosUzVRKWaS-AUzGSiw</recordid><startdate>20141101</startdate><enddate>20141101</enddate><creator>Ganesh, Ashwin</creator><creator>Sudarsan, Anirudhan</creator><creator>Vasu, Ajay Krishna</creator><creator>Ramalingam, Dinesh</creator><general>I A E T Publishing Company</general><scope>7SC</scope><scope>7SP</scope><scope>7SR</scope><scope>7TB</scope><scope>7U5</scope><scope>8BQ</scope><scope>8FD</scope><scope>8FE</scope><scope>8FG</scope><scope>ABJCF</scope><scope>ABUWG</scope><scope>AFKRA</scope><scope>BENPR</scope><scope>BGLVJ</scope><scope>CCPQU</scope><scope>CWDGH</scope><scope>DWQXO</scope><scope>FR3</scope><scope>HCIFZ</scope><scope>JG9</scope><scope>JQ2</scope><scope>KR7</scope><scope>L6V</scope><scope>L7M</scope><scope>L~C</scope><scope>L~D</scope><scope>M7S</scope><scope>PQEST</scope><scope>PQQKQ</scope><scope>PQUKI</scope><scope>PRINS</scope><scope>PTHSS</scope></search><sort><creationdate>20141101</creationdate><title>IMPROVING FIREWALL PERFORMANCE BY USING A CACHE TABLE</title><author>Ganesh, Ashwin ; Sudarsan, Anirudhan ; Vasu, Ajay Krishna ; Ramalingam, Dinesh</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-p610-d0db9807198fc747c340d9a3add6228d4caf88fe06220f51a62a38d7e647ac653</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2014</creationdate><topic>Firewalls</topic><topic>Lists</topic><topic>Networks</topic><topic>Performance enhancement</topic><topic>Routing (telecommunications)</topic><topic>Security</topic><topic>Tables (data)</topic><topic>Transport</topic><toplevel>online_resources</toplevel><creatorcontrib>Ganesh, Ashwin</creatorcontrib><creatorcontrib>Sudarsan, Anirudhan</creatorcontrib><creatorcontrib>Vasu, Ajay Krishna</creatorcontrib><creatorcontrib>Ramalingam, Dinesh</creatorcontrib><collection>Computer and Information Systems Abstracts</collection><collection>Electronics & Communications Abstracts</collection><collection>Engineered Materials Abstracts</collection><collection>Mechanical & Transportation Engineering Abstracts</collection><collection>Solid State and Superconductivity Abstracts</collection><collection>METADEX</collection><collection>Technology Research Database</collection><collection>ProQuest SciTech Collection</collection><collection>ProQuest Technology Collection</collection><collection>Materials Science & Engineering Collection</collection><collection>ProQuest Central (Alumni Edition)</collection><collection>ProQuest Central UK/Ireland</collection><collection>ProQuest Central</collection><collection>Technology Collection</collection><collection>ProQuest One Community College</collection><collection>Middle East & Africa Database</collection><collection>ProQuest Central Korea</collection><collection>Engineering Research Database</collection><collection>SciTech Premium Collection</collection><collection>Materials Research Database</collection><collection>ProQuest Computer Science Collection</collection><collection>Civil Engineering Abstracts</collection><collection>ProQuest Engineering Collection</collection><collection>Advanced Technologies Database with Aerospace</collection><collection>Computer and Information Systems Abstracts Academic</collection><collection>Computer and Information Systems Abstracts Professional</collection><collection>Engineering Database</collection><collection>ProQuest One Academic Eastern Edition (DO NOT USE)</collection><collection>ProQuest One Academic</collection><collection>ProQuest One Academic UKI Edition</collection><collection>ProQuest Central China</collection><collection>Engineering Collection</collection><jtitle>International journal of advances in engineering and technology</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Ganesh, Ashwin</au><au>Sudarsan, Anirudhan</au><au>Vasu, Ajay Krishna</au><au>Ramalingam, Dinesh</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>IMPROVING FIREWALL PERFORMANCE BY USING A CACHE TABLE</atitle><jtitle>International journal of advances in engineering and technology</jtitle><date>2014-11-01</date><risdate>2014</risdate><volume>7</volume><issue>5</issue><spage>1</spage><epage>1</epage><pages>1-1</pages><issn>2231-1963</issn><eissn>2231-1963</eissn><abstract>Firewalls are the cornerstone of network security. Modern firewalls not only operate at the network layer, but also at the transport and application layers to provide maximum security. Firewalls are commonly implemented as packet filters and operated by examining the incoming packets and comparing them with a set of predefined rules, called an access control list. The firewall then decides, whether to route the packet into the trusted network or to filter it. In this paper, the authors propose a method to improve firewall performance, by minimizing the average number of comparisons, required before a rule is matched to an incoming packet. The proposed method, uses a linked list data structure to cache some of the rules defined in the access control list. The proposed algorithm functions, by exploiting traffic behavior and determining which rules are matched more frequently. Such rules, are cached in the linked list, which effectively functions as a cache table. A comparison of the proposed work and the conventional static approach is also presented.</abstract><cop>Bareilly</cop><pub>I A E T Publishing Company</pub><tpages>1</tpages></addata></record> |
| fulltext | fulltext |
| identifier | ISSN: 2231-1963 |
| ispartof | International journal of advances in engineering and technology, 2014-11, Vol.7 (5), p.1-1 |
| issn | 2231-1963 2231-1963 |
| language | eng |
| recordid | cdi_proquest_miscellaneous_1660078720 |
| source | Elektronische Zeitschriftenbibliothek - Frei zugängliche E-Journals |
| subjects | Firewalls Lists Networks Performance enhancement Routing (telecommunications) Security Tables (data) Transport |
| title | IMPROVING FIREWALL PERFORMANCE BY USING A CACHE TABLE |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-16T00%3A44%3A00IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=IMPROVING%20FIREWALL%20PERFORMANCE%20BY%20USING%20A%20CACHE%20TABLE&rft.jtitle=International%20journal%20of%20advances%20in%20engineering%20and%20technology&rft.au=Ganesh,%20Ashwin&rft.date=2014-11-01&rft.volume=7&rft.issue=5&rft.spage=1&rft.epage=1&rft.pages=1-1&rft.issn=2231-1963&rft.eissn=2231-1963&rft_id=info:doi/&rft_dat=%3Cproquest%3E3500429771%3C/proquest%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=1625942320&rft_id=info:pmid/&rfr_iscdi=true |