Bonfring International Journal of Industrial Engineering and Management Science

Impact Factor: 0.541 | International Scientific Indexing(ISI) calculate based on International Citation Report(ICR)


Top-N Firewall Approximation Algorithm in Virtual Private Networks for Preserving the Dependency Relationships

Hayden and Beau


Abstract:

A Virtual Private Network (VPN) is an extensively deployed network which permits roaming users to effectively access resources from the organization?s network. With the aim of accessing the organization network?s resources, an encrypted VPN tunnel is formulated between home network and foreign network. Even though it is helpful for the roaming users, at the same time it imposes security threats to the remote network since the remote network does not recognize what kind of data is flowing within the encrypted tunnel. All through this paper an example of IBM as home network and MSU (Michigan State University) as foreign network is taken. With the intention of addressing this issue an Xhash protocol is employed for the purpose of comparing the numbers of both parties without disclosing the number to each other. Subsequently, a firewall framework called VGuard is used that employs Xhash as the building block. A top-N firewall approximation algorithm is utilized for the purpose of selecting the top-N most frequently matched subset of rules from the original ruleset. The major objective is to obtain Top-N rules that cover as much traffic as possible at the same time preserving the dependency relationships. The Top-N list is constructed by means of choosing the N rules with highest hit-rates followed by reordering them in descending order of priority. Next, using the selected sub rule-set bootstrapping and filtering protocol is implemented.

Keywords: Virtual Private Networks, Privacy, Network Security, Firewall Approximation.

Volume: 7 | Issue: 2

Pages: 26-31

Issue Date: May , 2017

DOI: 10.9756/BIJIEMS.8328

Full Text

Email

Password

 


This Journal is an Open Access Journal to Facilitate the Research Community