Summary: 1
Conflict Classification and Analysis
of Distributed Firewall Policies
Ehab Al-Shaer and Hazem Hamed
School of Computer Science
DePaul University, Chicago, USA
Email: {ehab, hhamed}@cs.depaul.edu
Raouf Boutaba
School of Computer Science
University of Waterloo, Canada
Email: rboutaba@uwaterloo.ca
Masum Hasan
Cisco Systems
San Jose, California, USA
Email: masum@cisco.com
Abstract
Firewalls are core elements in network security. However, managing firewall rules, particularly in multi-firewall
enterprise networks, has become a complex and error-prone task. Firewall filtering rules have to be written, ordered
and distributed carefully in order to avoid firewall policy anomalies that might cause network vulnerability. Therefore,
inserting or modifying filtering rules in any firewall requires thorough intra- and inter-firewall analysis to determine

Source: Al-Shaer, Ehab - School of Computer Science, Telecommunications and Information Systems, DePaul University

Collections: Computer Technologies and Information Sciences