An autoblocking mechanism for firewall service

Shan Jung Fu; Huai Wen Hsu; Yi-Chih Kao; Shi-Chun Tsai; Chien-Chao Tseng

doi:10.1109/DESEC.2017.8073877

An autoblocking mechanism for firewall service

Shan Jung Fu, Huai Wen Hsu, Yi-Chih Kao, Shi-Chun Tsai, Chien-Chao Tseng

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

2 Scopus citations

Abstract

A distributed denial-of-service (DDoS) attack could cause the incoming connections per second exceeding the capacity of the firewall device and the network system might be paralyzed. By analyzing the syslog of firewall, we design an effective mechanism to block malicious source IPs automatically from the router. We have undergone a field trial on campus for two years. The collected data shows that our approach significantly reduces suspicious traffic and improve the stability of overall network service.

Original language	English
Title of host publication	2017 IEEE Conference on Dependable and Secure Computing
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	531-532
Number of pages	2
ISBN (Electronic)	9781509055692
DOIs	https://doi.org/10.1109/DESEC.2017.8073877
State	Published - 18 Oct 2017
Event	2017 IEEE Conference on Dependable and Secure Computing - Taipei, Taiwan Duration: 7 Aug 2017 → 10 Aug 2017

Publication series

Name	2017 IEEE Conference on Dependable and Secure Computing

Conference

Conference	2017 IEEE Conference on Dependable and Secure Computing
Country/Territory	Taiwan
City	Taipei
Period	7/08/17 → 10/08/17

Access to Document

10.1109/DESEC.2017.8073877

Cite this

@inproceedings{66f5a2ffc04f43f09e5715d55112c937,

title = "An autoblocking mechanism for firewall service",

abstract = "A distributed denial-of-service (DDoS) attack could cause the incoming connections per second exceeding the capacity of the firewall device and the network system might be paralyzed. By analyzing the syslog of firewall, we design an effective mechanism to block malicious source IPs automatically from the router. We have undergone a field trial on campus for two years. The collected data shows that our approach significantly reduces suspicious traffic and improve the stability of overall network service.",

author = "Fu, {Shan Jung} and Hsu, {Huai Wen} and Yi-Chih Kao and Shi-Chun Tsai and Chien-Chao Tseng",

year = "2017",

month = oct,

day = "18",

doi = "10.1109/DESEC.2017.8073877",

language = "English",

series = "2017 IEEE Conference on Dependable and Secure Computing",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "531--532",

booktitle = "2017 IEEE Conference on Dependable and Secure Computing",

address = "United States",

note = "2017 IEEE Conference on Dependable and Secure Computing ; Conference date: 07-08-2017 Through 10-08-2017",

}

Fu, SJ, Hsu, HW, Kao, Y-C , Tsai, S-C & Tseng, C-C 2017, An autoblocking mechanism for firewall service. in 2017 IEEE Conference on Dependable and Secure Computing., 8073877, 2017 IEEE Conference on Dependable and Secure Computing, Institute of Electrical and Electronics Engineers Inc., pp. 531-532, 2017 IEEE Conference on Dependable and Secure Computing, Taipei, Taiwan, 7/08/17. https://doi.org/10.1109/DESEC.2017.8073877

An autoblocking mechanism for firewall service. / Fu, Shan Jung; Hsu, Huai Wen; Kao, Yi-Chih et al.
2017 IEEE Conference on Dependable and Secure Computing. Institute of Electrical and Electronics Engineers Inc., 2017. p. 531-532 8073877 (2017 IEEE Conference on Dependable and Secure Computing).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - An autoblocking mechanism for firewall service

AU - Fu, Shan Jung

AU - Hsu, Huai Wen

AU - Kao, Yi-Chih

AU - Tsai, Shi-Chun

AU - Tseng, Chien-Chao

PY - 2017/10/18

Y1 - 2017/10/18

N2 - A distributed denial-of-service (DDoS) attack could cause the incoming connections per second exceeding the capacity of the firewall device and the network system might be paralyzed. By analyzing the syslog of firewall, we design an effective mechanism to block malicious source IPs automatically from the router. We have undergone a field trial on campus for two years. The collected data shows that our approach significantly reduces suspicious traffic and improve the stability of overall network service.

AB - A distributed denial-of-service (DDoS) attack could cause the incoming connections per second exceeding the capacity of the firewall device and the network system might be paralyzed. By analyzing the syslog of firewall, we design an effective mechanism to block malicious source IPs automatically from the router. We have undergone a field trial on campus for two years. The collected data shows that our approach significantly reduces suspicious traffic and improve the stability of overall network service.

UR - http://www.scopus.com/inward/record.url?scp=85039911273&partnerID=8YFLogxK

U2 - 10.1109/DESEC.2017.8073877

DO - 10.1109/DESEC.2017.8073877

M3 - Conference contribution

AN - SCOPUS:85039911273

T3 - 2017 IEEE Conference on Dependable and Secure Computing

SP - 531

EP - 532

BT - 2017 IEEE Conference on Dependable and Secure Computing

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 2017 IEEE Conference on Dependable and Secure Computing

Y2 - 7 August 2017 through 10 August 2017

ER -

An autoblocking mechanism for firewall service

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this