Evaluation of firewall performance metrics with ranging the rules for Poisson incoming packet flow and exponential filtering time

Cover Page

Cite item

Full Text

Abstract

The given article is a continuation of a number of works devoted to the development of models and methods for ranging the filtration rules to prevent a decrease in the firewall performance caused by the use of a sequential scheme for checking packet compliance with the rules, as well as by the heterogeneity and variability of network traffic. The article includes a description of a firewall mathematical model given in the form of a complex system and a queuing system with a phase-type discipline for request servicing, which formalizes the network traffic filtering process with the functionality of ranging the rules. The purpose of modeling is to obtain estimates for major firewall performance metrics for various network traffic behavior scenarios, as well as to evaluate an increase in the firewall performance due to ranging a filtration rule set. Calculation of estimates for the firewall (FW) performance metrics was made using the analytical method for a Poisson request flow. Based on the analysis of the modeling results, conclusions were drawn on the effectiveness of ranging the filtration rules in order to improve the firewall performance for traffic scenarios that are close to real ones.

About the authors

Anatoly Yu. Botvinko

RUDN University

Author for correspondence.
Email: botvinko_ayu@rudn.ru
ORCID iD: 0000-0003-1412-981X

Candidate of Physical and Mathematical Sciences, assistant professor of Department of Probability Theory and Cyber Security

6 Miklukho-Maklaya St., Moscow, 117198, Russian Federation

Konstantin E. Samouylov

RUDN University

Email: samuylov_ke@rudn.ru
ORCID iD: 0000-0002-6368-9680

Professor, Doctor of Technical Sciences, Head of the Department of Probability Theory and Cyber Security

6 Miklukho-Maklaya St., Moscow, 117198, Russian Federation

References

  1. A. Y. Botvinko and K. E. Samouylov, “Evaluation of firewall performance when ranging a filtration rule set,” Discrete and Continuous Models and Applied Computational Science, vol. 29, no. 3, pp. 230-241, 2013. doi: 10.22363/2658-4670-2021-29-3-230-241.
  2. A. Y. Botvinko and K. E. Samouylov, “Firewall simulator development for performance evaluation of ranging a filtration rules set,” Distributed Computer and Communication Networks: Control, Computation, Communications. DCCN 2022. Lecture Notes in Computer Science. Lecture Notes in Computer Science, vol. 13766, no. 3, pp. 221-229, 2022. doi: 10.1007/978-3-031-23207-7_15.
  3. A. Y. Botvinko and K. E. Samouylov, “Firewall simulation model with filtering rules ranking,” Distributed Computer and Communication Networks: Control, Computation, Communications. DCCN 2020. Communications in Computer and Information Science, vol. 1337, pp. 533- 545, 2020. doi: 10.1007/978-3-030-66242-4_42.
  4. V. Katkovnik, Non-parametric data identification and smoothing: local approximation method [Neparametricheskaya identifikaciya i sglazhivanie danny‘x: metod lokal‘noj approksimacii]. The science. Main editorial office of physical and mathematical literature Publ., 1985, 336 pp., in Russian.
  5. W. Hardle, Applied nonparametric regression. Cambridge: Cambridge university press, 1990, 349 pp.
  6. M. Cheminod, L. Durante, L. Seno, and A. Valenzano, “Performance evaluation and modeling of an industrial application-layer firewall,” IEEE Transactions on Industrial Informatics, vol. 14, no. 5, pp. 2159- 2170, 2018. doi: 10.1109/TII.2018.2802903.
  7. K. Salah, K. Elbadawi, and R. Boutaba, “Performance modeling and analysis of network firewalls,” IEEE Transactions on network and service management, vol. 9, no. 1, pp. 12-21, 2011. doi: 10.1109/TNSM.2011.122011.110151.
  8. P. P. Bocharov and A. V. Pechenkin, Queuing theory [Teoriya massovogo obsluzhivaniya]. Moscow: RUDN, 1995, 529 pp., in Russian.

Supplementary files

Supplementary Files
Action
1. JATS XML
Download