Systematic review of automatic translation of high-level security policy into firewall rules

Kovačević, Ivan; Štengl, Bruno; Groš, Stjepan

doi:10.23919/mipro55190.2022.9803570

Cited by 2 publications

(1 citation statement)

References 25 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Network access control policies are a commonly used method to implement organizational security policies [1]. They define a series of rules and actions to match and process network packets.…”

Section: Introductionmentioning

confidence: 99%

ADLBiLSTM: A Semantic Generation Algorithm for Multi-Grammar Network Access Control Policies

Zhang,

Liang

2024

Applied Sciences

View full text Add to dashboard Cite

Semantic generation of network access control policies can help network administrators accurately implement policies to achieve desired security objectives. Current semantic generation research mainly focuses on semantic generation of single grammar and lacks work on automatically generating semantics for different grammatical strategies. Generating semantics for different grammars is a tedious, inefficient, and non-scalable task. Inspired by sequence labeling in the field of natural language processing, this article models automatic semantic generation as a sequence labeling task. We propose a semantic generation algorithm named ADLBiLSTM. The algorithm uses a self-attention mechanism and double-layer BiLSTM to extract the features of security policies from different aspects, so that the algorithm can flexibly adapt to policies of different complexity without frequent modification. Experimental results showed that the algorithm has good performance and can achieve high accuracy in semantic generation of access control list (ACL) and firewall data and can accurately understand and generate the semantics of network access control policies.

show abstract

Section: Introductionmentioning

confidence: 99%