The search report “FROG: a Firewall Rule Order Generator for faster packet filtering” has been accepted for publication
02/12/2024
The research report “”FROG: a Firewall Rule Order Generator for faster packet filtering”, carried out by colleagues Antonio Coscia, Antonio Maci and Nicola Tamma within the scope of the research activities provided for in the Program Contract “Cybersecurity Suite products and SOC”, has been accepted for publication in Computer Networks, a leading scientific journal. The research activity, carried out entirely by colleagues of BV TECH, demonstrates once again the level of competence and innovation capabilities achieved by CyberLab in Grottaglie and Rutigliano.
The CyberLab’s capacity for innovation
The research proposes an innovative approach to the sorting of filtering rules configured on firewalls, in order to reduce latency in packet analysis related to the order in which they are analyzed, Taking into account the constraints of precedence to ensure the integrity of the security policy implemented. The algorithm aggregates rules into blocks, defined by similarity criteria, which can be “skipped” to move to the next block during the sequential scanning process.
Experimental results have shown that the algorithm is able to maximize block size and reduce the number of “jumps” between blocks, significantly improving the average latency of packet processing, Without requiring prior knowledge of traffic distribution to achieve optimal results and offer better performance than other rule optimization algorithms.
Follow us on social media
GROTTAGLIE:
Corso Europa, 3
74023 Grottaglie (TA)
Tel.: +39.02.8596171
Fax: +39.02.89093321
RUTIGLIANO:
S.P. 84 Adelfia-Rutigliano, C.da Caggiano
70018 Rutigliano (BA)
Tel.: +39.02.8596171
Fax: +39.02.89093321
Project funded by the European Regional Development Fund Puglia POR Puglia 2014 - 2020 - Axis I - Specific Objective 1a - Action 1.1 (R&D), and with the support of the University of Bari and the Massachusetts Institute of Technology (MIT).