TY - GEN
T1 - D-FRI-WinFirewall
T2 - 2017 IEEE International Conference on Fuzzy Systems, FUZZ 2017
AU - Naik, Nitin
AU - Diao, Ren
AU - Shang, Changjing
AU - Shen, Qiang
AU - Jenkins, Paul
N1 - Publisher Copyright:
© 2017 IEEE.
PY - 2017/8/23
Y1 - 2017/8/23
N2 - Dynamic fuzzy rule interpolation (D-FRI) consists of functionalities of fuzzy rule interpolation and dynamically refinement of the fuzzy rule base. It can be integrated with any fuzzy intelligent system to extend the system's capabilities in addition to its normal fuzzy reasoning. Systems security is one of the areas that require dynamic monitoring due to the nature of possible threats; static rule-based systems cannot cover all reoriented security threats accurately in the long run. D-FRI provides a possible solution to such problems, potentially making various security tools (e.g., those for firewall, intrusion detection and traffic analysis) more effective. As a particular application, this paper exploits D-FRI to dynamically support Microsoft Windows Firewall, resulting in a robust system named D-FRI-WinFirewall. Given the general utility of Windows Firewall, the impact of this work is far-reaching. The work reported here focusses on the monitoring and prevention of denial of service (DoS) attacks, which is not possible by utilising the standard Windows Firewall alone. In particular, two sub-systems are designed, implemented and tested within D-FRI-WinFirewall, with an effort to detect and prevent two serious types of DoS attack: ICMP DoS attack and UDP DoS attack, leading the Windows Firewall to outperform popular and expensive firewalls, which are yet unable to handle DoS attacks.
AB - Dynamic fuzzy rule interpolation (D-FRI) consists of functionalities of fuzzy rule interpolation and dynamically refinement of the fuzzy rule base. It can be integrated with any fuzzy intelligent system to extend the system's capabilities in addition to its normal fuzzy reasoning. Systems security is one of the areas that require dynamic monitoring due to the nature of possible threats; static rule-based systems cannot cover all reoriented security threats accurately in the long run. D-FRI provides a possible solution to such problems, potentially making various security tools (e.g., those for firewall, intrusion detection and traffic analysis) more effective. As a particular application, this paper exploits D-FRI to dynamically support Microsoft Windows Firewall, resulting in a robust system named D-FRI-WinFirewall. Given the general utility of Windows Firewall, the impact of this work is far-reaching. The work reported here focusses on the monitoring and prevention of denial of service (DoS) attacks, which is not possible by utilising the standard Windows Firewall alone. In particular, two sub-systems are designed, implemented and tested within D-FRI-WinFirewall, with an effort to detect and prevent two serious types of DoS attack: ICMP DoS attack and UDP DoS attack, leading the Windows Firewall to outperform popular and expensive firewalls, which are yet unable to handle DoS attacks.
UR - http://www.scopus.com/inward/record.url?scp=85030169803&partnerID=8YFLogxK
U2 - 10.1109/FUZZ-IEEE.2017.8015461
DO - 10.1109/FUZZ-IEEE.2017.8015461
M3 - Conference contribution
AN - SCOPUS:85030169803
T3 - IEEE International Conference on Fuzzy Systems
BT - 2017 IEEE International Conference on Fuzzy Systems, FUZZ 2017
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 9 July 2017 through 12 July 2017
ER -