Design and development of an intelligent security layer for web-based applications

Methods to activate firewall mechanism have been introduced in this research. The purpose is to build stronger protection for the intranet from the threats of Internet. The foundation of the work is the threat reduction strategies that are derived from formalizing and identifying the interaction bet...

Full description

Saved in:
Bibliographic Details
Main Authors: Abdullah, Abdul Hanan, Maarof, Mohd. Aizaini, Idris, Mohd. Yazid, Ismail, Abdul Samad, Cahyo Crysdian, Cahyo Crysdian
Format: Monograph
Language:English
Published: Faculty of Computer Science and Information System 2005
Subjects:
Online Access:http://eprints.utm.my/id/eprint/4362/1/74084.pdf
http://eprints.utm.my/id/eprint/4362/
Tags: Add Tag
No Tags, Be the first to tag this record!
id my.utm.4362
record_format eprints
spelling my.utm.43622017-08-07T03:18:59Z http://eprints.utm.my/id/eprint/4362/ Design and development of an intelligent security layer for web-based applications Abdullah, Abdul Hanan Maarof, Mohd. Aizaini Idris, Mohd. Yazid Ismail, Abdul Samad Cahyo Crysdian, Cahyo Crysdian ZA4050 Electronic information resources Methods to activate firewall mechanism have been introduced in this research. The purpose is to build stronger protection for the intranet from the threats of Internet. The foundation of the work is the threat reduction strategies that are derived from formalizing and identifying the interaction between internal users and external parties. Internet access model is developed to facilitate this task. Mechanism of active firewall are divided into two main process i.e. initialisation and runtime process. The former process deals with the mechanism to start up and bring the active firewall into a point of its operation. Three approaches are introduced, namely open condition, close condition and lattice-based method. The open condition and close condition set the firewall into its extreme condition i.e. to open all available communication line or to close all connection respectively, while the lattice-based method affords to bring firewall into its optimum level to protect the intranet by establishing Internet connection based on the predetermined security level. In the runtime process, three methods are introduced as well i.e. adaptively updating security policy using fuzzy reasoning, detecting suspicious process using distributed agent-based module, and zero-based approach to have minimal network services at runtime. Besides analysing each method using its own parameters such as processing time, accuracy and speed for organizing canals, global evaluations were also held to investigate the protection can be delivered to the intranet. In this evaluation, security analysis and comparative study is held, in which each initialisation and runtime process are combined and analysed using three parameters that are created based on RFC 2979 i.e. probability of available network services, probability of exposed line, and denial of services. Results of this study deliver the combination of lattice-based and agent-based module become the best method for activating firewall. Faculty of Computer Science and Information System 2005 Monograph NonPeerReviewed application/pdf en http://eprints.utm.my/id/eprint/4362/1/74084.pdf Abdullah, Abdul Hanan and Maarof, Mohd. Aizaini and Idris, Mohd. Yazid and Ismail, Abdul Samad and Cahyo Crysdian, Cahyo Crysdian (2005) Design and development of an intelligent security layer for web-based applications. Project Report. Faculty of Computer Science and Information System, Skudai, Johor. (Unpublished)
institution Universiti Teknologi Malaysia
building UTM Library
collection Institutional Repository
continent Asia
country Malaysia
content_provider Universiti Teknologi Malaysia
content_source UTM Institutional Repository
url_provider http://eprints.utm.my/
language English
topic ZA4050 Electronic information resources
spellingShingle ZA4050 Electronic information resources
Abdullah, Abdul Hanan
Maarof, Mohd. Aizaini
Idris, Mohd. Yazid
Ismail, Abdul Samad
Cahyo Crysdian, Cahyo Crysdian
Design and development of an intelligent security layer for web-based applications
description Methods to activate firewall mechanism have been introduced in this research. The purpose is to build stronger protection for the intranet from the threats of Internet. The foundation of the work is the threat reduction strategies that are derived from formalizing and identifying the interaction between internal users and external parties. Internet access model is developed to facilitate this task. Mechanism of active firewall are divided into two main process i.e. initialisation and runtime process. The former process deals with the mechanism to start up and bring the active firewall into a point of its operation. Three approaches are introduced, namely open condition, close condition and lattice-based method. The open condition and close condition set the firewall into its extreme condition i.e. to open all available communication line or to close all connection respectively, while the lattice-based method affords to bring firewall into its optimum level to protect the intranet by establishing Internet connection based on the predetermined security level. In the runtime process, three methods are introduced as well i.e. adaptively updating security policy using fuzzy reasoning, detecting suspicious process using distributed agent-based module, and zero-based approach to have minimal network services at runtime. Besides analysing each method using its own parameters such as processing time, accuracy and speed for organizing canals, global evaluations were also held to investigate the protection can be delivered to the intranet. In this evaluation, security analysis and comparative study is held, in which each initialisation and runtime process are combined and analysed using three parameters that are created based on RFC 2979 i.e. probability of available network services, probability of exposed line, and denial of services. Results of this study deliver the combination of lattice-based and agent-based module become the best method for activating firewall.
format Monograph
author Abdullah, Abdul Hanan
Maarof, Mohd. Aizaini
Idris, Mohd. Yazid
Ismail, Abdul Samad
Cahyo Crysdian, Cahyo Crysdian
author_facet Abdullah, Abdul Hanan
Maarof, Mohd. Aizaini
Idris, Mohd. Yazid
Ismail, Abdul Samad
Cahyo Crysdian, Cahyo Crysdian
author_sort Abdullah, Abdul Hanan
title Design and development of an intelligent security layer for web-based applications
title_short Design and development of an intelligent security layer for web-based applications
title_full Design and development of an intelligent security layer for web-based applications
title_fullStr Design and development of an intelligent security layer for web-based applications
title_full_unstemmed Design and development of an intelligent security layer for web-based applications
title_sort design and development of an intelligent security layer for web-based applications
publisher Faculty of Computer Science and Information System
publishDate 2005
url http://eprints.utm.my/id/eprint/4362/1/74084.pdf
http://eprints.utm.my/id/eprint/4362/
_version_ 1643644035107127296
score 13.211869