Augmented windows fuzzy firewall for preventing denial of service attack

The majority of computer systems use security software/hardware to protect against cyber attacks. A firewall is one the most popular security systems to protect against unauthorized access to or from its hosted network/system. The Microsoft Windows Operating System (OS) is equipped with an intrinsic firewall utility, which has been enhanced over the years to offer advanced security features including IPSec-based virtual private network functionality. This intrinsic Windows Firewall is still not capable of detecting and preventing Denial of Service (DoS) attacks. Nevertheless as an established end user security tool which is supplied with Windows OS, Windows Firewall with some additional intelligence may be an extremely valuable security utility for millions of Windows users. An intelligent Windows fuzzy firewall named FR-WinFirewall has been developed to improve its functionalities and aid prevention of DoS attacks. This paper presents the further extended and generalised version of the FR-WinFirewall to cover IPv6 traffic and for the inclusion of some extra DoS attack types related to ICMPv4, ICMPv6 and TCP. This augmented FR-WinFirewall can monitor, alert and prevent the three types of DoS attacks, ICMP (ICMPv4 and ICMPv6) DoS, UDP DoS and TCP DoS, as these protocols cover the majority of the TCP/IP traffic within any network. In this firewall, three separate fuzzy reasoning components related to three DoS attack types are designed, implemented and tested successfully. The addition of fuzzy intelligence to an intrinsic Windows Firewall makes it comparatively better than many well known firewalls, which are not yet capable of controlling DoS attacks.

[1]  Nitin Naik,et al.  Choice of effective fitness functions for genetic algorithm-aided dynamic fuzzy rule interpolation , 2015, 2015 IEEE International Conference on Fuzzy Systems (FUZZ-IEEE).

[2]  Aleksandar Kuzmanovic,et al.  Low-rate TCP-targeted denial of service attacks and counter strategies , 2006, TNET.

[3]  Nitin Naik,et al.  Fuzzy Inference Based Intrusion Detection System: FI-Snort , 2015, 2015 IEEE International Conference on Computer and Information Technology; Ubiquitous Computing and Communications; Dependable, Autonomic and Secure Computing; Pervasive Intelligence and Computing.

[4]  Anton Okmianski,et al.  Transmission of Syslog Messages over UDP , 2009, RFC.

[5]  Nitin Naik,et al.  Fuzzy reasoning based Windows Firewall for preventing denial of service attack , 2016, 2016 IEEE International Conference on Fuzzy Systems (FUZZ-IEEE).

[6]  Jon Postel,et al.  The TCP Maximum Segment Size and Related Topics , 1983, RFC.

[7]  Jörg Widmer,et al.  TCP Friendly Rate Control (TFRC): Protocol Specification , 2003, RFC.

[8]  Vasilios Katos,et al.  Big data security analysis approach using Computational Intelligence techniques in R for desktop users , 2016, 2016 IEEE Symposium Series on Computational Intelligence (SSCI).

[9]  Nitin Naik,et al.  Genetic algorithm-aided dynamic fuzzy rule interpolation , 2014, 2014 IEEE International Conference on Fuzzy Systems (FUZZ-IEEE).

[10]  Pan Su,et al.  Integration of interpolation and inference , 2012, 2012 12th UK Workshop on Computational Intelligence (UKCI).

[11]  Carlos Pignataro,et al.  Extended ICMP to Support Multi-Part Messages , 2007, RFC.

[12]  Hiok Chai Quek,et al.  Towards dynamic fuzzy rule interpolation , 2013, 2013 IEEE International Conference on Fuzzy Systems (FUZZ-IEEE).

[13]  Nitin Naik,et al.  Enhancing Windows Firewall Security Using Fuzzy Reasoning , 2016, 2016 IEEE 14th Intl Conf on Dependable, Autonomic and Secure Computing, 14th Intl Conf on Pervasive Intelligence and Computing, 2nd Intl Conf on Big Data Intelligence and Computing and Cyber Science and Technology Congress(DASC/PiCom/DataCom/CyberSciTech).

[14]  Zouheir Trabelsi,et al.  Network Attacks and Defenses: A Hands-on Approach , 2012 .

[15]  Nitin Naik,et al.  Application of dynamic fuzzy rule interpolation for intrusion detection: D-FRI-Snort , 2016, 2016 IEEE International Conference on Fuzzy Systems (FUZZ-IEEE).