{"id":"https://openalex.org/W53259917","doi":"https://doi.org/10.1007/978-3-642-32805-3_20","title":"A Framework for Enforcing User-Based Authorization Policies on Packet Filter Firewalls","display_name":"A Framework for Enforcing User-Based Authorization Policies on Packet Filter Firewalls","publication_year":2012,"publication_date":"2012-01-01","ids":{"openalex":"https://openalex.org/W53259917","doi":"https://doi.org/10.1007/978-3-642-32805-3_20","mag":"53259917"},"language":"en","primary_location":{"id":"doi:10.1007/978-3-642-32805-3_20","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-642-32805-3_20","pdf_url":null,"source":{"id":"https://openalex.org/S106296714","display_name":"Lecture notes in computer science","issn_l":"0302-9743","issn":["0302-9743","1611-3349"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Lecture Notes in Computer Science","raw_type":"book-chapter"},"type":"book-chapter","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://inria.hal.science/hal-01540897","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5031097493","display_name":"Andr\u00e9 Z\u00faquete","orcid":"https://orcid.org/0000-0002-9745-4361"},"institutions":[{"id":"https://openalex.org/I60858718","display_name":"University of Aveiro","ror":"https://ror.org/00nt41z93","country_code":"PT","type":"education","lineage":["https://openalex.org/I60858718"]}],"countries":["PT"],"is_corresponding":false,"raw_author_name":"Andr\u00e9 Z\u00faquete","raw_affiliation_strings":["Dep. of Electronics, Telecommunications and Informatics/IEETA, Univ. of Aveiro, Portugal"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Dep. of Electronics, Telecommunications and Informatics/IEETA, Univ. of Aveiro, Portugal","institution_ids":["https://openalex.org/I60858718"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5062127962","display_name":"Pedro Correia","orcid":"https://orcid.org/0000-0001-9451-136X"},"institutions":[{"id":"https://openalex.org/I60858718","display_name":"University of Aveiro","ror":"https://ror.org/00nt41z93","country_code":"PT","type":"education","lineage":["https://openalex.org/I60858718"]}],"countries":["PT"],"is_corresponding":false,"raw_author_name":"Pedro Correia","raw_affiliation_strings":["IEETA, Univ. of Aveiro, Portugal"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"IEETA, Univ. of Aveiro, Portugal","institution_ids":["https://openalex.org/I60858718"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5040524717","display_name":"Miguel Rocha","orcid":"https://orcid.org/0000-0001-8439-8172"},"institutions":[{"id":"https://openalex.org/I60858718","display_name":"University of Aveiro","ror":"https://ror.org/00nt41z93","country_code":"PT","type":"education","lineage":["https://openalex.org/I60858718"]}],"countries":["PT"],"is_corresponding":false,"raw_author_name":"Miguel Rocha","raw_affiliation_strings":["IEETA, Univ. of Aveiro, Portugal"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"IEETA, Univ. of Aveiro, Portugal","institution_ids":["https://openalex.org/I60858718"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":{"value":5000,"currency":"EUR","value_usd":5392},"apc_paid":{"value":5000,"currency":"EUR","value_usd":5392},"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.0332053,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"204","last_page":"206"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10651","display_name":"IPv6, Mobility, Handover, Networks, Security","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10651","display_name":"IPv6, Mobility, Handover, Networks, Security","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9976999759674072,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12326","display_name":"Network Packet Processing and Optimization","score":0.9970999956130981,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/firewall","display_name":"Firewall (physics)","score":0.8825007081031799},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8481313586235046},{"id":"https://openalex.org/keywords/network-packet","display_name":"Network packet","score":0.7611019611358643},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6846351623535156},{"id":"https://openalex.org/keywords/authorization","display_name":"Authorization","score":0.5860914587974548},{"id":"https://openalex.org/keywords/identity-theft","display_name":"Identity theft","score":0.5498266220092773},{"id":"https://openalex.org/keywords/identity","display_name":"Identity (music)","score":0.5336042046546936},{"id":"https://openalex.org/keywords/application-firewall","display_name":"Application firewall","score":0.5298153162002563},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.4850239157676697},{"id":"https://openalex.org/keywords/stateful-firewall","display_name":"Stateful firewall","score":0.48267248272895813},{"id":"https://openalex.org/keywords/entropy","display_name":"Entropy (arrow of time)","score":0.0851714015007019}],"concepts":[{"id":"https://openalex.org/C77714075","wikidata":"https://www.wikidata.org/wiki/Q5452017","display_name":"Firewall (physics)","level":5,"score":0.8825007081031799},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8481313586235046},{"id":"https://openalex.org/C158379750","wikidata":"https://www.wikidata.org/wiki/Q214111","display_name":"Network packet","level":2,"score":0.7611019611358643},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6846351623535156},{"id":"https://openalex.org/C108759981","wikidata":"https://www.wikidata.org/wiki/Q788590","display_name":"Authorization","level":2,"score":0.5860914587974548},{"id":"https://openalex.org/C522325796","wikidata":"https://www.wikidata.org/wiki/Q471880","display_name":"Identity theft","level":2,"score":0.5498266220092773},{"id":"https://openalex.org/C2778355321","wikidata":"https://www.wikidata.org/wiki/Q17079427","display_name":"Identity (music)","level":2,"score":0.5336042046546936},{"id":"https://openalex.org/C86444895","wikidata":"https://www.wikidata.org/wiki/Q451816","display_name":"Application firewall","level":4,"score":0.5298153162002563},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.4850239157676697},{"id":"https://openalex.org/C22927095","wikidata":"https://www.wikidata.org/wiki/Q1784206","display_name":"Stateful firewall","level":3,"score":0.48267248272895813},{"id":"https://openalex.org/C106301342","wikidata":"https://www.wikidata.org/wiki/Q4117933","display_name":"Entropy (arrow of time)","level":2,"score":0.0851714015007019},{"id":"https://openalex.org/C183915046","wikidata":"https://www.wikidata.org/wiki/Q1316152","display_name":"Charged black hole","level":4,"score":0.0},{"id":"https://openalex.org/C24890656","wikidata":"https://www.wikidata.org/wiki/Q82811","display_name":"Acoustics","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C104062141","wikidata":"https://www.wikidata.org/wiki/Q2601295","display_name":"Extremal black hole","level":3,"score":0.0},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1007/978-3-642-32805-3_20","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-642-32805-3_20","pdf_url":null,"source":{"id":"https://openalex.org/S106296714","display_name":"Lecture notes in computer science","issn_l":"0302-9743","issn":["0302-9743","1611-3349"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Lecture Notes in Computer Science","raw_type":"book-chapter"},{"id":"pmh:oai:HAL:hal-01540897v1","is_oa":true,"landing_page_url":"https://inria.hal.science/hal-01540897","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"13th International Conference on Communications and Multimedia Security (CMS), Sep 2012, Canterbury, United Kingdom. pp.204-206, &#x27E8;10.1007/978-3-642-32805-3_20&#x27E9;","raw_type":"Conference papers"}],"best_oa_location":{"id":"pmh:oai:HAL:hal-01540897v1","is_oa":true,"landing_page_url":"https://inria.hal.science/hal-01540897","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"13th International Conference on Communications and Multimedia Security (CMS), Sep 2012, Canterbury, United Kingdom. pp.204-206, &#x27E8;10.1007/978-3-642-32805-3_20&#x27E9;","raw_type":"Conference papers"},"sustainable_development_goals":[{"display_name":"Reduced inequalities","score":0.5799999833106995,"id":"https://metadata.un.org/sdg/10"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":5,"referenced_works":["https://openalex.org/W1635413415","https://openalex.org/W2186358263","https://openalex.org/W2254691854","https://openalex.org/W4210921465","https://openalex.org/W6600490140"],"related_works":["https://openalex.org/W2009238965","https://openalex.org/W2361515550","https://openalex.org/W2916429898","https://openalex.org/W8359669","https://openalex.org/W2057573940","https://openalex.org/W4363647490","https://openalex.org/W2347324149","https://openalex.org/W2495628081","https://openalex.org/W2583381754","https://openalex.org/W4234975731"],"abstract_inverted_index":{"Packet":[0],"filter":[1],"firewalls":[2],"are":[3],"fundamental":[4],"elements":[5],"to":[6,10,19,59,65,70],"prevent":[7],"unauthorized":[8],"traffic":[9],"reach":[11],"protected":[12],"networks":[13],"or":[14],"hosts.":[15],"However,":[16],"they":[17],"have":[18],"take":[20],"decisions":[21],"about":[22,36],"packets":[23,30],"based":[24],"on":[25],"their":[26],"contents,":[27],"and":[28,69,102,123],"currently":[29],"do":[31],"not":[32],"contain":[33],"any":[34],"information":[35,58],"the":[37,77,81],"entity":[38,78],"responsible":[39,79],"for":[40,75,80,99,107],"its":[41,67],"generation.":[42],"In":[43],"this":[44,52],"paper":[45],"we":[46,114],"propose":[47],"a":[48,63,110,116],"framework":[49,55,93],"that":[50],"tackle":[51],"problem.":[53],"The":[54],"adds":[56],"extra":[57],"packets,":[60],"which":[61,84],"enables":[62],"firewall":[64],"authenticate":[66],"origin":[68],"get":[71],"an":[72,85],"identity":[73,105,125],"attribute":[74],"discriminating":[76],"packet,":[82],"upon":[83],"access":[86],"control":[87],"policy":[88],"can":[89],"be":[90],"implemented.":[91],"This":[92],"uses":[94],"trusted":[95],"third":[96],"party":[97],"services":[98],"authenticating":[100],"people":[101],"providing":[103],"related":[104],"attributes":[106],"firewalls.":[108],"For":[109],"proof":[111],"of":[112],"concept":[113],"implemented":[115],"prototype":[117],"in":[118],"Linux":[119],"machines":[120],"using":[121],"iptables":[122],"personal":[124],"smartcards.":[126]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}