Queuing analysis of network firewalls

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

9 Scopus citations


Network firewalls act as the first line of defense against unwanted and malicious traffic targeting private networks connected to the Internet. Predicting the overall firewall performance, especially under attack, becomes crucial to network security engineers and designers in assessing how affective and tolerable a network firewall is, thereby be able to sustain the availability of network services. In this paper, we present an analytical queueing model based on the embedded Markov chain to study and analyze the performance of rule-based firewalls when subjected to normal and DoS attacks. We derive equations for key features and performance measures of engineering and design significance. In addition, we validate our analytical model against real experimental measurements.

Original languageBritish English
Title of host publication2010 IEEE Global Telecommunications Conference, GLOBECOM 2010
StatePublished - 2010
Event53rd IEEE Global Communications Conference, GLOBECOM 2010 - Miami, FL, United States
Duration: 6 Dec 201010 Dec 2010

Publication series

NameGLOBECOM - IEEE Global Telecommunications Conference


Conference53rd IEEE Global Communications Conference, GLOBECOM 2010
Country/TerritoryUnited States
CityMiami, FL


  • Network firewalls
  • Performance modeling and analysis
  • Queueing systems


Dive into the research topics of 'Queuing analysis of network firewalls'. Together they form a unique fingerprint.

Cite this