Browse > Article
http://dx.doi.org/10.3745/KIPSTC.2006.13C.7.813

A Lightweight Packet Filter for Embedded System  

Lee, Byong-Kwon (충북대학교 전자계산대학원)
Jeon, Joong-Nam (충북대학교 전기전자컴퓨터공학부)
Publication Information
The KIPS Transactions:PartC / v.13C, no.7, 2006 , pp. 813-820 More about this Journal
Abstract
The advance of computer and communication technologies enables the embedded systems to be equipped with the network communication interfaces. Their appearance in network leads to security issues on the embedded systems. An easy way to overcome the security problem is to adopt the packet filter that is implemented in the general computer systems. However, general packet filters designed for host computers are not suitable to embedded systems because of their complexity. In this paper, we propose a lightweight packet filter for embedded systems. The lightweight packet filter is implemented in the kernel code. And we have installed a Web-GUI interface for user to easily set the filtering policies at remote space. The experimental results show that the proposed packet filter decreases the packet delivery time compared to the packet filter designed for host computers and it is comparable to the systems without packet filter.
Keywords
Embedded System; Packet Filtering; Remote Control; Firewall;
Citations & Related Records
연도 인용수 순위
  • Reference
1 D.L. Herbert, S.S. Devgan, C. Beane, 'Application of network address translation in a local area network,' Southeastern Symposium on System Theory, 2001. Proceeding of the 33rd, pp.315-318, Mar., 2001   DOI
2 R. Zalenski, 'Firewall technologies,' Potentials IEEE, Vol.21, pp.24-29, Mar., 2002   DOI   ScienceOn
3 SOCKS[LGLK+96], http://www.ufasoft.com/socks/
4 Bovet and Cesati, Understanding the Linux Kernel-third edition, O'Relly
5 HANBACK ELECTRONICS CO., LTD, http://www.hanback.co.kr/htm/sub2_2.htm
6 Karim Yaghmour, Buliding Embedded Linux system, O'Relly, 2003
7 J. Reumann, Hani Jamjoom, Kang Shin, 'Adaptive packet filters,' Global Telecommunications Conference, 2001. GLOBECOM '01, IEEE, Vol.4, pp.2331-2335 Nov., 2001   DOI
8 Klaus Wehrle and Frank pahlke, The Linux Networking Architecture, Prentice Hall, 2005
9 H. Julkunen, C.E. Chow, 'Enhance network security with dynamic packet filter,' Computer Communications and Networks Proceedings, pp.268-275, Oct., 1998   DOI
10 T. Verwoerd, R. Hunt, 'Policy and implementation of an adaptive firewall,' Networks, 2002. ICON 2002. 10th IEEE Internatinal Conference, pp.434-439, Aug., 2002   DOI
11 S.M. Bellovin, W.R. Cheswick, 'Network firewalls,' Communications Magazine IEEE, Vol.32, pp.50-57, Sept., 1994   DOI   ScienceOn
12 Home Network Security, http://www.cert.org/tech_tips/home_networks.html
13 Ioannidis, S. Anagnostakis, K.G. Ioannidis, J. Keromytis, A.D., 'xPF: packet filtering for low-cost network monitoring,' High Performance Switching and Routing, 2002. Merging Optical and IP Technologies. Workshop on, May, 2002   DOI
14 MobileOS, http://www.tdgresearch.com/pdfs2006/TDG_PR_020706_AdvancedMobileOS.pdf
15 William R. Cheswick, Steven M Bellowin, Firewalls and Internet Security, ISBN 0-201-63357