{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,9]],"date-time":"2025-09-09T22:08:01Z","timestamp":1757455681092,"version":"3.37.3"},"reference-count":51,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2018,1,1]],"date-time":"2018-01-01T00:00:00Z","timestamp":1514764800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/OAPA.html"}],"funder":[{"name":"UPAR","award":["31T080"],"award-info":[{"award-number":["31T080"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Access"],"published-print":{"date-parts":[[2018]]},"DOI":"10.1109\/access.2018.2850345","type":"journal-article","created":{"date-parts":[[2018,6,25]],"date-time":"2018-06-25T18:25:42Z","timestamp":1529951142000},"page":"35528-35543","source":"Crossref","is-referenced-by-count":16,"title":["Improved Session Table Architecture for Denial of Stateful Firewall Attacks"],"prefix":"10.1109","volume":"6","author":[{"given":"Zouheir","family":"Trabelsi","sequence":"first","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4298-6483","authenticated-orcid":false,"given":"Safaa","family":"Zeidan","sequence":"additional","affiliation":[]},{"given":"Khaled","family":"Shuaib","sequence":"additional","affiliation":[]},{"given":"Khaled","family":"Salah","sequence":"additional","affiliation":[]}],"member":"263","reference":[{"journal-title":"The Next BIG Thing ‘Small’ DDoS Attacks are Often Hardest to Block","year":"2016","key":"ref39"},{"journal-title":"Protecting the Network from Denial of Service Floods","year":"2008","key":"ref38"},{"key":"ref33","first-page":"40","article-title":"Netfilter’s connection tracking system","volume":"31","author":"ayuso","year":"2006","journal-title":"USENIX Mag"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1016\/S1007-0214(09)70003-3"},{"key":"ref31","first-page":"310","article-title":"H\/W based stateful packet inspection using a novel session architecture","volume":"2","author":"yoon","year":"2008","journal-title":"Int J Comput"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1109\/TCC.2016.2554548"},{"journal-title":"Maximizing Firewall Availability Techniques on Improving Resilience to Session Table DoS Attacks Version 1 8","year":"2002","key":"ref37"},{"journal-title":"Denial-of-Service Attacks Feature Guide for Security Devices","year":"2015","key":"ref36"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1109\/TC.2005.31"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1109\/TNSM.2011.122011.110151"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1007\/11602897_19"},{"key":"ref27","first-page":"615","article-title":"Stateful Inspection firewall session table processing","volume":"2","author":"li","year":"2005","journal-title":"Proc Int Conf Inf Technol Coding Comput (ITCC)"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1109\/TrustCom.2014.20"},{"journal-title":"Stateful Packet-Filtering Firewall","year":"2018","key":"ref2"},{"journal-title":"Inside Network Perimeter Security Stateful Firewalls","year":"2005","author":"northcutt","key":"ref1"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1109\/INFOCOM.2006.129"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1109\/INFCOM.2009.5062171"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/INFCOM.2007.106"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1109\/ICCET.2009.62"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1109\/ISDPE.2007.40"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2013.07.001"},{"key":"ref25","doi-asserted-by":"crossref","first-page":"250","DOI":"10.1049\/iet-ifs.2011.0146","article-title":"Dynamic rule and rule-field optimisation for improving firewall performance and security","volume":"8","author":"trabelsi","year":"2013","journal-title":"IET Inf Security"},{"journal-title":"Stateful Connection Tracking and NAT","year":"2014","author":"pettit","key":"ref50"},{"journal-title":"A Hash Function for Hash Table Lookup","year":"2016","author":"jenkins","key":"ref51"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1109\/DSN.2005.9"},{"key":"ref11","first-page":"1","article-title":"Consistency verification of stateful firewalls is not harder than the stateless case","volume":"lxiv","author":"butty\u00e1n","year":"2009","journal-title":"Info Commun J"},{"journal-title":"Chi-square Test","year":"2018","key":"ref40"},{"key":"ref12","first-page":"26","article-title":"Network access control interoperation using semantic Web technique","author":"fitzgerald","year":"2008","journal-title":"Proc the WOSIS"},{"key":"ref13","first-page":"174","article-title":"Handling stateful firewall anomalies","author":"cuppens","year":"2012","journal-title":"Proc 27th IFIP Int Inf Secur Privacy Conf (SEC)"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2013.01.004"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1109\/TNET.2013.2293625"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/HOTI.2012.17"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1016\/j.comcom.2015.05.017"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/LCN.2014.6925785"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/JSAC.2006.877140"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1109\/ICC.2012.6364218"},{"journal-title":"Stateful Firewalls","year":"2016","key":"ref3"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1007\/s10207-007-0045-7"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2015.05.010"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/INFCOM.2004.1354680"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1109\/INFCOM.2000.832496"},{"key":"ref49","doi-asserted-by":"publisher","DOI":"10.1109\/CRiSIS.2011.6061834"},{"key":"ref9","first-page":"199","article-title":"FIREMAN: A toolkit for firewall modeling and analysis","author":"yuan","year":"2006","journal-title":"Proc IEEE Symp Secur Privacy"},{"key":"ref46","first-page":"77","article-title":"Algorithmic complexity vulnerability analysis of a stateful firewall","volume":"522","author":"czubak","year":"2017","journal-title":"Proc 37th Int Conf Inf Syst Archit Technol (ISAT-Part II)"},{"journal-title":"FrameIP Packet Generator","year":"2018","key":"ref45"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.1109\/ICCCI.2017.8117772"},{"key":"ref47","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2017.2668602"},{"journal-title":"Common DDoS Attack Types","year":"2018","key":"ref42"},{"key":"ref41","first-page":"94","article-title":"An overview on intrusion detection system and types of attacks it can detect considering different protocols","volume":"2","author":"anand","year":"2012","journal-title":"Proc Int J Adv Res Comput Sci Softw Eng"},{"journal-title":"Hping Packet Generator","year":"2006","key":"ref44"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.14445\/22315381\/IJETT-V7P272"}],"container-title":["IEEE Access"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/6287639\/8274985\/08395423.pdf?arnumber=8395423","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,1,26]],"date-time":"2022-01-26T15:18:12Z","timestamp":1643210292000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/8395423\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018]]},"references-count":51,"URL":"https:\/\/doi.org\/10.1109\/access.2018.2850345","relation":{},"ISSN":["2169-3536"],"issn-type":[{"type":"electronic","value":"2169-3536"}],"subject":[],"published":{"date-parts":[[2018]]}}}