Reasoning About Firewall Policies Through Refinement and Composition

Abstract : An algebra is proposed for constructing and reasoning about anomaly-free firewall policies. Based on the notion of refinement as safe replacement, the algebra provides operators for sequential composition, union and intersection of policies. The algebra is used to specify and reason about iptables firewall policy configurations. A prototype policy management toolkit has been implemented.
Type de document :
Communication dans un congrès
Silvio Ranise; Vipin Swarup. 30th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec), Jul 2016, Trento, Italy. Springer International Publishing, Lecture Notes in Computer Science, LNCS-9766, pp.268-284, 2016, Data and Applications Security and Privacy XXX. 〈10.1007/978-3-319-41483-6_19〉
Liste complète des métadonnées

Littérature citée [20 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01633676
Contributeur : Hal Ifip <>
Soumis le : lundi 13 novembre 2017 - 11:46:20
Dernière modification le : lundi 13 novembre 2017 - 11:48:28
Document(s) archivé(s) le : mercredi 14 février 2018 - 14:33:45

Fichier

 Accès restreint
Fichier visible le : 2019-01-01

Connectez-vous pour demander l'accès au fichier

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Ultan Neville, Simon Foley. Reasoning About Firewall Policies Through Refinement and Composition. Silvio Ranise; Vipin Swarup. 30th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec), Jul 2016, Trento, Italy. Springer International Publishing, Lecture Notes in Computer Science, LNCS-9766, pp.268-284, 2016, Data and Applications Security and Privacy XXX. 〈10.1007/978-3-319-41483-6_19〉. 〈hal-01633676〉

Partager

Métriques

Consultations de la notice

29