Skip to Main content Skip to Navigation
Conference papers

Reasoning About Firewall Policies Through Refinement and Composition

Abstract : An algebra is proposed for constructing and reasoning about anomaly-free firewall policies. Based on the notion of refinement as safe replacement, the algebra provides operators for sequential composition, union and intersection of policies. The algebra is used to specify and reason about iptables firewall policy configurations. A prototype policy management toolkit has been implemented.
Document type :
Conference papers
Complete list of metadata

Cited literature [20 references]  Display  Hide  Download

https://hal.inria.fr/hal-01633676
Contributor : Hal Ifip <>
Submitted on : Monday, November 13, 2017 - 11:46:20 AM
Last modification on : Monday, June 15, 2020 - 1:38:03 PM
Long-term archiving on: : Wednesday, February 14, 2018 - 2:33:45 PM

File

428203_1_En_19_Chapter.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Ultan Neville, Simon Foley. Reasoning About Firewall Policies Through Refinement and Composition. 30th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec), Jul 2016, Trento, Italy. pp.268-284, ⟨10.1007/978-3-319-41483-6_19⟩. ⟨hal-01633676⟩

Share

Metrics

Record views

150

Files downloads

268