Reasoning About Firewall Policies Through Refinement and Composition - Archive ouverte HAL Access content directly
Conference Papers Year : 2016

Reasoning About Firewall Policies Through Refinement and Composition

(1) , (1)
1
Ultan Neville
  • Function : Author
  • PersonId : 1022669
Simon N. Foley
  • Function : Author
  • PersonId : 1001643

Abstract

An algebra is proposed for constructing and reasoning about anomaly-free firewall policies. Based on the notion of refinement as safe replacement, the algebra provides operators for sequential composition, union and intersection of policies. The algebra is used to specify and reason about iptables firewall policy configurations. A prototype policy management toolkit has been implemented.
Fichier principal
Vignette du fichier
428203_1_En_19_Chapter.pdf (337.84 Ko) Télécharger le fichier
Origin : Files produced by the author(s)
Loading...

Dates and versions

hal-01633676 , version 1 (13-11-2017)

Licence

Attribution - CC BY 4.0

Identifiers

Cite

Ultan Neville, Simon N. Foley. Reasoning About Firewall Policies Through Refinement and Composition. 30th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec), Jul 2016, Trento, Italy. pp.268-284, ⟨10.1007/978-3-319-41483-6_19⟩. ⟨hal-01633676⟩
49 View
145 Download

Altmetric

Share

Gmail Facebook Twitter LinkedIn More