Reasoning About Firewall Policies Through Refinement and Composition - Data and Applications Security and Privacy XXX
Conference Papers Year : 2016

Reasoning About Firewall Policies Through Refinement and Composition

Ultan Neville
  • Function : Author
  • PersonId : 1022669
University College Cork
Simon N. Foley
  • Function : Author
  • PersonId : 1001643
University College Cork

Abstract

An algebra is proposed for constructing and reasoning about anomaly-free firewall policies. Based on the notion of refinement as safe replacement, the algebra provides operators for sequential composition, union and intersection of policies. The algebra is used to specify and reason about iptables firewall policy configurations. A prototype policy management toolkit has been implemented.

Domains

Computer Science [cs]
Fichier principal
Vignette du fichier
428203_1_En_19_Chapter.pdf (337.84 Ko) Télécharger le fichier
Origin Files produced by the author(s)

Hal Ifip  : Connect in order to contact the contributor

https://inria.hal.science/hal-01633676

Submitted on : Monday, November 13, 2017-11:46:20 AM

Last modification on : Monday, June 15, 2020-1:38:03 PM

Long-term archiving on : Wednesday, February 14, 2018-2:33:45 PM

Download

Dates and versions

hal-01633676 , version 1 (13-11-2017)

Licence

Attribution

Identifiers

Cite

Ultan Neville, Simon N. Foley. Reasoning About Firewall Policies Through Refinement and Composition. 30th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec), Jul 2016, Trento, Italy. pp.268-284, ⟨10.1007/978-3-319-41483-6_19⟩. ⟨hal-01633676⟩

Export

BibTeX XML-TEI Dublin Core DC Terms EndNote DataCite

Collections

IFIP-LNCS IFIP IFIP-TC IFIP-WG IFIP-TC11 IFIP-WG11-3 IFIP-DBSEC
65 View
196 Download

Altmetric

Share

More