Reasoning About Firewall Policies Through Refinement and Composition - Data and Applications Security and Privacy XXX
Conference Papers Year : 2016

Reasoning About Firewall Policies Through Refinement and Composition

Ultan Neville
  • Function : Author
  • PersonId : 1022669
Simon N. Foley
  • Function : Author
  • PersonId : 1001643

Abstract

An algebra is proposed for constructing and reasoning about anomaly-free firewall policies. Based on the notion of refinement as safe replacement, the algebra provides operators for sequential composition, union and intersection of policies. The algebra is used to specify and reason about iptables firewall policy configurations. A prototype policy management toolkit has been implemented.
Fichier principal
Vignette du fichier
428203_1_En_19_Chapter.pdf (337.84 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01633676 , version 1 (13-11-2017)

Licence

Identifiers

Cite

Ultan Neville, Simon N. Foley. Reasoning About Firewall Policies Through Refinement and Composition. 30th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec), Jul 2016, Trento, Italy. pp.268-284, ⟨10.1007/978-3-319-41483-6_19⟩. ⟨hal-01633676⟩
68 View
197 Download

Altmetric

Share

More