The Open UniversitySkip to content
 

Using argumentation logic for firewall configuration management

Bandara, A. K.; Kakas, A. C.; Lupu, E. C. and Russo, A. (2009). Using argumentation logic for firewall configuration management. In: IFIP/IEEE International Symposium on Integrated Network Management (IM '09), 1-5 June 2009, Long Island, USA, pp. 180–187.

URL: http://cms.comsoc.org/eprise/main/SiteGen/IM_2009/...
DOI (Digital Object Identifier) Link: http://dx.doi.org/10.1109/INM.2009.5188808
Google Scholar: Look up in Google Scholar

Abstract

Firewalls remain the main perimeter security protection for corporate networks. However, network size and complexity make firewall configuration and maintenance notoriously difficult. Tools are needed to analyse firewall configurations for errors, to verify that they correctly implement security requirements and to generate configurations from higher-level requirements. In this paper we extend our previous work on the use of formal argumentation and preference reasoning for firewall policy analysis and develop means to automatically generate firewall policies from higher-level requirements. This permits both analysis and generation to be done within the same framework, thus accommodating a wide variety of scenarios for authoring and maintaining firewall configurations. We validate our approach by applying it to both examples from the literature and real firewall configurations of moderate size (ap 150 rules).

Item Type: Conference Item
Keywords: authorisation; corporate networks; firewall configuration management; firewall policy analysis; formal argumentation logic; formal logic; preference reasoning; security protection; software maintenance;
Academic Unit/Department: Mathematics, Computing and Technology > Computing & Communications
Interdisciplinary Research Centre: Centre for Research in Computing (CRC)
Item ID: 18484
Depositing User: Arosha Bandara
Date Deposited: 23 Sep 2009 15:35
Last Modified: 03 Sep 2013 14:16
URI: http://oro.open.ac.uk/id/eprint/18484
Share this page:

Actions (login may be required)

View Item
Report issue / request change

Policies | Disclaimer

© The Open University   + 44 (0)870 333 4340   general-enquiries@open.ac.uk