Title :
A rule relation calculus for verification and validation of firewalls
Author :
Kalita, Shobhanjana ; Hazarika, Shyamanta M.
Author_Institution :
Computer Science & Engineering, School of Engineering, Tezpur University, Assam, India
Abstract :
Rule based filter is a set of ordered filtering rules. Each rule is formed of a condition and an action. Condition is a set of network fields and can be seen as points in a topological space. Consequently each firewall rule can be seen as a region within the space of filtering fields. Anomalies are relations between rules that hint at possible misconfiguration of firewalls. In this paper, we put forward a calculus that analyzes the topological relationship between firewall rules. Anomalies are definable in the calculus. Within this framework, a constraint satisfaction technique is proposed to reconfigure an anomalous firewall.
Keywords :
Calculus; Correlation; Firewalls (computing); IP networks; Ports (Computers); Redundancy;
Conference_Titel :
Communications (NCC), 2013 National Conference on
Conference_Location :
New Delhi, India
Print_ISBN :
978-1-4673-5950-4
Electronic_ISBN :
978-1-4673-5951-1
DOI :
10.1109/NCC.2013.6488042
