Title :
A multi-view tool for checking the security semantics of router configurations
Author :
Peine, Holger ; Schwarz, Reinhard
Author_Institution :
Fraunhofer Inst. for Exp. Software Eng., Germany
Abstract :
Routers are critical components of IP networks, but hardly any tool support for analyzing their security exists to date. We have developed such a tool, named CROCODILE, that tracks the security implications of related configuration directives that may be scattered all over the router´s configuration, instead of analyzing only isolated configuration clauses like other tools do. Our tool offers several novel evaluation capabilities and presents its findings as a collection of multi-view displays, enabling the user to focus on selected aspects, and to navigate deeper and deeper into specific details. We demonstrate the practical use of CROCODILE, and a comparison with the well-known RAT tool illustrates CROCODILE´s remarkable capabilities.
Keywords :
IP networks; authorisation; telecommunication network routing; telecommunication security; CROCODILE multi-view tool; IP networks; RAT tool; router configurations; security semantics checking; Application software; Computer security; Databases; Displays; HTML; Humans; Inspection; Operating systems; Scattering; Software engineering;
Conference_Titel :
Computer Security Applications Conference, 2003. Proceedings. 19th Annual
Print_ISBN :
0-7695-2041-3
DOI :
10.1109/CSAC.2003.1254310
