An algebra is proposed for constructing and reasoning about anomaly-free firewall policies. Based on the notion of refinement as safe replacement, the algebra provides operators for sequential composition, union and intersection of policies. The algebra is used to specify and reason about iptables firewall policy configurations. A prototype policy management toolkit has been implemented.
CITATION STYLE
Neville, U., & Foley, S. N. (2016). Reasoning about firewall policies through refinement and composition. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 9766, pp. 268–284). Springer Verlag. https://doi.org/10.1007/978-3-319-41483-6_19
Mendeley helps you to discover research relevant for your work.