Sciweavers

ECBS
2008
IEEE

A Formal Model for Network-Wide Security Analysis

14 years 7 months ago
A Formal Model for Network-Wide Security Analysis
Network designers perform challenging tasks with so many configuration options that it is often hard or even impossible for a human to predict all potentially dangerous situations. In this paper, we introduce a formal method approach for verification of security constraints on networks with dynamic routing protocols in use. A unifying model based on packet-filters is employed for modelling of network behaviour. Over this graph model augmented with filtering rules over edges verification of reachability properties can be made. In our approach we also consider topology changes caused by dynamic routing protocols.
Petr Matousek, Jaroslav Ráb, Ondrej Rysavy,
Added 29 May 2010
Updated 29 May 2010
Type Conference
Year 2008
Where ECBS
Authors Petr Matousek, Jaroslav Ráb, Ondrej Rysavy, Miroslav Svéda
Comments (0)