Sciweavers

DSOM
2006
Springer

Using Argumentation Logic for Firewall Policy Specification and Analysis

14 years 4 months ago
Using Argumentation Logic for Firewall Policy Specification and Analysis
Firewalls are important perimeter security mechanisms that imple-ment an organisation's network security requirements and can be notoriously difficult to configure correctly. Given their widespread use, it is crucial that network administrators have tools to translate their security requirements into firewall configuration rules and ensure that these rules are consistent with each other. In this paper we propose an approach to firewall policy specification and analysis that uses a formal framework for argumentation based preference reasoning. By administrators to define network abstractions (e.g. subnets, protocols etc) security requirements can be specified in a declarative manner using high-level terms. Also it is possible to specify preferences to express the importance of one requirement over another. The use of a formal framework means that the security requirements defined can be automatically analysed for inconsistencies and firewall configurations can be automatically gene...
Arosha K. Bandara, Antonis C. Kakas, Emil C. Lupu,
Added 22 Aug 2010
Updated 22 Aug 2010
Type Conference
Year 2006
Where DSOM
Authors Arosha K. Bandara, Antonis C. Kakas, Emil C. Lupu, Alessandra Russo
Comments (0)