Publication Details
A Formal Model for Network-wide Security Analysis
MATOUŠEK, P.; RYŠAVÝ, O.; RÁB, J.; ŠVÉDA, M. A Formal Model for Network-wide Security Analysis. Proceeding of the 15 IEEE International Symposium and Workshop on the Engineering of Computer-based Systems. Belfast: University of Ulster, 2008. p. 171-181. ISBN: 0-7695-3141-5.
Czech title
Formální model a analýza bezpečnosti v počítačové síti
Type
conference paper
Language
English
Authors
Matoušek Petr, doc. Ing., Ph.D., M.A.
(DIFS)
Ryšavý Ondřej, doc. Ing., Ph.D. (DIFS)
Ráb Jaroslav, Ing.
Švéda Miroslav, prof. Ing., CSc. (UTKO)
Ryšavý Ondřej, doc. Ing., Ph.D. (DIFS)
Ráb Jaroslav, Ing.
Švéda Miroslav, prof. Ing., CSc. (UTKO)
URL
Keywords
network, security, modelling, filtering rules, reachability analysis
Abstract
Network designers perform challenging tasks with so many configuration options
that it is often hard or even impossible for a human to predict all potentially
dangerous situations. In this paper, we introduce a formal method approach for
verification of security constraints on networks with dynamic routing protocols
in use. A unifying model based on packet-filters is employed for
modelling of network behaviour. Over this graph model augmented with filtering
rules over edges verification of reachability properties can be made. In our
approach we also consider topology changes caused by dynamic routing protocols.
Published
2008
Pages
171–181
Proceedings
Proceeding of the 15 IEEE International Symposium and Workshop on the Engineering of Computer-based Systems
Conference
15th IEEE International Conference on Engineering of Computer-Based Systems, Belfast, GB
ISBN
0-7695-3141-5
Publisher
University of Ulster
Place
Belfast
BibTeX
@inproceedings{BUT27706,
author="Petr {Matoušek} and Ondřej {Ryšavý} and Jaroslav {Ráb} and Miroslav {Švéda}",
title="A Formal Model for Network-wide Security Analysis",
booktitle="Proceeding of the 15 IEEE International Symposium and Workshop on the Engineering of Computer-based Systems",
year="2008",
pages="171--181",
publisher="University of Ulster",
address="Belfast",
isbn="0-7695-3141-5",
url="https://www.fit.vut.cz/research/publication/8554/"
}
Files