Publication Details

A Formal Approach to Network Security Analysis

MATOUŠEK, P.; RYŠAVÝ, O.; ŠVÉDA, M.; RÁB, J.; ČEJKA, R. A Formal Approach to Network Security Analysis. Brno: Faculty of Information Technology BUT, 2008.

Czech title

Formální analýza síťové bezpečnosti

Type

report

Language

English

Authors

Matoušek Petr, doc. Ing., Ph.D., M.A. (DIFS)
Ryšavý Ondřej, doc. Ing., Ph.D. (DIFS)
Švéda Miroslav, prof. Ing., CSc. (UTKO)
Ráb Jaroslav, Ing.
Čejka Rudolf, Ing. (CVT)

Keywords

network security analysis, bounded model checking, network modeling, SAT-based decision procedure

Abstract

This paper deals with an approach to security analysis of TCP/IP-based computer networks. The method developed stems from a formal model of network topology with changing link states, and deploys bounded model checking of network security properties supported by SAT-based decision procedure. Its implementation consists of a set of tools that provide automatic analysis of router configurations, network topologies, and states with respect to checked properties. While the paper aims at supporting a real practice, its form strives to be exact enough to explain the principles of the method in detail.

Published

2008

Pages

Publisher

Faculty of Information Technology BUT

Place

Brno

BibTeX

@techreport{BUT192649,
  author="Petr {Matoušek} and Ondřej {Ryšavý} and Miroslav {Švéda} and Jaroslav {Ráb} and Rudolf {Čejka}",
  title="A Formal Approach to Network Security Analysis",
  year="2008",
  publisher="Faculty of Information Technology BUT",
  address="Brno",
  pages="20",
  url="https://www.fit.vut.cz/research/publication/8572/"
}

Files

pdf matousek_08_formalapproach.pdf 276 kB