Result Details

Static Analysis of Routing and Firewall Policy Configurations

ŠVÉDA, M.; RYŠAVÝ, O.; DE SILVA, G.; MATOUŠEK, P.; RÁB, J. Static Analysis of Routing and Firewall Policy Configurations. In e-Business and Telecommunications. Communications in Computer and Information Science. LNCS CCIS, Vol.222. Heidelberg: Springer Science+Business Media B.V., 2012. no. 222, p. 39-53. ISBN: 978-3-642-25205-1. ISSN: 1865-0929.

Type

conference paper

Language

English

Authors

Švéda Miroslav, prof. Ing., CSc., DIFS (FIT), UTKO (FEEC)
Ryšavý Ondřej, doc. Ing., Ph.D., DIFS (FIT)
de Silva Hidda Marakkala Gayan Ruchika, MSc
Matoušek Petr, doc. Ing., Ph.D., M.A., DIFS (FIT)
Ráb Jaroslav, Ing., DIFS (FIT)

Abstract

Network design that meets customer's security requirements needs careful considerations when configuring routing and filtering rules. This paper deals with an approach to security analysis based on reachability calculations in dynamically routed networks. The contribution consists of proposing routing abstract model that enables to extend existing reachability analysis approaches to obtain a finer approximation. This approximation captures the effect of routing on packets forwarding. Thus in the combination with reachability calculations based on packet filtering analysis it provides valuable information for a network designer on possible security issues in designed network.

Keywords

Reachability, routing, filtering, forwarding

URL

Published

2012

Pages

39–53

Journal

Communications in Computer and Information Science, vol. 2012, no. 222, ISSN 1865-0929

Proceedings

e-Business and Telecommunications

Series

LNCS CCIS, Vol.222

Conference

7th International Joint Conference on e-Business and Telecommunications

ISBN

978-3-642-25205-1

Publisher

Springer Science+Business Media B.V.

Place

Heidelberg

DOI

10.1007/978-3-642-25206-8_2

UT WoS

000309952400002

EID Scopus

2-s2.0-84857521040

BibTeX

@inproceedings{BUT91464,
  author="Miroslav {Švéda} and Ondřej {Ryšavý} and Hidda Marakkala Gayan Ruchika {de Silva} and Petr {Matoušek} and Jaroslav {Ráb}",
  title="Static Analysis of Routing and Firewall Policy Configurations",
  booktitle="e-Business and Telecommunications",
  year="2012",
  series="LNCS CCIS, Vol.222",
  journal="Communications in Computer and Information Science",
  volume="2012",
  number="222",
  pages="39--53",
  publisher="Springer Science+Business Media B.V.",
  address="Heidelberg",
  doi="10.1007/978-3-642-25206-8\{_}2",
  isbn="978-3-642-25205-1",
  issn="1865-0929",
  url="https://www.scopus.com/record/display.uri?eid=2-s2.0-84857521040&origin=resultslist"
}

Files

Projects

Advanced secured, reliable and adaptive IT, BUT, Vnitřní projekty VUT, FIT-S-11-1, start: 2011-01-01, end: 2013-12-31, completed
ATLANTIS-DeSIRE^2: Dependable Systems International Research and Educational Experience, MZ, Ostatní programy MZ, ATLANTIS-DESIRE, start: 2008-10-01, end: 2013-09-30, completed
Automated attack processing, MPO, TIP, FR-TI1/037, start: 2009-10-01, end: 2013-09-30, completed
Centrum excelence IT4Innovations, MŠMT, Operační program Výzkum a vývoj pro inovace, ED1.1.00/02.0070, start: 2011-01-01, end: 2015-12-31, completed
Modern Tools for Detection and Mitigation of Cyber Criminality on the New Generation Internet, MV, Program bezpečnostního výzkumu České republiky 2010 - 2015, VG20102015022, start: 2010-10-01, end: 2015-09-30, completed
SCADA system for control and monitoring RT processes, TAČR, Program aplikovaného výzkumu a experimentálního vývoje ALFA, TA01010632, start: 2011-01-01, end: 2013-12-31, completed
Security-Oriented Research in Information Technology, MŠMT, Institucionální prostředky SR ČR (např. VZ, VC), MSM0021630528, start: 2007-01-01, end: 2013-12-31, running
TeamIT - Building Competitive Research Teams in IT, MŠMT, Operační program Vzdělávání pro konkurenceschopnost, EE2.3.09.0067, start: 2009-09-01, end: 2012-08-31, completed

Research groups

NES@FIT - Networks and distributed systems research group (RG NES@FIT)

Departments

Department of Information Systems (DIFS)