ارسل ملاحظاتك

ارسل ملاحظاتك لنا







الرئيسية > A Formal Basis For The Design...>الوصف

A Formal Basis For The Design And Analysis Of Firewall Security Policies

المصدر: مجلة جامعة الملك سعود - علوم الحاسب والمعلومات
الناشر: جامعة الملك سعود
المؤلف الرئيسي: Khoumsi, Ahmed (Author)
مؤلفين آخرين: Erradi, Mohammed (Co-Author) , Krombi, Wadie (Co-Author)
المجلد/العدد: مج30, ع1
محكمة: نعم
الدولة: السعودية
التاريخ الميلادي: 2018
الصفحات: 51 - 66
DOI: 10.33948/0584-030-001-006
ISSN: 1319-1578
رقم MD: 974320
نوع المحتوى: بحوث ومقالات
اللغة: الإنجليزية
قواعد المعلومات: science
مواضيع:
تكنولوجيا الاتصالات | شبكة الإنترنت | أمن المعلومات
كلمات المؤلف المفتاحية:
Firewall Security Policy | Automata Based Policy | Completeness Verification | Anomaly Detection | Discrepancy Detection | Mixable Policy | Space And Time Complexities
رابط المحتوى:
PDF (صورة)     
صورة الغلاف QR قانون
حفظ في:
المستخلص: A firewall is the core of a well defined network security policy. This paper presents an automata-based method to study firewall security policies. We first propose a procedure that syn- thesizes an automaton that describes a security policy given as a table of rules. The synthesis pro- cedure is then used to develop procedures to detect: incompleteness, anomalies and discrepancies in security policies. A method is developed to represent the automaton by a policy qualified as mixable and that has practical utilities, such as ease to determine the whitelist and the blacklist of the policy. The developed procedures have been deeply evaluated in terms of time and space complexities. Then, a real case study has been investigated. The obtained results confirm that the developed pro- cedures have reasonable complexities and that their actual execution times are of the order of sec- onds. Finally, proofs of all results are provided.
ISSN: 1319-1578

عناصر مشابهة


© 2024 المنظومة. جميع الحقوق محفوظة.