• DocumentCode
    3705273
  • Title

    A firewall algebra for OpenStack

  • Author

    Simon N. Foley;Ultan Neville

  • Author_Institution
    Department of Computer Science, University College Cork, Ireland
  • fYear
    2015
  • Firstpage
    541
  • Lastpage
    549
  • Abstract
    An algebra is proposed for constructing and reasoning about anomaly-free firewall policies. Based on the notion of refinement as safe replacement, the algebra provides operators for sequential composition, union and intersection of policies. The algebra is used to provide a uniform way to specify and reason about OpenStack host-based and network access controls, in particular, security group and perimeter firewall policies.
  • Keywords
    "Algebra","IP networks","Ports (Computers)","Cloud computing","Access control","Servers"
  • Publisher
    ieee
  • Conference_Titel
    Communications and Network Security (CNS), 2015 IEEE Conference on
  • Type

    conf

  • DOI
    10.1109/CNS.2015.7346867
  • Filename
    7346867
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3705273