Title :
A formal framework (Expression + Analysis) for network security
Author :
Laborde, R. ; Barrere, F. ; Benzekri, A.
Author_Institution :
IRIT, Univ. Paul Sabatier, Toulouse
Abstract :
Security mechanisms enforcement consists in configuring devices with the aim that they cooperate and guarantee the defined security goals. In the network context, this task is complex due to the number, the nature, and the interdependences of the devices to consider. We propose in this article a formal framework, which models the network security management information in order to verify the appliance of security goals. The framework is divided into two components. First, a formal language allows its user to graphically specify the abstract network security tactics while considering network topologies. Second, an associated evaluation method guarantees the consistency and the correctness of the tactics according to the security goals
Keywords :
Java; authorisation; computer network management; formal specification; formal verification; Java; abstract network security tactics; access control; formal language; network security mechanisms configuration; security goal verification; Access control; Access protocols; Authentication; Data security; Formal languages; Home appliances; ISO; Information management; Information security; Network topology;
Conference_Titel :
Network Computing and Applications, Fourth IEEE International Symposium on
Conference_Location :
Cambridge, MA
Print_ISBN :
0-7695-2326-9
