• DocumentCode
    3672848
  • Title

    On the Isofunctionality of Network Access Control Lists

  • Author

    Malek Belhaouane;Joaquin Garcia-Alfaro;Hervé

  • Author_Institution
    Inst. Mines-Telecom, Telecom SudParis, Evry, France
  • fYear
    2015
  • Firstpage
    168
  • Lastpage
    173
  • Abstract
    In a networking context, Access Control Lists (ACLs) refer to security rules associated to network equipment, such as routers, switches and firewalls. Methods and tools to automate the management of ACLs distributed among several equipment shall verify if the corresponding ACLs are functionally equivalent. In this paper, we address such a verification process. We present a formal method to verify when two ACLs are iso functional and illustrate our proposal over a practical example.
  • Keywords
    "Access control","Ports (Computers)","Proposals","Communication networks","Firewalls (computing)","Boolean functions"
  • Publisher
    ieee
  • Conference_Titel
    Availability, Reliability and Security (ARES), 2015 10th International Conference on
  • Type

    conf

  • DOI
    10.1109/ARES.2015.78
  • Filename
    7299910
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3672848