مرکز منطقه ای اطلاع رساني علوم و فناوري - On the Isofunctionality of Network Access Control Lists

DocumentCode :

3672848

Title :

On the Isofunctionality of Network Access Control Lists

Author :

Malek Belhaouane;Joaquin Garcia-Alfaro;Hervé

Author_Institution :

Inst. Mines-Telecom, Telecom SudParis, Evry, France

fYear :

2015

Firstpage :

168

Lastpage :

173

Abstract :

In a networking context, Access Control Lists (ACLs) refer to security rules associated to network equipment, such as routers, switches and firewalls. Methods and tools to automate the management of ACLs distributed among several equipment shall verify if the corresponding ACLs are functionally equivalent. In this paper, we address such a verification process. We present a formal method to verify when two ACLs are iso functional and illustrate our proposal over a practical example.

Keywords :

"Access control","Ports (Computers)","Proposals","Communication networks","Firewalls (computing)","Boolean functions"

Publisher :

ieee

Conference_Titel :

Availability, Reliability and Security (ARES), 2015 10th International Conference on

Type :

conf

DOI :

10.1109/ARES.2015.78

Filename :

7299910

Link To Document :

https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=3672848