An Approach for Automated Network-Wide Security Analysis

An Approach for Automated Network-Wide Security Analysis

This paper deals with an approach to security analysis of TCP/IP-based computer networks. The method developed stems from a formal model of network topology with changing link states, and deploys bounded model checking of network security properties supported by SAT-based decision procedure. Its imp...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Sveda, Miroslav, Rysavy, Ondrej, Matousek, Petr, Rab, Jaroslav
Format: Tagungsbericht
Sprache:eng
Schlagworte:
bounded model-checking
changing network topology
Computer security
Data security
Information analysis
Information filtering
Information filters
Information security
IP networks
network security analysis
Network topology
Protection
SAT-based decision procedure
TCP/IP networks
Web server
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:This paper deals with an approach to security analysis of TCP/IP-based computer networks. The method developed stems from a formal model of network topology with changing link states, and deploys bounded model checking of network security properties supported by SAT-based decision procedure. Its implementation should consist of a set of tools that can provide automatic analysis of router configurations, network topologies, and states with respect to checked properties. While this project aims at supporting a real practice, it stems from the previous, more theoretical research designing the method in detail including its formal background.
DOI:10.1109/ICN.2010.69