Improved Formal Verification of SDN-Based Firewalls by Using TLA+

Improved Formal Verification of SDN-Based Firewalls by Using TLA+

In an article published in IEEE Access in 2020, researchers present an approach to using TLA+ for the formal verification of whether a network of SDN (Software-Defined Networking) switches implements the filtering rules of a given monolithic firewall. The distributed as well as monolithic firewalls...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE access 2023, Vol.11, p.107126-107134
1. Verfasser: Kapus, Tatjana
Format: Artikel
Sprache:eng
Schlagworte:
Behavioral sciences
Firewalls
Firewalls (computing)
formal specification
Formal verification
logic
Model checking
Network topology
Software defined networking
Switches
Topology
Verification
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page 107134
container_issue
container_start_page 107126
container_title IEEE access
container_volume 11
creator Kapus, Tatjana
description In an article published in IEEE Access in 2020, researchers present an approach to using TLA+ for the formal verification of whether a network of SDN (Software-Defined Networking) switches implements the filtering rules of a given monolithic firewall. The distributed as well as monolithic firewalls are specified with TLA+. It is shown that the correctness of the former with respect to the latter can be verified automatically by using the TLC model checker. The main contributions of this paper are the following improvements of that approach. Firstly, by specifying switches without using any variables, the time needed for the model checking is reduced significantly. For example, the verification of the same networks takes a few seconds with the new approach and does not end after several hours with the previous one. Secondly, the following problem is solved. With the latter, if a monolithic firewall allows a packet to pass through, all the paths in the distributed firewall which the packet is routed on must allow the same. Otherwise, the model checker proclaims the distributed firewall to be in error. We present an additional approach to the verification, which gives a positive answer if at least one of the paths allows the packet to pass through.
doi_str_mv 10.1109/ACCESS.2023.3320050
format Article
fullrecord <record><control><sourceid>proquest_ieee_</sourceid><recordid>TN_cdi_proquest_journals_2873585151</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><ieee_id>10265049</ieee_id><doaj_id>oai_doaj_org_article_72c402cf49984beea09dc0822d9e03ad</doaj_id><sourcerecordid>2873585151</sourcerecordid><originalsourceid>FETCH-LOGICAL-c359t-5aa88472c87a9941f5eec6e7f4dbf84301acd1c192abd3d5a6af0008a72985ff3</originalsourceid><addsrcrecordid>eNpNUEtPwkAQbowmEuUX6KGJR1PcR7fdPdYKSkL0AHjdDPsgSwqLu6Dh31ssMcxlJpPvMfMlyR1GA4yReKrqejidDggidEApQYihi6RHcCEyymhxeTZfJ_0YV6gt3q5Y2Uuq8Xob_LfR6ciHNTTppwnOOgU75zept-n05T17hngEuGB-oGliujik8-g2y3Q2qR5vkysLTTT9U79J5qPhrH7LJh-v47qaZIoyscsYAOd5SRQvQYgcW2aMKkxpc72wPKcIg9JYYUFgoalmUIA93gklEZxZS2-ScaerPazkNrg1hIP04OTfwoelhLBzqjGydckRUTYXgucLYwAJrRAnRAuDKOhW66HTan__2pu4kyu_D5v2fEl4SRlnmOEWRTuUCj7GYOy_K0byGL3sopfH6OUp-pZ137GcMeaMQQqGckF_AaEdfak</addsrcrecordid><sourcetype>Open Website</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>2873585151</pqid></control><display><type>article</type><title>Improved Formal Verification of SDN-Based Firewalls by Using TLA+</title><source>IEEE Open Access Journals</source><source>DOAJ Directory of Open Access Journals</source><source>Elektronische Zeitschriftenbibliothek - Frei zugängliche E-Journals</source><creator>Kapus, Tatjana</creator><creatorcontrib>Kapus, Tatjana</creatorcontrib><description>In an article published in IEEE Access in 2020, researchers present an approach to using TLA+ for the formal verification of whether a network of SDN (Software-Defined Networking) switches implements the filtering rules of a given monolithic firewall. The distributed as well as monolithic firewalls are specified with TLA+. It is shown that the correctness of the former with respect to the latter can be verified automatically by using the TLC model checker. The main contributions of this paper are the following improvements of that approach. Firstly, by specifying switches without using any variables, the time needed for the model checking is reduced significantly. For example, the verification of the same networks takes a few seconds with the new approach and does not end after several hours with the previous one. Secondly, the following problem is solved. With the latter, if a monolithic firewall allows a packet to pass through, all the paths in the distributed firewall which the packet is routed on must allow the same. Otherwise, the model checker proclaims the distributed firewall to be in error. We present an additional approach to the verification, which gives a positive answer if at least one of the paths allows the packet to pass through.</description><identifier>ISSN: 2169-3536</identifier><identifier>EISSN: 2169-3536</identifier><identifier>DOI: 10.1109/ACCESS.2023.3320050</identifier><identifier>CODEN: IAECCG</identifier><language>eng</language><publisher>Piscataway: IEEE</publisher><subject>Behavioral sciences ; Firewalls ; Firewalls (computing) ; formal specification ; Formal verification ; logic ; Model checking ; Network topology ; Software defined networking ; Switches ; Topology ; Verification</subject><ispartof>IEEE access, 2023, Vol.11, p.107126-107134</ispartof><rights>Copyright The Institute of Electrical and Electronics Engineers, Inc. (IEEE) 2023</rights><lds50>peer_reviewed</lds50><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed><cites>FETCH-LOGICAL-c359t-5aa88472c87a9941f5eec6e7f4dbf84301acd1c192abd3d5a6af0008a72985ff3</cites><orcidid>0000-0003-3228-3941</orcidid></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://ieeexplore.ieee.org/document/10265049$$EHTML$$P50$$Gieee$$Hfree_for_read</linktohtml><link.rule.ids>314,776,780,860,2096,4010,27610,27900,27901,27902,54908</link.rule.ids></links><search><creatorcontrib>Kapus, Tatjana</creatorcontrib><title>Improved Formal Verification of SDN-Based Firewalls by Using TLA+</title><title>IEEE access</title><addtitle>Access</addtitle><description>In an article published in IEEE Access in 2020, researchers present an approach to using TLA+ for the formal verification of whether a network of SDN (Software-Defined Networking) switches implements the filtering rules of a given monolithic firewall. The distributed as well as monolithic firewalls are specified with TLA+. It is shown that the correctness of the former with respect to the latter can be verified automatically by using the TLC model checker. The main contributions of this paper are the following improvements of that approach. Firstly, by specifying switches without using any variables, the time needed for the model checking is reduced significantly. For example, the verification of the same networks takes a few seconds with the new approach and does not end after several hours with the previous one. Secondly, the following problem is solved. With the latter, if a monolithic firewall allows a packet to pass through, all the paths in the distributed firewall which the packet is routed on must allow the same. Otherwise, the model checker proclaims the distributed firewall to be in error. We present an additional approach to the verification, which gives a positive answer if at least one of the paths allows the packet to pass through.</description><subject>Behavioral sciences</subject><subject>Firewalls</subject><subject>Firewalls (computing)</subject><subject>formal specification</subject><subject>Formal verification</subject><subject>logic</subject><subject>Model checking</subject><subject>Network topology</subject><subject>Software defined networking</subject><subject>Switches</subject><subject>Topology</subject><subject>Verification</subject><issn>2169-3536</issn><issn>2169-3536</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2023</creationdate><recordtype>article</recordtype><sourceid>ESBDL</sourceid><sourceid>RIE</sourceid><sourceid>DOA</sourceid><recordid>eNpNUEtPwkAQbowmEuUX6KGJR1PcR7fdPdYKSkL0AHjdDPsgSwqLu6Dh31ssMcxlJpPvMfMlyR1GA4yReKrqejidDggidEApQYihi6RHcCEyymhxeTZfJ_0YV6gt3q5Y2Uuq8Xob_LfR6ciHNTTppwnOOgU75zept-n05T17hngEuGB-oGliujik8-g2y3Q2qR5vkysLTTT9U79J5qPhrH7LJh-v47qaZIoyscsYAOd5SRQvQYgcW2aMKkxpc72wPKcIg9JYYUFgoalmUIA93gklEZxZS2-ScaerPazkNrg1hIP04OTfwoelhLBzqjGydckRUTYXgucLYwAJrRAnRAuDKOhW66HTan__2pu4kyu_D5v2fEl4SRlnmOEWRTuUCj7GYOy_K0byGL3sopfH6OUp-pZ137GcMeaMQQqGckF_AaEdfak</recordid><startdate>2023</startdate><enddate>2023</enddate><creator>Kapus, Tatjana</creator><general>IEEE</general><general>The Institute of Electrical and Electronics Engineers, Inc. (IEEE)</general><scope>97E</scope><scope>ESBDL</scope><scope>RIA</scope><scope>RIE</scope><scope>AAYXX</scope><scope>CITATION</scope><scope>7SC</scope><scope>7SP</scope><scope>7SR</scope><scope>8BQ</scope><scope>8FD</scope><scope>JG9</scope><scope>JQ2</scope><scope>L7M</scope><scope>L~C</scope><scope>L~D</scope><scope>DOA</scope><orcidid>https://orcid.org/0000-0003-3228-3941</orcidid></search><sort><creationdate>2023</creationdate><title>Improved Formal Verification of SDN-Based Firewalls by Using TLA+</title><author>Kapus, Tatjana</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c359t-5aa88472c87a9941f5eec6e7f4dbf84301acd1c192abd3d5a6af0008a72985ff3</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2023</creationdate><topic>Behavioral sciences</topic><topic>Firewalls</topic><topic>Firewalls (computing)</topic><topic>formal specification</topic><topic>Formal verification</topic><topic>logic</topic><topic>Model checking</topic><topic>Network topology</topic><topic>Software defined networking</topic><topic>Switches</topic><topic>Topology</topic><topic>Verification</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Kapus, Tatjana</creatorcontrib><collection>IEEE All-Society Periodicals Package (ASPP) 2005-present</collection><collection>IEEE Open Access Journals</collection><collection>IEEE All-Society Periodicals Package (ASPP) 1998-Present</collection><collection>IEEE Electronic Library (IEL)</collection><collection>CrossRef</collection><collection>Computer and Information Systems Abstracts</collection><collection>Electronics &amp; Communications Abstracts</collection><collection>Engineered Materials Abstracts</collection><collection>METADEX</collection><collection>Technology Research Database</collection><collection>Materials Research Database</collection><collection>ProQuest Computer Science Collection</collection><collection>Advanced Technologies Database with Aerospace</collection><collection>Computer and Information Systems Abstracts – Academic</collection><collection>Computer and Information Systems Abstracts Professional</collection><collection>DOAJ Directory of Open Access Journals</collection><jtitle>IEEE access</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Kapus, Tatjana</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Improved Formal Verification of SDN-Based Firewalls by Using TLA+</atitle><jtitle>IEEE access</jtitle><stitle>Access</stitle><date>2023</date><risdate>2023</risdate><volume>11</volume><spage>107126</spage><epage>107134</epage><pages>107126-107134</pages><issn>2169-3536</issn><eissn>2169-3536</eissn><coden>IAECCG</coden><abstract>In an article published in IEEE Access in 2020, researchers present an approach to using TLA+ for the formal verification of whether a network of SDN (Software-Defined Networking) switches implements the filtering rules of a given monolithic firewall. The distributed as well as monolithic firewalls are specified with TLA+. It is shown that the correctness of the former with respect to the latter can be verified automatically by using the TLC model checker. The main contributions of this paper are the following improvements of that approach. Firstly, by specifying switches without using any variables, the time needed for the model checking is reduced significantly. For example, the verification of the same networks takes a few seconds with the new approach and does not end after several hours with the previous one. Secondly, the following problem is solved. With the latter, if a monolithic firewall allows a packet to pass through, all the paths in the distributed firewall which the packet is routed on must allow the same. Otherwise, the model checker proclaims the distributed firewall to be in error. We present an additional approach to the verification, which gives a positive answer if at least one of the paths allows the packet to pass through.</abstract><cop>Piscataway</cop><pub>IEEE</pub><doi>10.1109/ACCESS.2023.3320050</doi><tpages>9</tpages><orcidid>https://orcid.org/0000-0003-3228-3941</orcidid><oa>free_for_read</oa></addata></record>
fulltext fulltext
identifier ISSN: 2169-3536
ispartof IEEE access, 2023, Vol.11, p.107126-107134
issn 2169-3536
2169-3536
language eng
recordid cdi_proquest_journals_2873585151
source IEEE Open Access Journals; DOAJ Directory of Open Access Journals; Elektronische Zeitschriftenbibliothek - Frei zugängliche E-Journals
subjects Behavioral sciences
Firewalls
Firewalls (computing)
formal specification
Formal verification
logic
Model checking
Network topology
Software defined networking
Switches
Topology
Verification
title Improved Formal Verification of SDN-Based Firewalls by Using TLA+
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-02-03T19%3A42%3A30IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_ieee_&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Improved%20Formal%20Verification%20of%20SDN-Based%20Firewalls%20by%20Using%20TLA+&rft.jtitle=IEEE%20access&rft.au=Kapus,%20Tatjana&rft.date=2023&rft.volume=11&rft.spage=107126&rft.epage=107134&rft.pages=107126-107134&rft.issn=2169-3536&rft.eissn=2169-3536&rft.coden=IAECCG&rft_id=info:doi/10.1109/ACCESS.2023.3320050&rft_dat=%3Cproquest_ieee_%3E2873585151%3C/proquest_ieee_%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=2873585151&rft_id=info:pmid/&rft_ieee_id=10265049&rft_doaj_id=oai_doaj_org_article_72c402cf49984beea09dc0822d9e03ad&rfr_iscdi=true