A model-driven approach for the extraction of network access-control policies

Salvador Martínez; Jordi Cabot; Joaquin Garcia-Alfaro; Frédéric Cuppens; Nora Cuppens-Boulahia

doi:10.1145/2422498.2422503

A model-driven approach for the extraction of network access-control policies

Salvador Martínez
, Jordi Cabot
, Joaquin Garcia-Alfaro
, Frédéric Cuppens
, Nora Cuppens-Boulahia

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Network security constitutes a critical concern when developing and maintaining nowadays corporate information systems. Firewalls are a key element of network security by filtering the traffic of the network in compliance with a number of access control rules that enforce a given security policy. Unfortunately, once implemented, and due to the complexity of firewall configuration languages and the underlying network topology, knowing which security policy is actually being enforced by the network system is a complex and time consuming task that requires low-level and, often, vendor-specific expertise. In an always-evolving context, where security policies are often updated to respond to new security requirements, this discovery phase becomes critical since it could hamper the proper evolution of the system and compromise its security. To tackle this problem, our approach generates an abstract model of the firewall configurations in a network that facilitates the understanding and evolution of network security policies.

Original language	English
Title of host publication	Proceedings of the Workshop on Model-Driven Security, MDsec 2012
DOIs	https://doi.org/10.1145/2422498.2422503
Publication status	Published - 1 Dec 2012
Externally published	Yes
Event	Workshop on Model-Driven Security, MDsec 2012 - Innsbruck, Austria Duration: 1 Oct 2012 → 5 Oct 2012

Publication series

Name	Proceedings of the Workshop on Model-Driven Security, MDsec 2012

Conference

Conference	Workshop on Model-Driven Security, MDsec 2012
Country/Territory	Austria
City	Innsbruck
Period	1/10/12 → 5/10/12

Keywords

model-driven
reverse-engineering
security

Access to Document

10.1145/2422498.2422503

Cite this

@inproceedings{4664d961c9d045f5b889a3417eacb6f5,

title = "A model-driven approach for the extraction of network access-control policies",

abstract = "Network security constitutes a critical concern when developing and maintaining nowadays corporate information systems. Firewalls are a key element of network security by filtering the traffic of the network in compliance with a number of access control rules that enforce a given security policy. Unfortunately, once implemented, and due to the complexity of firewall configuration languages and the underlying network topology, knowing which security policy is actually being enforced by the network system is a complex and time consuming task that requires low-level and, often, vendor-specific expertise. In an always-evolving context, where security policies are often updated to respond to new security requirements, this discovery phase becomes critical since it could hamper the proper evolution of the system and compromise its security. To tackle this problem, our approach generates an abstract model of the firewall configurations in a network that facilitates the understanding and evolution of network security policies.",

keywords = "model-driven, reverse-engineering, security",

author = "Salvador Mart{\'i}nez and Jordi Cabot and Joaquin Garcia-Alfaro and Fr{\'e}d{\'e}ric Cuppens and Nora Cuppens-Boulahia",

year = "2012",

month = dec,

day = "1",

doi = "10.1145/2422498.2422503",

language = "English",

isbn = "9781450318068",

series = "Proceedings of the Workshop on Model-Driven Security, MDsec 2012",

booktitle = "Proceedings of the Workshop on Model-Driven Security, MDsec 2012",

note = "Workshop on Model-Driven Security, MDsec 2012 ; Conference date: 01-10-2012 Through 05-10-2012",

}

Martínez, S, Cabot, J, Garcia-Alfaro, J, Cuppens, F & Cuppens-Boulahia, N 2012, A model-driven approach for the extraction of network access-control policies. in Proceedings of the Workshop on Model-Driven Security, MDsec 2012. Proceedings of the Workshop on Model-Driven Security, MDsec 2012, Workshop on Model-Driven Security, MDsec 2012, Innsbruck, Austria, 1/10/12. https://doi.org/10.1145/2422498.2422503

A model-driven approach for the extraction of network access-control policies. / Martínez, Salvador; Cabot, Jordi; Garcia-Alfaro, Joaquin et al.
Proceedings of the Workshop on Model-Driven Security, MDsec 2012. 2012. (Proceedings of the Workshop on Model-Driven Security, MDsec 2012).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - A model-driven approach for the extraction of network access-control policies

AU - Martínez, Salvador

AU - Cabot, Jordi

AU - Garcia-Alfaro, Joaquin

AU - Cuppens, Frédéric

AU - Cuppens-Boulahia, Nora

PY - 2012/12/1

Y1 - 2012/12/1

N2 - Network security constitutes a critical concern when developing and maintaining nowadays corporate information systems. Firewalls are a key element of network security by filtering the traffic of the network in compliance with a number of access control rules that enforce a given security policy. Unfortunately, once implemented, and due to the complexity of firewall configuration languages and the underlying network topology, knowing which security policy is actually being enforced by the network system is a complex and time consuming task that requires low-level and, often, vendor-specific expertise. In an always-evolving context, where security policies are often updated to respond to new security requirements, this discovery phase becomes critical since it could hamper the proper evolution of the system and compromise its security. To tackle this problem, our approach generates an abstract model of the firewall configurations in a network that facilitates the understanding and evolution of network security policies.

AB - Network security constitutes a critical concern when developing and maintaining nowadays corporate information systems. Firewalls are a key element of network security by filtering the traffic of the network in compliance with a number of access control rules that enforce a given security policy. Unfortunately, once implemented, and due to the complexity of firewall configuration languages and the underlying network topology, knowing which security policy is actually being enforced by the network system is a complex and time consuming task that requires low-level and, often, vendor-specific expertise. In an always-evolving context, where security policies are often updated to respond to new security requirements, this discovery phase becomes critical since it could hamper the proper evolution of the system and compromise its security. To tackle this problem, our approach generates an abstract model of the firewall configurations in a network that facilitates the understanding and evolution of network security policies.

KW - model-driven

KW - reverse-engineering

KW - security

UR - https://www.scopus.com/pages/publications/84873844245

U2 - 10.1145/2422498.2422503

DO - 10.1145/2422498.2422503

M3 - Conference contribution

AN - SCOPUS:84873844245

SN - 9781450318068

T3 - Proceedings of the Workshop on Model-Driven Security, MDsec 2012

BT - Proceedings of the Workshop on Model-Driven Security, MDsec 2012

T2 - Workshop on Model-Driven Security, MDsec 2012

Y2 - 1 October 2012 through 5 October 2012

ER -

A model-driven approach for the extraction of network access-control policies

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this