Integrating static analysis and testing for firewall policies

Authors:
William Formyduval
Affiliations:
North Carolina State University, Raleigh, NC, USA
Venue:
Proceedings of the 24th ACM SIGPLAN conference companion on Object oriented programming systems languages and applications
Year:
2009

Citing 2
Cited 0

FIREMAN: A Toolkit for FIREwall Modeling and ANalysis

SP '06 Proceedings of the 2006 IEEE Symposium on Security and Privacy
Systematic Structural Testing of Firewall Policies

SRDS '08 Proceedings of the 2008 Symposium on Reliable Distributed Systems

Quantified Score

Hi-index	0.00

Visualization

Abstract

Static analysis is a technique of checking firewall policies for common misconfigurations. Because static analysis does not consider the desired behavior of a policy, it cannot detect faults located in partially masked rules. Our new approach, which integrates static analysis and testing, can detect misconfigurations located in partially masked rules.