2015 10th International Conference on Availability, Reliability and Security (ARES) (2015)
Aug. 24, 2015 to Aug. 27, 2015
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ARES.2015.78
In a networking context, Access Control Lists (ACLs) refer to security rules associated to network equipment, such as routers, switches and firewalls. Methods and tools to automate the management of ACLs distributed among several equipment shall verify if the corresponding ACLs are functionally equivalent. In this paper, we address such a verification process. We present a formal method to verify when two ACLs are iso functional and illustrate our proposal over a practical example.
Access control, Ports (Computers), Proposals, Communication networks, Firewalls (computing), Boolean functions
M. Belhaouane, J. Garcia-Alfaro and H. Debar, "On the Isofunctionality of Network Access Control Lists," 2015 10th International Conference on Availability, Reliability and Security (ARES), Toulouse, France, 2015, pp. 168-173.