Ponencia
AFPL2, An Abstract Language for Firewall ACLs with NAT support
Autor/es | Pozo Hidalgo, Sergio
Varela Vaca, Ángel Jesús Martínez Gasca, Rafael |
Departamento | Universidad de Sevilla. Departamento de Lenguajes y Sistemas Informáticos |
Fecha de publicación | 2009 |
Fecha de depósito | 2022-11-15 |
Publicado en |
|
ISBN/ISSN | 978-0-7695-3666-8 |
Resumen | The design and management of firewall ACLs is a
very hard and error-prone task. Part of this complexity comes
from the fact that each firewall platform has its own low-level
language with a different functionality, ... The design and management of firewall ACLs is a very hard and error-prone task. Part of this complexity comes from the fact that each firewall platform has its own low-level language with a different functionality, syntax, and development environment. Although high-level languages have been proposed to model firewall ACLs, none of them has been widely adopted by the industry due to a combination of factors: high complexity, no support of important features of firewalls, etc. In this paper the most important access control policy languages are reviewed, with special focus on the development of firewall ACLs. Based on this analysis, a new domain specific language for firewall ACLs (AFPL2) is proposed, supporting more features that other languages do not cover (e.g. NAT). As the result of our design methodology, AFPL2 is very lightweight and easy to use. AFPL2 can be translated to existing low-level firewall languages, or be directly interpreted by firewall platforms, and is an extension to a previously developed language. |
Agencias financiadoras | Ministerio de Educación y Ciencia (MEC). España |
Identificador del proyecto | DPI2006-15476-C02-01 |
Cita | Pozo Hidalgo, S., Varela Vaca, Á.J. y Martínez Gasca, R. (2009). AFPL2, An Abstract Language for Firewall ACLs with NAT support. En DEPEND 2009: Second International Conference on Dependability (52-59), Athens, Greece: IEEE Computer Society. |
Ficheros | Tamaño | Formato | Ver | Descripción |
---|---|---|---|---|
Afpl2, an abstract language for ... | 318.1Kb | [PDF] | Ver/ | |