dc.creator | Pozo Hidalgo, Sergio | es |
dc.creator | Martínez Gasca, Rafael | es |
dc.creator | Reina Quintero, Antonia María | es |
dc.creator | Varela Vaca, Ángel Jesús | es |
dc.date.accessioned | 2022-11-16T08:21:06Z | |
dc.date.available | 2022-11-16T08:21:06Z | |
dc.date.issued | 2012 | |
dc.identifier.citation | Pozo Hidalgo, S., Martínez Gasca, R., Reina Quintero, A.M. y Varela Vaca, Á.J. (2012). CONFIDDENT: A model-driven consistent and non-redundant layer-3 firewall ACL design, development and maintenance framework. Journal of Systems and Software, 85 (2), 425-457. https://doi.org/10.1016/j.jss.2011.09.008. | |
dc.identifier.issn | 0164-1212 | es |
dc.identifier.issn | 1873-1228 | es |
dc.identifier.uri | https://hdl.handle.net/11441/139483 | |
dc.description.abstract | Design, development, and maintenance of firewall ACLs are very hard and error-prone tasks. Two of the reasons for these
difficulties are, on the one hand, the big gap that exists between the access control requirements and the complex and
heterogeneous firewall platforms and languages and, on the other hand, the absence of ACL design, development and
maintenance environments that integrate inconsis-tency and redundancy diagnosis. The use of modelling languages surely helps
but, although several ones have been proposed, none of them has been widely adopted by industry due to a combination of
factors: high complexity, unsupported firewall important features, no integrated model validation stages, etc. In this paper,
CONFIDDENT, a model-driven design, development and maintenance framework for layer-3 firewall ACLs is proposed. The
framework includes different modelling stages at different abstraction lev-els. In this way, non-experienced administrators can
use more abstract models while experienced ones can refine them to include platform-specific features. CONFIDDENT includes
different model diagnosis stages where the administrators can check the inconsistencies and redundancies of their models before
the automatic generation of the ACL to one of the many of the market-leader firewall platforms currently supported. | es |
dc.description.sponsorship | Ministerio de Educación y Ciencia TIN2009-13714 | es |
dc.format | application/pdf | es |
dc.format.extent | 33 | es |
dc.language.iso | eng | es |
dc.publisher | Elsevier | es |
dc.relation.ispartof | Journal of Systems and Software, 85 (2), 425-457. | |
dc.rights | Attribution-NonCommercial-NoDerivatives 4.0 Internacional | * |
dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/4.0/ | * |
dc.subject | MDD | es |
dc.subject | MDA | es |
dc.subject | Firewall | es |
dc.subject | Maintenance | es |
dc.subject | Development | es |
dc.subject | Diagnosis | es |
dc.title | CONFIDDENT: A model-driven consistent and non-redundant layer-3 firewall ACL design, development and maintenance framework | es |
dc.type | info:eu-repo/semantics/article | es |
dcterms.identifier | https://ror.org/03yxnpp24 | |
dc.type.version | info:eu-repo/semantics/submittedVersion | es |
dc.rights.accessRights | info:eu-repo/semantics/openAccess | es |
dc.contributor.affiliation | Universidad de Sevilla. Departamento de Lenguajes y Sistemas Informáticos | es |
dc.relation.projectID | TIN2009-13714 | es |
dc.relation.publisherversion | https://www.sciencedirect.com/science/article/pii/S0164121211002354?via%3Dihub | es |
dc.identifier.doi | 10.1016/j.jss.2011.09.008 | es |
dc.contributor.group | Universidad de Sevilla. TIC-258: Data-centric Computing Research Hub | es |
dc.journaltitle | Journal of Systems and Software | es |
dc.publication.volumen | 85 | es |
dc.publication.issue | 2 | es |
dc.publication.initialPage | 425 | es |
dc.publication.endPage | 457 | es |
dc.contributor.funder | Ministerio de Educación y Ciencia (MEC). España | es |