Firewalls are widely used as the first frontier to protect the network from intrusions, vulnerability exploitations, and cyber-attacks. Usually, the configuration of this critical component of network security is done manually by network administrators that introduce human errors. In this paper, we present an automatic tool that is based on a formal framework, called ArgoFiCo. Our tool automatically configures the distributed firewalls of the network by generating conflict-free firewalls’ configuration. ArgoFiCo is based on abduction and argumentation reasoning and it permits the identification and resolution of anomalies in firewalls. Our tool provides an answer to the human error problem as it automatically populates the firewalls of a network, given the network topology and the high-level requirements of the network behaviour.

Automatic Firewalls’ Configuration Using Argumentation Reasoning / Karafili, E.; Valenza, F.. - 12515:(2020), pp. 124-140. ((Intervento presentato al convegno 3rd International Workshop on Emerging Technologies for Authorization and Authentication, ETAA 2020 tenutosi a gbr nel 2020 [10.1007/978-3-030-64455-0_8].

Automatic Firewalls’ Configuration Using Argumentation Reasoning

Valenza F.
2020

Abstract

Firewalls are widely used as the first frontier to protect the network from intrusions, vulnerability exploitations, and cyber-attacks. Usually, the configuration of this critical component of network security is done manually by network administrators that introduce human errors. In this paper, we present an automatic tool that is based on a formal framework, called ArgoFiCo. Our tool automatically configures the distributed firewalls of the network by generating conflict-free firewalls’ configuration. ArgoFiCo is based on abduction and argumentation reasoning and it permits the identification and resolution of anomalies in firewalls. Our tool provides an answer to the human error problem as it automatically populates the firewalls of a network, given the network topology and the high-level requirements of the network behaviour.
978-3-030-64454-3
978-3-030-64455-0
File in questo prodotto:
File Dimensione Formato  
Karafili-Valenza2020_Chapter_AutomaticFirewallsConfiguratio.pdf

non disponibili

Tipologia: 2a Post-print versione editoriale / Version of Record
Licenza: Non Pubblico - Accesso privato/ristretto
Dimensione 540.6 kB
Formato Adobe PDF
540.6 kB Adobe PDF   Visualizza/Apri   Richiedi una copia
Pubblicazioni consigliate

Caricamento pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: http://hdl.handle.net/11583/2970050