Towards a framework for automatic firewalls configuration via argumentation reasoning
Towards a framework for automatic firewalls configuration via argumentation reasoning
Firewalls have been widely used to protect not only small and local networks but also large enterprise networks. The configuration of firewalls is mainly done by network administrators, thus, it suffers from human errors. This paper aims to solve the network administrators’ problem by introducing a formal approach that helps to configure centralized and distributed firewalls and automatically generate conflict-free firewall rules. We propose a novel framework, called ArgoFiCo, which is based on argumentation reasoning. Our framework automatically populates the firewalls of a network, given the network topology and the high-level requirements that represent how the network should behave. ArgoFiCo provides two strategies for firewall rules distribution.
Karafili, Erisa
f5efa31c-22b8-443e-8107-e488bd28918e
Valenza, Fulvio
46f98089-11bd-4250-a952-c7b2fe0bac85
Chen, Yichen
78d3c1da-4bd9-4295-8afc-69c15ac1fa34
Lupu, Emil
a7fda3ad-5b14-4199-b015-2316571edd7b
Karafili, Erisa
f5efa31c-22b8-443e-8107-e488bd28918e
Valenza, Fulvio
46f98089-11bd-4250-a952-c7b2fe0bac85
Chen, Yichen
78d3c1da-4bd9-4295-8afc-69c15ac1fa34
Lupu, Emil
a7fda3ad-5b14-4199-b015-2316571edd7b
Karafili, Erisa, Valenza, Fulvio, Chen, Yichen and Lupu, Emil
(2020)
Towards a framework for automatic firewalls configuration via argumentation reasoning.
In 6TH IEEE/IFIP Workshop on Security for Emerging Distributed Network Technologies (DISSECT).
4 pp
.
(In Press)
Record type:
Conference or Workshop Item
(Paper)
Abstract
Firewalls have been widely used to protect not only small and local networks but also large enterprise networks. The configuration of firewalls is mainly done by network administrators, thus, it suffers from human errors. This paper aims to solve the network administrators’ problem by introducing a formal approach that helps to configure centralized and distributed firewalls and automatically generate conflict-free firewall rules. We propose a novel framework, called ArgoFiCo, which is based on argumentation reasoning. Our framework automatically populates the firewalls of a network, given the network topology and the high-level requirements that represent how the network should behave. ArgoFiCo provides two strategies for firewall rules distribution.
More information
Accepted/In Press date: February 2020
Identifiers
Local EPrints ID: 438987
URI: http://eprints.soton.ac.uk/id/eprint/438987
PURE UUID: b68cf317-d2b5-4889-814a-5af2b827eab3
Catalogue record
Date deposited: 31 Mar 2020 16:30
Last modified: 14 Mar 2024 03:16
Export record
Contributors
Author:
Erisa Karafili
Author:
Fulvio Valenza
Author:
Yichen Chen
Author:
Emil Lupu
Download statistics
Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.
View more statistics