The University of Southampton
University of Southampton Institutional Repository

Towards a framework for automatic firewalls configuration via argumentation reasoning

Towards a framework for automatic firewalls configuration via argumentation reasoning
Towards a framework for automatic firewalls configuration via argumentation reasoning
Firewalls have been widely used to protect not only small and local networks but also large enterprise networks. The configuration of firewalls is mainly done by network administrators, thus, it suffers from human errors. This paper aims to solve the network administrators’ problem by introducing a formal approach that helps to configure centralized and distributed firewalls and automatically generate conflict-free firewall rules. We propose a novel framework, called ArgoFiCo, which is based on argumentation reasoning. Our framework automatically populates the firewalls of a network, given the network topology and the high-level requirements that represent how the network should behave. ArgoFiCo provides two strategies for firewall rules distribution.
Karafili, Erisa
f5efa31c-22b8-443e-8107-e488bd28918e
Valenza, Fulvio
46f98089-11bd-4250-a952-c7b2fe0bac85
Chen, Yichen
78d3c1da-4bd9-4295-8afc-69c15ac1fa34
Lupu, Emil
a7fda3ad-5b14-4199-b015-2316571edd7b
Karafili, Erisa
f5efa31c-22b8-443e-8107-e488bd28918e
Valenza, Fulvio
46f98089-11bd-4250-a952-c7b2fe0bac85
Chen, Yichen
78d3c1da-4bd9-4295-8afc-69c15ac1fa34
Lupu, Emil
a7fda3ad-5b14-4199-b015-2316571edd7b

Karafili, Erisa, Valenza, Fulvio, Chen, Yichen and Lupu, Emil (2020) Towards a framework for automatic firewalls configuration via argumentation reasoning. In 6TH IEEE/IFIP Workshop on Security for Emerging Distributed Network Technologies (DISSECT). 4 pp . (In Press)

Record type: Conference or Workshop Item (Paper)

Abstract

Firewalls have been widely used to protect not only small and local networks but also large enterprise networks. The configuration of firewalls is mainly done by network administrators, thus, it suffers from human errors. This paper aims to solve the network administrators’ problem by introducing a formal approach that helps to configure centralized and distributed firewalls and automatically generate conflict-free firewall rules. We propose a novel framework, called ArgoFiCo, which is based on argumentation reasoning. Our framework automatically populates the firewalls of a network, given the network topology and the high-level requirements that represent how the network should behave. ArgoFiCo provides two strategies for firewall rules distribution.

Text
ArgoFiCo
Download (332kB)

More information

Accepted/In Press date: February 2020

Identifiers

Local EPrints ID: 438987
URI: http://eprints.soton.ac.uk/id/eprint/438987
PURE UUID: b68cf317-d2b5-4889-814a-5af2b827eab3
ORCID for Erisa Karafili: ORCID iD orcid.org/0000-0002-8250-4389

Catalogue record

Date deposited: 31 Mar 2020 16:30
Last modified: 14 Mar 2024 03:16

Export record

Contributors

Author: Erisa Karafili ORCID iD
Author: Fulvio Valenza
Author: Yichen Chen
Author: Emil Lupu

Download statistics

Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.

View more statistics

Atom RSS 1.0 RSS 2.0

Contact ePrints Soton: eprints@soton.ac.uk

ePrints Soton supports OAI 2.0 with a base URL of http://eprints.soton.ac.uk/cgi/oai2

This repository has been built using EPrints software, developed at the University of Southampton, but available to everyone to use.

We use cookies to ensure that we give you the best experience on our website. If you continue without changing your settings, we will assume that you are happy to receive cookies on the University of Southampton website.

×