Publication Details

SECURITY ANALYSIS OF TCP/IP NETWORKS -- An Approach to Automatic Analysis of Network Security Properties

ŠVÉDA Miroslav, RYŠAVÝ Ondřej, MATOUŠEK Petr, RÁB Jaroslav and ČEJKA Rudolf. SECURITY ANALYSIS OF TCP/IP NETWORKS -- An Approach to Automatic Analysis of Network Security Properties. In: Proceedings of the International Conference on Data Communication Networking ICETE-DCNET 2010. Athens: Institute for Systems and Technologies of Information, Control and Communication, 2010, pp. 5-11. ISBN 978-989-8425-25-6.
Czech title
Bezpečnostní analýza TCP/IP sítí -- Přístup k automatické analýze bezpečnostních vlastností sítí
Type
conference paper
Language
english
Authors
Keywords

Intranet topology, dynamic routing, state-based reachability, security, bounded model checking, SAT

Abstract

This paper deals with an approach to security analysis of TCP/IP-based computer networks. The method developed stems from a formal model of network topology with changing link states, and deploys bounded model checking of network security properties supported by SAT-based decision procedure. Its implementation consists of a set of tools that provide automatic analysis of router configurations, network topologies, and states with respect to checked properties. While the paper aims at supporting a real practice, its form strives to be exact enough to explain the principles of the method in more detail.

Published
2010
Pages
5-11
Proceedings
Proceedings of the International Conference on Data Communication Networking ICETE-DCNET 2010
Conference
International Conference on Data Communication Networking + International Conference on Software and Data Technologies 2010, Athens, GR
ISBN
978-989-8425-25-6
Publisher
Institute for Systems and Technologies of Information, Control and Communication
Place
Athens, GR
BibTeX
@INPROCEEDINGS{FITPUB9266,
   author = "Miroslav \v{S}v\'{e}da and Ond\v{r}ej Ry\v{s}av\'{y} and Petr Matou\v{s}ek and Jaroslav R\'{a}b and Rudolf \v{C}ejka",
   title = "SECURITY ANALYSIS OF TCP/IP NETWORKS -- An Approach to Automatic Analysis of Network Security Properties",
   pages = "5--11",
   booktitle = "Proceedings of the International Conference on Data Communication Networking ICETE-DCNET 2010",
   year = 2010,
   location = "Athens, GR",
   publisher = "Institute for Systems and Technologies of Information, Control and Communication",
   ISBN = "978-989-8425-25-6",
   language = "english",
   url = "https://www.fit.vut.cz/research/publication/9266"
}
Back to top