[Club2] Invitation: Semantics-Preserving Simplification of Real-World Firewal... @ Tue Jun 2, 2015 14:30 - 16:00 (Club2)

julianbrunner at gmail.com julianbrunner at gmail.com
Thu May 28 13:13:14 CEST 2015 

You have been invited to the following event.

Title: Semantics-Preserving Simplification of Real-World Firewall Rule Sets
Authors: Cornelius Diekmann, Lars Hupel, Georg Carle
Type: FM talk rehearsal

Abstract:

The security provided by a firewall for a computer network almost  
completely depends on the rules it enforces. For over a decade, it has been  
a well-known and unsolved problem that the quality of many firewall rule  
sets is insufficient. Therefore, there are many tools to analyze them.  
However, we found that none of the available tools could handle typical,  
real-world iptables rulesets. This is due to the complex chain model used  
by iptables, but also to the vast amount of possible match conditions that  
occur in real-world firewalls, many of which are not understood by academic  
and open source tools.

In this paper, we provide algorithms to transform firewall rulesets. We  
reduce the execution model to a simple list model and use ternary logic to  
abstract over all unknown match conditions. These transformations enable  
existing tools to understand real-world firewall rules, which we  
demonstrate on four decently-sized rulesets. Using the Isabelle theorem  
prover, we formally show that all our algorithms preserve the firewall's  
filtering behavior.
When: Tue Jun 2, 2015 14:30 - 16:00 Berlin
Where: MI 01.09.014 (Church)
Calendar: Club2
Who:
     * Julian Brunner - creator
     * club2 at mailbroy.informatik.tu-muenchen.de
     * cornelius

Event details:  
https://www.google.com/calendar/event?action=VIEW&eid=Y2ZhM3UyaG41NGFxNmllbDlzZW1sb2FybTggY2x1YjJAbWFpbGJyb3kuaW5mb3JtYXRpay50dS1tdWVuY2hlbi5kZQ&tok=NTIjc2U2ZWJlM3RvZmY0Y2g1bm11bmlibTVtOThAZ3JvdXAuY2FsZW5kYXIuZ29vZ2xlLmNvbTk2ZDhmY2IzMTZjZWQzY2JiYWEzZGZlZmFlZGY5OThmZWE0ODBlMzg&ctz=Europe/Berlin&hl=en

Invitation from Google Calendar: https://www.google.com/calendar/

You are receiving this courtesy email at the account  
club2 at mailbroy.informatik.tu-muenchen.de because you are an attendee of  
this event.

To stop receiving future updates for this event, decline this event.  
Alternatively you can sign up for a Google account at  
https://www.google.com/calendar/ and control your notification settings for  
your entire calendar.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailmanbroy.informatik.tu-muenchen.de/pipermail/club2/attachments/20150528/fd8beb99/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: text/calendar
Size: 2597 bytes
Desc: not available
URL: <https://mailmanbroy.informatik.tu-muenchen.de/pipermail/club2/attachments/20150528/fd8beb99/attachment.ics>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: invite.ics
Type: application/ics
Size: 2651 bytes
Desc: not available
URL: <https://mailmanbroy.informatik.tu-muenchen.de/pipermail/club2/attachments/20150528/fd8beb99/attachment.bin>

More information about the Club2 mailing list