Publication Details
SECURITY ANALYSIS OF TCP/IP NETWORKS -- An Approach to Automatic Analysis of Network Security Properties
ŠVÉDA Miroslav, RYŠAVÝ Ondřej, MATOUŠEK Petr, RÁB Jaroslav and ČEJKA Rudolf. SECURITY ANALYSIS OF TCP/IP NETWORKS -- An Approach to Automatic Analysis of Network Security Properties. In: Proceedings of the International Conference on Data Communication Networking ICETE-DCNET 2010. Athens: Institute for Systems and Technologies of Information, Control and Communication, 2010, pp. 5-11. ISBN 978-989-8425-25-6.
Czech title
Bezpečnostní analýza TCP/IP sítí -- Přístup k automatické analýze bezpečnostních vlastností sítí
Type
conference paper
Language
english
Authors
Švéda Miroslav, prof. Ing., CSc. (DIFS FIT BUT)
Ryšavý Ondřej, doc. Ing., Ph.D. (DIFS FIT BUT)
Matoušek Petr, doc. Ing., Ph.D., M.A. (DIFS FIT BUT)
Ráb Jaroslav, Ing. (DIFS FIT BUT)
Čejka Rudolf, Ing. (CC FIT BUT)
Ryšavý Ondřej, doc. Ing., Ph.D. (DIFS FIT BUT)
Matoušek Petr, doc. Ing., Ph.D., M.A. (DIFS FIT BUT)
Ráb Jaroslav, Ing. (DIFS FIT BUT)
Čejka Rudolf, Ing. (CC FIT BUT)
Keywords
Intranet topology, dynamic routing, state-based reachability, security, bounded model checking, SAT
Abstract
This paper deals with an approach to security analysis of TCP/IP-based computer networks. The method developed stems from a formal model of network topology with changing link states, and deploys bounded model checking of network security properties supported by SAT-based decision procedure. Its implementation consists of a set of tools that provide automatic analysis of router configurations, network topologies, and states with respect to checked properties. While the paper aims at supporting a real practice, its form strives to be exact enough to explain the principles of the method in more detail.
Published
2010
Pages
5-11
Proceedings
Proceedings of the International Conference on Data Communication Networking ICETE-DCNET 2010
Conference
International Conference on Data Communication Networking + International Conference on Software and Data Technologies 2010, Athens, GR
ISBN
978-989-8425-25-6
Publisher
Institute for Systems and Technologies of Information, Control and Communication
Place
Athens, GR
BibTeX
@INPROCEEDINGS{FITPUB9266,
author = "Miroslav \v{S}v\'{e}da and Ond\v{r}ej Ry\v{s}av\'{y} and Petr Matou\v{s}ek and Jaroslav R\'{a}b and Rudolf \v{C}ejka",
title = "SECURITY ANALYSIS OF TCP/IP NETWORKS -- An Approach to Automatic Analysis of Network Security Properties",
pages = "5--11",
booktitle = "Proceedings of the International Conference on Data Communication Networking ICETE-DCNET 2010",
year = 2010,
location = "Athens, GR",
publisher = "Institute for Systems and Technologies of Information, Control and Communication",
ISBN = "978-989-8425-25-6",
language = "english",
url = "https://www.fit.vut.cz/research/publication/9266"
}