Towards standardising firewall reporting
Files
(Restricted Access)
Date
2016
Authors
Ranathunga, D.
Roughan, M.
Kernick, P.
Falkner, N.
Editors
Becue, A.
CuppensBoulahia, N.
Cuppens, F.
Katsikas, S.
Lambrinoudakis, C.
CuppensBoulahia, N.
Cuppens, F.
Katsikas, S.
Lambrinoudakis, C.
Advisors
Journal Title
Journal ISSN
Volume Title
Type:
Conference paper
Citation
Lecture Notes in Artificial Intelligence, 2016 / Becue, A., CuppensBoulahia, N., Cuppens, F., Katsikas, S., Lambrinoudakis, C. (ed./s), vol.9588, pp.127-143
Statement of Responsibility
Dinesha Ranathunga, Matthew Roughan, Phil Kernick, and Nick Falkner
Conference Name
1st Workshop on Cybersecurity of Industrial Control Systems (CyberICS), 1st Workshop on the Security of Cyber-Physical Systems (WOS-CPS) (21 Sep 2015 - 22 Sep 2015 : Vienna, Austria)
Abstract
Rubin and Greer stated that “The single most important factor of your firewall’s security is how you configure it.” [17]. However, firewall configuration is known to be difficult to get right. In particular domains, such as SCADA networks, while there are best practice standards that help, an overlooked component is the specification of firewall reporting policies. Our research tackles this question from first principles: we ask what are the uses of firewall reports, and we allow these to guide how reporting should be performed. We approach the problem by formalising the notion of scope and granularity of a report across several dimensions: time, network elements, policies, etc.
School/Discipline
Dissertation Note
Provenance
Description
LNCS, volume 9588
Access Status
Rights
© Springer International Publishing Switzerland 2016