Symbolic Analysis of Network Security Policies Using Rewrite Systems
First designed to enable private networks to be opened up to the outside world in a secure way, the growing complexity of organizations make firewalls indispensable to control information flow within a company. The central role they hold in the security of the organization information make their management a critical task and that is why for years many works have focused on checking and analyzing firewalls. The composition of firewalls, taking into account routing rules, has nevertheless often been neglected. In this paper, the authors propose to specify all components of a firewall, i.e. filtering and translation rules, as a rewrite system.