Detection and prevention of firewall-rule conflicts on software-defined networking

@article{MaldonadoLopez2015DetectionAP,
  title={Detection and prevention of firewall-rule conflicts on software-defined networking},
  author={Ferney A. Maldonado-Lopez and Eusebi Calle and Yezid Donoso},
  journal={2015 7th International Workshop on Reliable Networks Design and Modeling (RNDM)},
  year={2015},
  pages={259-265}
}
Software-Defined Networking (SDN) is a different approach to manage a network by software. It could use well-defined software expressions and predicates to regulate network behavior. Current SDN controllers, such as Floodlight, offer a framework to develop, test and run applications that control the network operation, including the firewall function. However, they are not able to validate firewall policies, detect conflicts; neither avoids contradictory configurations on network devices. Some… CONTINUE READING

From This Paper

Figures, tables, and topics from this paper.

Citations

Publications citing this paper.
Showing 1-4 of 4 extracted citations

GolfEngine: Network management system for software defined networking

2017 13th IEEE International Conference on Intelligent Computer Communication and Processing (ICCP) • 2017
View 8 Excerpts
Highly Influenced

Policy driven filter for network management in OpenFlow-based datacenters

2017 International Conference on Intelligent Computing and Control Systems (ICICCS) • 2017
View 1 Excerpt

References

Publications referenced by this paper.
Showing 1-10 of 15 references

FIREMAN: a toolkit for firewall modeling and analysis

2006 IEEE Symposium on Security and Privacy (S&P'06) • 2006
View 5 Excerpts
Highly Influenced

Classification and discovery of firewalls policy anomalies,

E. Al-Shaer
Automated Firewall Analytics. Springer International Publishing, • 2014
View 2 Excerpts

McKeown,“Real time Network Policy Checking Using Header Space Analysis,

P. Kazemanian, M. Chang, H. Zheng, N. G. Varghese
Proceeding on Network System Design and Implementation (NSDI), USENIX Association, • 2013
View 2 Excerpts

Similar Papers

Loading similar papers…