Academia.eduAcademia.edu

Outline

Title
Abstract
Introduction
Limitations
Performance Analysis
Design Tool
Formal Analysis of CPNS
Occurrence Graphs as the Basis for Analysis
Static Analysis
Dynamic Analysis
Conclusion
References
All Topics
Computer Science
Modeling and Simulation

Modeling Firewalls Using Hierarchical Colored Petri Nets

Profile image of Eugene H SpaffordEugene H Spafford

Abstract

This paper concentrates on one technological aspect of providing communications security, firewall technology. It introduces a formalism called Hierarchical Colored Petri Nets (HCPN) in tutorial style. The main contribution of the paper is a description of how to model firewall systems using Hierarchical Colored Petri Nets. A byproduct of this approach is a novel way of modeling audit streams in distributed systems. HCPNs are well suited for modeling concurrent, distributed systems in which regulated flows of information are ...

Related papers

A Reference Model for Firewall Technology
Eugene H Spafford

1997

This paper concentrates on one particular technological aspect of providing communications security, firewall technology. Currently firewall technology is a specialized engineering solution rather than a scientifically based solution.

View PDFchevron_right
Formal Analysis of Firewalls
Robert Marmorstein

2008

The task of configuring and updating a collection of firewalls has become so challenging that, for many networks, the cost of maintaining the firewall is prohibitive. This cost derives from the difficulty of avoiding subtle design errors in a complex and often verbose firewall policy. Analysis tools can reduce the burden on the administrator and improve security by identifying errors in the firewall configuration or even suggesting changes to the policy. Existing analysis tools suffer from many drawbacks which prevent ...

View PDFchevron_right
Modeling TCG-Based Secure Systems with Colored Petri Nets
Yanjiang Yang

Lecture Notes in Computer Science, 2011

With the rapid progresses in trusted computing related research and application, many trusted computing based security mechanisms have been proposed to defend against threats in open, dynamic and distributed environments. These mechanisms are supposed to serve as the security foundations in the underlying systems. However, the correctness of these security mechanisms still require further examination and validation. We propose a Colored Petri Nets (CPN or CP-nets) based approach to model the trusted computing based secure system. In particular, with CPN, we model process management, data protection and late launch mechanisms in the systems. Further, as case studies we use these models to investigate the memory protection mechanism in TrustVisor and remote attestation based on dynamic root of trust, respectively; and the results demonstrate that our models are indeed capable of depicting real secure system based on trusted computing. With the advantages of CPN based modeling and analysis (e.g., graphical representation, well defined semantics and a large number of formal analysis methods), our models can well serve as the foundation for formal analysis on the security properties of trusted computing enhanced systems.

View PDFchevron_right
Modeling And Validating A Secure Interconnection Between Industrial Control System And Corporate Network Using Colored Petri Net
Adriano Borrego, Anderson Silva, Marcelo Azevedo

Colloquium Exactarum, 2020

Industrial Control Systems (ICS) networks offer a high level of automation combined with high levels of control, quality, and process improvement. Since network corporate users have to access the ICS environment, these networks have to be interconnected. However, this interconnection can introduce risks to the systems and manufacturing processes, which leads to the need to ensure the interconnection is done safely. The objective of this paper is to perform modeling and validation of a proposed secure interconnection between ICS and corporate networks using Colored Petri Networks (CPN). In addition to the best practices published in related works, this paper recommends some integrated features like the use of terminal server service, secure manual uplinks, and unidirectional security gateway to enhance environmental security. However, our main contribution is the validation process performed in a CPN, which made it possible to execute queries in the state space resulting from the simulation - that works as a proof of concept. As a result, the paper presents a secure and validated model of interconnection between ICS and corporate networks, capable of being applied to any interconnection environment. Keywords: ICS Network; Corporate Network; Secure Interconnection; Colored Petri Net.

View PDFchevron_right
Formal analysis of firewall policies
Robert Marmorstein

2008

This dissertation describes a technique for formally analyzing a firewall security policy using a quasi-reduced multiway decision diagram model. The analysis allows a system administrator to detect and repair errors in the configuration of the firewall without a tedious manual inspection of the firewall rules. We present four major contributions. First, we describe a set of algorithms for representing a firewall rule set as a multi-way decision diagram and for solving logical queries against that model. We demonstrate the application of these techniques in a tool for analyzing iptables firewalls. Second, we present an extension of our work that enables analysis of systems of connected firewalls and firewalls that use network address translation and other packet mangling rules. Third, we demonstrate a technique for decomposing a network into classes of equivalent hosts. These classes can be used to detect errors in a firewall policy without apriori knowledge of potential vulnerabilit...

View PDFchevron_right
Using Timed Colored Petri Nets and CPN-tool to Model and Verify TRBAC Security Policies
Laid Kahloul, Karim Djouani

Role Based Access Control (RBAC) is one of the most used models in designing and implementation of security policies in large networking systems. The classical model doesn't consider temporal aspects which are so important in such policies. Temporal RBAC (TRBAC) is proposed to deal with these aspects. Although the elegance of these models, design a security policy remains a challenge. One is obliged to prove the consistency and the correctness of the policy. Using formal verification allows proving that the designed policy is consistent. In this paper 1 , we present a formal modelling/analysis approach for TRBAC policies. We use Timed Colored Petri Nets to model the TRBAC policy, and then CPN-tool is used to analyze the generated models. The analysis allows proving many important properties about the TRBAC security policy.

View PDFchevron_right
An Approach for Improving Performance of a Packet Filtering Firewall Based on Fuzzy Petri Net
Saad Darwish

Journal of Advances in Computer Networks, 2015

With the rapid development of Internet, the security of networks becomes an important issue today and monitoring network traffic is necessary for realizing different purposes such as system performance, network debugging and/or information security. As a major measure to implement enterprise security, firewall technique ensures the security of local networks. Traditional firewall technologies have their own weaknesses in architecture, configuration, monitoring and management that affect to firewall performance. Furthermore, it lacks to deal with vague and uncertainty associated with filtering packets from outside. Architecture of a new kind of firewall, intelligence firewall is presented in this paper. The main contribution is to utilize Fuzzy Petri Net as a tool for modeling discrete event systems characterized by an imprecise knowledge. The graphical power of Petri Nets makes the packet filtering model easy to design, test, improve and maintain. Another contribution is to present 2-level fuzzy filtering algorithm to enhance ordering of filtering rules list that permits us to model the dynamic behavior of monitoring system concerning uncertainty associated with packet filtering. Experimental results for local network are given, which show the effectiveness of the suggested approach and demonstrate the enhancement of the firewall sensitivity against the risk coming from network traffics. Index Terms-Firewall, fuzzy petri net, packet filtering, access control list (ACL). I. INTRODUCTION With the advancement of computer technology and the wide spread use of computer networks, the security of internal network against attacks, illegitimate traffics and unauthorized access can be crucial to the success of the entire business operation. As firewalls are core element in network security, over the years, firewalls technology has become a major area of research in network security. A firewall is a combination of hardware and software used to implement a security policy governing the flow of traffic between two or more networks [1]. In its simplest form, a firewall acts as a security barrier to control traffic and manage connections between internal and external network hosts. Connections and service requests are either accepted or rejected based on a set of rules defined by the network administration security policy [2]. Firewall have many abilities like defines a single choke Manuscript

View PDFchevron_right
Malicious Insider Attacks Based Colored Petri Nets Approach
Abdelali EL BOUCHTI

2013

In this paper, we propose Colored Petri Net (CoPNet) modeling approach by extending the attack trees with new modeling constructs and analysis approaches. CoPNet based attack model is flexible enough to model Internet intrusion, including the static and dynamic features of the intrusion. The process and rules of building CoPNet based attack model from AT are also presented. In order to evaluate the risk of intrusion, some cost elements are added to CoPNet based attack modeling. We show how attack trees can be converted and analyzed in CoPNets. Finally, we provide a malicious insider attacks as case study that illustrates the CoPNet approach.

View PDFchevron_right
Software fault tree and coloured Petri net–based specification, design and implementation of agent-based intrusion detection systems
Natalia Stakhanova, Vasant G Honavar

International Journal of …, 2007

The integration of Software Fault Tree (SFT) which describes intrusions and Colored Petri Nets (CPNs) which specifies design, is examined for an Intrusion Detection System (IDS). The IDS under development is a collection of mobile agents that detect, classify, and correlate system and network activities. Software Fault Trees (SFTs), augmented with nodes that describe trust, temporal, and contextual relationships, are used to describe intrusions. CPNs for intrusion detection are built using CPN templates created from the augmented SFTs. Hierarchical CPNs are created to detect critical stages of intrusions. The agent-based implementation of the IDS is then constructed from the CPNs. Examples of intrusions and descriptions of the prototype implementation are used to demonstrate how the CPN approach has been used in development of the IDS.

View PDFchevron_right
Detection and Modeling of Cyber Attacks with Petri Nets
Marcin Szpyrka, Joanna Śliwa

Entropy, 2014

The aim of this article is to present an approach to develop and verify a method of formal modeling of cyber threats directed at computer systems. Moreover, the goal is to prove that the method enables one to create models resembling the behavior of malware that support the detection process of selected cyber attacks and facilitate the application of countermeasures. The most common cyber threats targeting end users and terminals are caused by malicious software, called malware. The malware detection process can be performed either by matching their digital signatures or analyzing their behavioral models. As the obfuscation techniques make the malware almost undetectable, the classic signature-based anti-virus tools must be supported with behavioral analysis. The proposed approach to modeling of malware behavior is based on colored Petri nets. This article is addressed to cyber defense researchers, security architects and developers solving up-to-date problems regarding the detection and prevention of advanced persistent threats.

View PDFchevron_right

References (50)

  1. R. Atkinson. RFC-1825 Security Architecture for the In- ternet Protocol. Network Working Group, Aug. 1995.
  2. R. Atkinson. RFC-1826 IP Authentication Header. Net- work Working Group, Aug. 1995.
  3. F. M. Avolio and M. J. Ranum. A Network Perime- ter with Secure External Access. In 2 Ò Symposium on Network and Distributed System Security (NDSS), San Diego, California, Feb. 1994. Internet Society (ISOC).
  4. F. M. Avolio and M. J. Ranum. A Toolkit and Meth- ods for Internet Firewalls. In Technical Summer Confer- ence, pages 37-44, Boston, Massachusetts, June 1994. USENIX.
  5. M. L. Bailey, B. Gopal, M. A. Pagls, L. L. Peterson, and P. Sarkar. PathFinder: A Pattern-Based Packet Classi- fier. In Proceedings of the 1 ×Ø Symposium on Operating System Design and Implementation (OSDI), Monterey, California, Nov. 1994. USENIX.
  6. S. M. Bellovin and W. R. Cheswick. Firewalls and In- ternet Security. Addison-Wesley Publishing Company, Inc., 1994.
  7. F. P. Brooks, Jr. The Mythical Man-Month. Addison- Wesley Publishing Company, Inc., second edition, 1995.
  8. C. J. Calabrese. A Tool for Building Firewall-Router Configurations. The USENIX Association, Computing Systems, 9(3):239-253, Summer 1996.
  9. D. B. Chapman. Network (In)Security Through IP Packet Filtering. In Proceedings of the 3 Ö USENIX UNIX Security Symposium, Baltimore, Maryland, Sept. 1992. USENIX.
  10. D. B. Chapman and E. D. Zwicky. Building Internet Firewalls. O'Reilley & Associates, Inc., Sebastopol, California, Sept. 1995.
  11. D. E. Comer. IP over ATM: Concept and Practice. In- terop talk on IP over ATM, Mar. 1996.
  12. T. H. Cormen, C. E. Leiserson, and R. L. Rivest. In- troduction to Algorithms. MIT Press, Cambridge, Mas- sachusetts, 1990.
  13. J. D. Day and H. Zimmermann. The OSI Reference Model. In Proceedings of the IEEE, volume 71, pages 1334-1340. IEEE, Dec. 1983.
  14. Digital Equipment Corporation (DEC). Screening Exter- nal Access Link (SEAL) Introductory Guide, 1992.
  15. K. B. Egevang and P. Francis. RFC-1631 The IP Network Address Translator (NAT). Network Working Group, May 1994.
  16. S. Garfinkel and G. Spafford. Practical UNIX & Inter- net Security. O'Reilley & Associates, Inc., Sebastopol, California, second edition, 1996.
  17. C. A. Heuser and G. Richter. Constructs for Modeling Information Systems with Petri Nets. In K. Jensen, ed- itor, 13 Ø International Conference on Application and Theory of Petri Nets, number 616 in Lecture Notes in Computer Science, Sheffield, UK, 1992. Springer Ver- lag.
  18. J. D. Howard. An Analysis Of Security Incidents On The Internet 1989-1995. PhD thesis, Carnegie Mellon Uni- versity, Apr. 1997.
  19. P. Huber, K. Jensen, and R. M. Shapiro. Hierarchies in Coloured Petri Nets. In G. Rozenberg, editor, Advances in Petri Nets, number 524 in Lecture Notes in Computer Science. Springer Verlag, 1991.
  20. D. Icove, K. Seger, and W. VonStorch. Computer Crime. O'Reilley & Associates, Inc., Sebastopol, California, 1995.
  21. R. Janicki and M. Koutny. Optimal Simulations, Nets, and Reachability Graphs. In G. Rozenberg, editor, Advances in Petri Nets, number 524 in Lecture Notes in Computer Science, pages 205-226. Springer Verlag, 1991.
  22. K. Jensen. Coloured Petri Nets: A High Level Language for System Design and Analysis. In G. Rozenberg, edi- tor, Advances in Petri Nets, number 524 in Lecture Notes in Computer Science. Springer Verlag, 1991.
  23. K. Jensen. Coloured Petri Nets: Basic Concepts, Anal- ysis Methods, and Practical Use, volume 2. Springer- Verlag, New York Inc., 1995.
  24. K. Jensen. Coloured Petri Nets: Basic Concepts, Anal- ysis Methods, and Practical Use, volume 1. Springer- Verlag, New York Inc., second edition, 1996.
  25. K. Jensen. Design/CPN Overview of CPN ML Syntax. Version 3.0, 1996.
  26. C. E. Landwehr. Formal Models for Computer Security. ACM Computing Surveys, 13(3):247-278, Sept. 1981.
  27. D. Longley and M. Shain. Data & Computer Security. Dictionary of Standards, Concepts, and Terms. Macmil- lan Publishers Ltd., 1987.
  28. W. W. McLendon, Jr. and R. F. Vidale. Analysis of an Ada System Using Coloured Petri Nets and Occurrence Graphs. In K. Jensen, editor, 13 Ø International Confer- ence on Application and Theory of Petri Nets, number 616 in Lecture Notes in Computer Science, pages 384- 388, Sheffield, UK, 1992. Springer Verlag.
  29. Meta Software Corporation. Design/CPN Reference Manual. Cambridge, Massachusetts, 1993.
  30. R. Milner. The Standard ML Core Language. Techni- cal Report CSR-168-84, Edinburgh University Internal Report, 1984.
  31. S. S. Owicki and L. Lamport. Proving Liveness Prop- erties of Concurrent Programs. ACM Transactions on Programming Languages and Systems, pages 455-495, July 1982.
  32. J. L. Peterson. Petri Net Theory and the Modeling of Systems. Prentice-Hall, Englewood Cliffs, New Jersey, 1981.
  33. C. A. Petri. Kommunikation mit Automaten. Technical Report 2 (Schriften des IIM), Institut für Instrumentelle Mathematik, Bonn, Germany, 1962.
  34. H. Plünnecke and W. Reisig. Bibliography on Petri Nets 1990. In G. Rozenberg, editor, Advances in Petri Nets, number 524 in Lecture Notes in Computer Science. Springer Verlag, 1991. Over 4000 references to publica- tions dealing with Petri Nets.
  35. A. Pnueli. The Temporal Logic of Programs. In 18 Ø Symposium on the Foundations of Computer Science, pages 46-57, Nov. 1977.
  36. J. Postel, editor. RFC-791 Internet Protocol. Informa- tion Science Institute, University of Southern California, Sept. 1981.
  37. J. Postel, editor. RFC-792 Internet Control Message Protocol. Information Sciences Institute, University of Southern California, Sept. 1981.
  38. K. E. Price. Host-Based Misuse Detection and Conven- tional Operating Systems' Audit Data Collection. Mas- ter's thesis, Department of Computer Sciences, Purdue University, West Lafayette, Indiana, Dec. 1997.
  39. M. J. Ranum. A Network Firewall. In Proceedings of the 1 ×Ø International Conference on Systems and Network Security and Management (SANS-I), June 1992.
  40. M. J. Ranum. Internet Firewalls -An Overview, Oct. 1993. (unpublished).
  41. M. J. Ranum. Thinking About Firewalls. In Proceedings of the 2 Ò International Conference on Systems and Net- work Security and Management (SANS-II), Apr. 1993.
  42. M. J. Ranum, A. Leibowitz, B. Chapman, and B. Boyle. Firewalls-FAQ, 1994.
  43. C. L. Schuba. On the Modeling, Design, and Imple- mentation of Firewall Technology. PhD thesis, Depart- ment of Computer Sciences, Purdue University, West Lafayette, Indiana, Dec. 1997.
  44. C. L. Schuba and E. H. Spafford. A Reference Model for Firewall Technology. In Proceedings of the 13 Ø An- nual Computer Security Applications Conference (AC- SAC), pages 133-145, San Diego, California, Dec. 1997. IEEE Computer Society.
  45. R. Sethi. Programming Languages. Concepts and Con- structs. Addison-Wesley Publishing Company, Inc., 1990.
  46. M. Silva and R. Valette. Petri Nets and Flexible Man- ufacturing. In G. Rozenberg, editor, Advances in Petri Nets, Lecture Notes in Computer Science. Springer Ver- lag, 1989.
  47. K. Siyan and C. Hare. Internet firewalls and network security. New Riders Pub., Indianapolis, Indiana, 1995.
  48. Å. Wikström. Functional Programming Using Standard ML. Prentice-Hall, Englewood Cliffs, New Jersey, 1987.
  49. N. Wirth. Program Development by Stepwise Refine- ment. Commun. ACM, 14(4):221-227, Apr. 1971.
  50. M. Young. Private communication, 1997.

Related papers

CERIAS Tech Report 2001-98 Modeling Firewalls Using Hierarchical Colored Petri Nets
Eugene H Spafford

Abstract This paper concentrates on one technological aspect of providing communications security, firewall technology. It introduces a formalism called Hierarchical Colored Petri Nets (HCPN) in tutorial style. The main contribution of the paper is a description of how to model firewall systems using Hierarchical Colored Petri Nets. A byproduct of this approach is a novel way of modeling audit streams in distributed systems.

View PDFchevron_right
Formalism of the Access Control Model Based on the Marqued Petri Nets
Abderrahim GHADI

2008

Access control system is a mandatory step in the security policy implementation. Accesses carried out according to certain modes (read, write ...) by subjects (users, process, programs) on objects (data, files, programs). To specify, implement and reason within a formal framework allow ensuring the correction of the programs that in turn guarantee the proper functioning of this policy.

View PDFchevron_right
An Information Security Engineering Framework for Modeling Packet Filtering Firewall Using Neutrosophic Petri Nets
Oday A L I Hassen

computers, 2023

Due to the Internet’s explosive growth, network security is now a major concern. As a result, tracking network traffic is essential for a variety of uses, including improving system efficiency, fixing bugs in the network, and keeping sensitive data secure. Firewalls are a crucial component of enterprise-wide security architectures because they protect individual networks from intrusion. The efficiency of a firewall can be negatively impacted by issues with its design, configuration, monitoring, and administration. Recent firewall security methods do not have the rigor to manage the vagueness that comes with filtering packets from the exterior. Knowledge representation and reasoning are two areas where fuzzy Petri nets (FPNs) receive extensive usage as a modeling tool. Despite their widespread success, FPNs’ limitations in the security engineering field stem from the fact that it is difficult to represent different kinds of uncertainty. This article details the construction of a novel packet-filtering firewall model that addresses the limitations of current FPN-based filtering methods. The primary contribution is to employ Simplified Neutrosophic Petri nets (SNPNs) as a tool for modeling discrete event systems in the area of firewall packet filtering that are characterized by imprecise knowledge. Because of SNPNs’ symbolic ability, the packet filtration model can be quickly and easily established, examined, enhanced, and maintained. Based on the idea that the ambiguity of a packet’s movement can be described by if-then fuzzy production rules realized by the truth-membership function, the indeterminacy-membership function, and the falsity-membership functional, we adopt the neutrosophic logic for modelling PN transition objects. In addition, we simulate the dynamic behavior of the tracking system in light of the ambiguity inherent in packet filtering by presenting a two-level filtering method to improve the ranking of the filtering rules list. Results from experiments on a local area network back up the efficacy of the proposed method and illustrate how it can increase the firewall’s susceptibility to threats posed by network traffic.

View PDFchevron_right
Colored Petri nets as the enabling technology in intrusion detection systems
James Antonakos

2011 - MILCOM 2011 Military Communications Conference, 2011

Behavior based intrusion detection technologies are increasingly popular. Traditionally behavior patterns are expressed as specific signatures defined in the system call domain. This approach has various drawbacks and is vulnerable to possible obfuscations. The IDS approach discussed herein addresses process behavior in terms of functionalities, i.e. particular process objectives. The functionalities are formalized in the form that is independent of their specific realizations and is obfuscation resistant. The malware is detected by particular sets of functionalities exposed by programs during their execution. The approach implies the selection of common malicious functionalities, followed by formal description of these functionalities via specific system call combinations. In the detection domain, monitored system calls are combined into API functions utilizing Colored Petri nets (CPN). After that API functions are combined into malicious functionalities, indicative of malware attack, also using CPN. The advantages of CPN utilization for dynamic code analysis are described. By its nature the described approach is signature-based. The CPN technology is the backbone of the described approach: CPNs are used to define the functionalities of interests as behavior signatures, and at the same time serve as the mechanism for the signature detection. The paper describes a unique general-purpose software tool implementing CPN. It constitutes the enabling technology for the described IDS approach, and has many additional applications for modeling and monitoring complex hierarchical systems of discrete events.

View PDFchevron_right
Formal Network Models and Their Application to Firewall Policies
Burkhart Wolff

Arch. Formal Proofs, 2017

We present a formal model of network protocols and their application to modeling firewall policies. The formalization is based on the Unified Policy Framework (UPF). The formalization was originally developed with for generating test cases for testing the security configuration actual firewall and router (middle-boxes) using HOL-TestGen. Our work focuses on modeling application level protocols on top of tcp/ip.

View PDFchevron_right

Related topics

  • Colored Petri Net
  • Access Control Policy
    • 580 California St., Suite 400
    San Francisco, CA, 94104
    © 2025 Academia. All rights reserved