Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

A multi-view tool for checking the security semantics of router configurations

: Peine, H.; Schwarz, R.

urn:nbn:de:0011-n-198151 (310 KByte PDF)
MD5 Fingerprint: 965093461d5280f052b1b9acd08b9dee
Erstellt am: 07.01.2004

Kaiserslautern, 2003, VIII, 20 S. : Ill., Lit.
IESE-Report, 064.03/E
Reportnr.: 064.03/E
Bericht, Elektronische Publikation
Fraunhofer IESE ()
router; security; tool; audit; assessment; evaluation; Perl programming language

Routers are critical components of IP networks, but hardly any tool support for analyzing their security exists to date. We have developed such a tool, named Crocodile, that tracks the security implications of related configuration directives that may be scattered all over the router's configuration, instead of analyzing only isolated configuration clauses like other tools do. Our tool offers several novel evaluation capabilities and presents its findings as a collection of multiview displays, enabling the user to focus on selected aspects, and to navigate deeper and deeper into specific details. We demonstrate the practical use of CROCODILE, and a comparison with the well-known RAT tool illustrates CROCODILE's remarkable capabilities.