Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: How automate firewall tests

From: "Bill Royds" <broyds () rogers com>
Date: Mon, 21 Aug 2006 18:51:27 -0400
ASN.1 is a formal language to describe data structures for use of a number of
protocols.  One would expect that protocols that use ASN.1 as their structure
grammar should be quite secure.
   But there have probably been more vulnerabilities in ASN.1 based protocols
than any other. SO even a formal grammar is probably not good enough to define
"correct" input.



-----Original Message-----
From: firewall-wizards-bounces () listserv icsalabs com 
[mailto:firewall-wizards-bounces () listserv icsalabs com] On 
Behalf Of Jean-Denis Gorin
Sent: Monday, August 21, 2006 6:07 AM
To: firewall-wizards () listserv cybertrust com
Subject: Re: [fw-wiz] How automate firewall tests

On Fri, 18 Aug 2006 21:44
Strabla Ruggero wrote:


On Fri, 18 Aug 2006 10:17:13 +0200
Jean-Denis Gorin <jdgorin () computer org> wrote:


The second point requires a tool able to *understand* a security
policy. And that requires a tool able to *model* a 

security policy.


I think this would be great but a bit far from my possibility.


Formal langage could be a nice way to deal with that problem. 
But that's another
story...




_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: