{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,2,21]],"date-time":"2025-02-21T00:54:30Z","timestamp":1740099270368,"version":"3.37.3"},"publisher-location":"Cham","reference-count":29,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030055288"},{"type":"electronic","value":"9783030055295"}],"license":[{"start":{"date-parts":[[2019,1,1]],"date-time":"2019-01-01T00:00:00Z","timestamp":1546300800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019]]},"DOI":"10.1007\/978-3-030-05529-5_23","type":"book-chapter","created":{"date-parts":[[2019,1,4]],"date-time":"2019-01-04T21:54:08Z","timestamp":1546638848000},"page":"343-357","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Automata-Based Bottom-Up Design of Conflict-Free Security Policies Specified as Policy Expressions"],"prefix":"10.1007","author":[{"given":"Ahmed","family":"Khoumsi","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mohammed","family":"Erradi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2019,1,5]]},"reference":[{"key":"23_CR1","doi-asserted-by":"crossref","unstructured":"Acharya, H., Joshi, A., Gouda, M.: Firewall modules and modular firewalls. In: IEEE International Conference on Network Protocols (ICNP), pp. 174\u2013182 (2010)","DOI":"10.1109\/ICNP.2010.5762766"},{"key":"23_CR2","doi-asserted-by":"crossref","unstructured":"Acharya, H.B., Gouda, M.G.: Projection and division: linear space verification of firewalls. In: 30th IEEE International Conference on Distributed Computing Systems (ICDCS), Genova, Italy, pp. 736\u2013743, June 2010","DOI":"10.1109\/ICDCS.2010.68"},{"key":"23_CR3","doi-asserted-by":"crossref","unstructured":"Acharya, H.B., Gouda, M.G.: Firewall verification and redundancy checking are equivalent. In: 30th IEEE International Conference on Computer Communication (INFOCOM), Shanghai, China, pp. 2123\u20132128, April 2011","DOI":"10.1109\/INFCOM.2011.5935023"},{"issue":"1","key":"23_CR4","doi-asserted-by":"crossref","first-page":"2","DOI":"10.1109\/TNSM.2004.4623689","volume":"1","author":"E Al-Shaer","year":"2004","unstructured":"Al-Shaer, E., Hamed, H.: Modeling and management of firewall policies. IEEE Trans. Netw. Serv. Manag. 1(1), 2\u201310 (2004)","journal-title":"IEEE Trans. Netw. Serv. Manag."},{"key":"23_CR5","doi-asserted-by":"crossref","unstructured":"Al-Shaer, E., Marrero, W., El-Atawy, A., Elbadawi, K.: Network configuration in a box: towards end-to-end verification of networks reachability and security. In: 17th IEEE International Conference on Network Protocols (ICNP), Princeton, NJ, USA, pp. 736\u2013743, October 2009","DOI":"10.1109\/ICNP.2009.5339690"},{"key":"23_CR6","series-title":"IFIP Advances in Information and Communication Technology","doi-asserted-by":"publisher","first-page":"174","DOI":"10.1007\/978-3-642-30436-1_15","volume-title":"Information Security and Privacy Research","author":"F Cuppens","year":"2012","unstructured":"Cuppens, F., Cuppens-Boulahia, N., Garcia-Alfaro, J., Moataz, T., Rimasson, X.: Handling stateful firewall anomalies. In: Gritzalis, D., Furnell, S., Theoharidou, M. (eds.) SEC 2012. IAICT, vol. 376, pp. 174\u2013186. Springer, Heidelberg (2012). https:\/\/doi.org\/10.1007\/978-3-642-30436-1_15"},{"key":"23_CR7","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"153","DOI":"10.1007\/978-3-319-09581-3_11","volume-title":"Networked Systems","author":"ES Elmallah","year":"2014","unstructured":"Elmallah, E.S., Gouda, M.G.: Hardness of firewall analysis. In: Noubir, G., Raynal, M. (eds.) NETYS 2014. LNCS, vol. 8593, pp. 153\u2013168. Springer, Cham (2014). https:\/\/doi.org\/10.1007\/978-3-319-09581-3_11"},{"issue":"2","key":"23_CR8","doi-asserted-by":"crossref","first-page":"103","DOI":"10.1007\/s10207-007-0045-7","volume":"7","author":"J Garcia-Alfaro","year":"2008","unstructured":"Garcia-Alfaro, J., Cuppens, F., Cuppens-Boulahia, N.: Complete analysis of configuration rules to guarantee reliable network security policies. Int. J. Inf. Secur. 7(2), 103\u2013122 (2008)","journal-title":"Int. J. Inf. Secur."},{"key":"23_CR9","doi-asserted-by":"crossref","first-page":"64","DOI":"10.1016\/j.cose.2013.01.004","volume":"39","author":"J Garcia-Alfaro","year":"2013","unstructured":"Garcia-Alfaro, J., Cuppens, F., Cuppens-Boulahia, N., Perez, S.M., Cabot, J.: Management of stateful firewall misconfiguration. Comput. Secur. 39, 64\u201385 (2013)","journal-title":"Comput. Secur."},{"key":"23_CR10","doi-asserted-by":"crossref","unstructured":"Hoffman, D., Yoo, K.: Blowtorch: a framework for firewall test automation. In: Proceedings of the 20th IEEE\/ACM International Conference on Automated Software Engineering (ASE), Long Beach, California, USA, pp. 96\u2013103, November 2005","DOI":"10.1145\/1101908.1101925"},{"key":"23_CR11","doi-asserted-by":"crossref","unstructured":"El Kalam, A.A., et al.: Organization based access control. In: IEEE 4th International Workshop on Policies for Distributed Systems and Networks (POLICY), Lake Come, Italy, June 2003","DOI":"10.1109\/POLICY.2003.1206966"},{"issue":"3","key":"23_CR12","doi-asserted-by":"crossref","first-page":"214","DOI":"10.1016\/S0167-4048(03)00310-9","volume":"22","author":"S Kamara","year":"2003","unstructured":"Kamara, S., Fahmy, S., Schultz, E., Kerschbaum, F., Frantzen, M.: Analysis of vulnerabilities in internet firewalls. Comput. Secur. 22(3), 214\u2013232 (2003)","journal-title":"Comput. Secur."},{"issue":"3","key":"23_CR13","first-page":"92","volume":"3","author":"K Karoui","year":"2013","unstructured":"Karoui, K., Ftima, F.B., Ghezala, H.B.: Formal specification, verification and correction of security policies based on the decision tree approach. Int. J. Data Netw. Secur. 3(3), 92\u2013111 (2013)","journal-title":"Int. J. Data Netw. Secur."},{"issue":"1","key":"23_CR14","first-page":"51","volume":"30","author":"A Khoumsi","year":"2018","unstructured":"Khoumsi, A., Erradi, M., Krombi, W.: A formal basis for the design and analysis of firewall security policies. J. King Saud Univ.-Comput. Inf. Sci. 30(1), 51\u201366 (2018)","journal-title":"J. King Saud Univ.-Comput. Inf. Sci."},{"key":"23_CR15","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"221","DOI":"10.1007\/978-3-319-17040-4_14","volume-title":"Foundations and Practice of Security","author":"A Khoumsi","year":"2015","unstructured":"Khoumsi, A., Krombi, W., Erradi, M.: A formal approach to verify completeness and detect anomalies in firewall security policies. In: Cuppens, F., Garcia-Alfaro, J., Zincir Heywood, N., Fong, P. (eds.) FPS 2014. LNCS, vol. 8930, pp. 221\u2013236. Springer, Cham (2015). https:\/\/doi.org\/10.1007\/978-3-319-17040-4_14"},{"key":"23_CR16","doi-asserted-by":"crossref","unstructured":"Krombi, W., Erradi, M., Khoumsi, A.: Automata-based approach to design and analyze security policies. In: International Conference on Privacy, Security and Trust (PST), Toronto, Canada, July 2014","DOI":"10.1109\/PST.2014.6890953"},{"key":"23_CR17","doi-asserted-by":"crossref","first-page":"1090","DOI":"10.1109\/5.533956","volume":"84","author":"D Lee","year":"1996","unstructured":"Lee, D., Yannakakis, M.: Principles and methods of testing finite state machines - a survey. Proc. IEEE 84, 1090\u20131126 (1996)","journal-title":"Proc. IEEE"},{"issue":"9","key":"23_CR18","doi-asserted-by":"crossref","first-page":"1237","DOI":"10.1109\/TPDS.2007.70802","volume":"19","author":"A Liu","year":"2008","unstructured":"Liu, A., Gouda, M.: Diverse firewall design. IEEE Trans. Parallel Distrib. Syst. 19(9), 1237\u20131251 (2008)","journal-title":"IEEE Trans. Parallel Distrib. Syst."},{"issue":"4","key":"23_CR19","doi-asserted-by":"crossref","first-page":"424","DOI":"10.1109\/TPDS.2008.216","volume":"21","author":"A Liu","year":"2010","unstructured":"Liu, A., Gouda, M.: Complete redundancy removal for packet classifiers in TCAMs. IEEE Trans. Parallel Distrib. Syst. 21(4), 424\u2013437 (2010)","journal-title":"IEEE Trans. Parallel Distrib. Syst."},{"issue":"4","key":"23_CR20","doi-asserted-by":"crossref","first-page":"1106","DOI":"10.1016\/j.comnet.2006.06.015","volume":"51","author":"AX Liu","year":"2007","unstructured":"Liu, A.X., Gouda, M.G.: Structured firewall design. Comput. Netw.: Int. J. Comput. Telecommun. Netw. 51(4), 1106\u20131120 (2007)","journal-title":"Comput. Netw.: Int. J. Comput. Telecommun. Netw."},{"issue":"12","key":"23_CR21","first-page":"1387","volume":"2","author":"M Madhuri","year":"2013","unstructured":"Madhuri, M., Rajesh, K.: Systematic detection and resolution of firewall policy anomalies. Int. J. Res. Comput. Commun. Technol. (IJRCCT) 2(12), 1387\u20131392 (2013)","journal-title":"Int. J. Res. Comput. Commun. Technol. (IJRCCT)"},{"key":"23_CR22","doi-asserted-by":"crossref","unstructured":"Mallouli, W., Orset, J., Cavalli, A., Cuppens, N., Cuppens, F.: A formal approach for testing security rules. In: 12th ACM Symposium on Access Control Models and Technologies (SACMAT), Sophia Antipolis, France, June 2007","DOI":"10.1145\/1266840.1266860"},{"key":"23_CR23","doi-asserted-by":"crossref","unstructured":"Mansmann, F., G\u00f6bel, T., Cheswick, W.: Visual analysis of complex firewall configurations. In: 9th International Symposium on Visualization for Cyber Security (VizSec), pp. 1\u20138, Seattle, WA, USA, October 2012","DOI":"10.1145\/2379690.2379691"},{"key":"23_CR24","doi-asserted-by":"crossref","unstructured":"Mayer, A., Wool, A., Ziskind, E.: Fang: a firewall analysis engine. In: Proceedings of the IEEE Symposium on Security and Privacy, pp. 177\u2013187, Berkeley, California, USA, May 2000","DOI":"10.1109\/SECPRI.2000.848455"},{"issue":"2","key":"23_CR25","doi-asserted-by":"crossref","first-page":"425","DOI":"10.1016\/j.jss.2011.09.008","volume":"85","author":"S Pozo","year":"2012","unstructured":"Pozo, S., Gasca, R., Reina-Quintero, A., Varela-Vaca, A.: CONFIDDENT: a model-driven consistent and non-redundant layer-3 firewall ACL design, development and maintenance framework. J. Syst. Softw. 85(2), 425\u2013457 (2012)","journal-title":"J. Syst. Softw."},{"key":"23_CR26","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"151","DOI":"10.1007\/978-3-319-59647-1_12","volume-title":"Networked Systems","author":"R Reaz","year":"2017","unstructured":"Reaz, R., Acharya, H.B., Elmallah, E.S., Cobb, J.A., Gouda, M.G.: Policy expressions and the bottom-up design of computing policies. In: El Abbadi, A., Garbinato, B. (eds.) NETYS 2017. LNCS, vol. 10299, pp. 151\u2013165. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-59647-1_12"},{"key":"23_CR27","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"109","DOI":"10.1007\/978-3-319-21741-3_8","volume-title":"Stabilization, Safety, and Security of Distributed Systems","author":"R Reaz","year":"2015","unstructured":"Reaz, R., Ali, M., Gouda, M.G., Heule, M.J.H., Elmallah, E.S.: The implication problem of computing policies. In: Pelc, A., Schwarzmann, A.A. (eds.) SSS 2015. LNCS, vol. 9212, pp. 109\u2013123. Springer, Cham (2015). https:\/\/doi.org\/10.1007\/978-3-319-21741-3_8"},{"issue":"6","key":"23_CR28","doi-asserted-by":"crossref","first-page":"62","DOI":"10.1109\/MC.2004.2","volume":"37","author":"A Wool","year":"2004","unstructured":"Wool, A.: A quantitative study of firewall configuration errors. Computer 37(6), 62\u201367 (2004)","journal-title":"Computer"},{"key":"23_CR29","unstructured":"Yuan, L., Mai, J., Su, Z., Chen, H., Chuah, C.-N., Mohapatra, P.: FIREMAN: a toolkit for firewall modeling and analysis. In: IEEE Symposium on Security and Privacy (S&P), Berkeley\/Oakland, CA, USA, May 2006"}],"container-title":["Lecture Notes in Computer Science","Networked Systems"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-05529-5_23","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,11,13]],"date-time":"2019-11-13T11:42:38Z","timestamp":1573645358000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-05529-5_23"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019]]},"ISBN":["9783030055288","9783030055295"],"references-count":29,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-05529-5_23","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2019]]},"assertion":[{"value":"NETYS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Networked Systems","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Essaouira","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Morocco","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2018","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"9 May 2018","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"11 May 2018","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"6","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"netys2018","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/netys.net\/history\/netys2018\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"EasyChair","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"85","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"22","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"6","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"26% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"2.9","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"6.3","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"Yes","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}}]}}