Formal Network Models and Their Application to Firewall Policies

Achim D. Brucker 🌐, Lukas Brügger and Burkhart Wolff 🌐

January 8, 2017

This is a development version of this entry. It might change over time and is not stable. Please refer to release versions for citations.


We present a formal model of network protocols and their application to modeling firewall policies. The formalization is based on the Unified Policy Framework (UPF). The formalization was originally developed with for generating test cases for testing the security configuration actual firewall and router (middle-boxes) using HOL-TestGen. Our work focuses on modeling application level protocols on top of tcp/ip.


BSD License


Session UPF_Firewall