Ehab Al-Shaer

Director

Network Assurance and Cyber Defense Research Center

October 30 at 3:00pm
106 Woodward

Abstract:

Recent studies show that configurations of network access control is one of the most complex and error prone network management tasks. Moreover, it has been widely reported that 62% of network vulnerability and faults are due to operator misconfiguration. In this presentation, we will show our recent research work to offer a global encoding for network security configurations that allows for general reachability and security property-based verification using CTL model checking. We have implemented our approach in a tool called ConfigChecker and evaluated it with thousands of devices and millions of configuration rules to demonstrate the scalability of our approach.

Bio:

Prof. Al-Shaer is the Director of the Network Assurance and Cyber Defense Research Center (NACDeC). Dr. Al-Shaer’s primary research areas are network security, security management, fault diagnosis, and network assurability. Prof. Al-Shaer edited/co-edited more than 10 books and book chapters, and published about 100 refereed journals and conferences papers in his area. Prof. Al-Shaer is the General Chair of the 16th ACM Computer and Communication 2009-2010 and NSF/ACM Workshop in Assurable and Usable Security Configuration, August 2008 and November 2009.

Back