MIRAGE is an audit tool for the analysis of network security policies deployed over network security components, such as firewalls and intrusion detection systems. It implements an analysis of components' configurations to detect anomalies on their deployment.
If using this code for research purposes, please cite:
[1] J. Garcia-Alfaro, N. Cuppens, and F. Cuppens, "Complete Analysis of Configuration Rules to Guarantee Reliable Network Security Policies," International Journal of Information Security, Springer, 7(2):103-122, http://dx.doi.org/10.1007/s10207-007-0045-7, April 2008.
[2] J. Garcia-Alfaro, F. Cuppens, N. Cuppens-Boulahia, S. Martinez, J. Cabot, "Management of stateful firewall misconfiguration," Computers & Security, 39(A), pp. 64-85, http://dx.doi.org/10.1016/j.cose.2013.01.004, November 2013.
@article{2008ijisGarciaCuppens,
title={Complete analysis of configuration rules to guarantee reliable network security policies},
author={Garcia-Alfaro, Joaquin and Boulahia-Cuppens, Nora and Cuppens, Fr{\'e}d{\'e}ric},
journal={International Journal of Information Security},
volume={7},
number={2},
pages={103--122},
month={April},
year={2008},
publisher={Springer},
url={http://dx.doi.org/10.1007/s10207-007-0045-7},
doi={10.1007/s10207-007-0045-7},
}
@article{2013COSEGarciaCuppensMartinezCabot,
title={Management of stateful firewall misconfiguration},
author={Garcia-Alfaro, Joaquin and Cuppens, Fr{\'e}d{\'e}ric and Cuppens-Boulahia, Nora and Martinez, Salvador and Cabot, Jordi},
journal={Computers \& Security},
volume={39},
pages={64--85},
year={2013},
publisher={Elsevier},
month={November},
doi={10.1016/j.cose.2013.01.004},
url={http://dx.doi.org/10.1016/j.cose.2013.01.004},
}
[1] F. Cuppens, N. Cuppens-Boulahia, J. Garcia-Alfaro, T. Moataz, X. Rimasson, "Handling Stateful Firewall Anomalies," 27th IFIP TC-11 International Information Security Conference (IFIPsec 2012), pp. 174-186, https://doi.org/10.1007/978-3-642-30436-1_15, Crete, Greece, June 2012.
[2] J. Garcia-Alfaro, F. Cuppens, N. Cuppens, S. Preda, "MIRAGE: A Management Tool for the Analysis and Deployment of Network Security Policies," 3rd SETOP Workshop, 15th European Symposium On Research In Computer Security (Esorics 2010), pp. 203-215, http://dx.doi.org/10.1007/978-3-642-19348-4_15, Athens, Greece, September 2010.
[3] J. Garcia-Alfaro, F. Cuppens, and N. Cuppens, "Analysis of Policy Anomalies on Distributed Network Security Setups," 11th European Symposium On Research In Computer Security (Esorics 2006), pp. 496-511, https://doi.org/10.1007/11863908_30, Hamburg, Germany, September 2006.
Visit http://j.mp/TSPMirage