UCL Discovery
UCL home » Library Services » Electronic resources » UCL Discovery

Reachability analysis for AWS-based networks

Cook, J; (2019) Reachability analysis for AWS-based networks. In: Proceedings of the International Conference on Computer Aided Verification CAV 2019. (pp. pp. 231-241). Springer, Cham: New York, NY, USA. Green open access

[thumbnail of Cook_PDFsam_Cook_2019_Book_ComputerAidedVerification.pdf]
Cook_PDFsam_Cook_2019_Book_ComputerAidedVerification.pdf - Published Version

Download (446kB) | Preview


Cloud services provide the ability to provision virtual networked infrastructure on demand over the Internet. The rapid growth of these virtually provisioned cloud networks has increased the demand for automated reasoning tools capable of identifying misconfigurations or security vulnerabilities. This type of automation gives customers the assurance they need to deploy sensitive workloads. It can also reduce the cost and time-to-market for regulated customers looking to establish compliance certification for cloud-based applications. In this industrial case-study, we describe a new network reachability reasoning tool, called Tiros, that uses off-the-shelf automated theorem proving tools to fill this need. Tiros is the foundation of a recently introduced network security analysis feature in the Amazon Inspector service now available to millions of customers building applications in the cloud. Tiros is also used within Amazon Web Services (AWS) to automate the checking of compliance certification and adherence to security invariants for many AWS services that build on existing AWS networking features.

Type: Proceedings paper
Title: Reachability analysis for AWS-based networks
Event: International Conference on Computer Aided Verification CAV 2019
Location: New York, USA
Dates: 13 July 2019 - 18 July 2019
Open access status: An open access version is available from UCL Discovery
DOI: 10.1007/978-3-030-25543-5_14
Publisher version: https://doi.org/10.1007/978-3-030-25543-5_14
Language: English
Additional information: Open Access This chapter is licensed under the terms of the Creative Commons Attribution 4.0 International License (http://creativecommons.org/licenses/by/4.0/), which permits use, sharing, adaptation, distribution and reproduction in any medium or format, as long as you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons license and indicate if changes were made
UCL classification: UCL
UCL > Provost and Vice Provost Offices > UCL BEAMS
UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science
UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science > Dept of Computer Science
URI: https://discovery.ucl.ac.uk/id/eprint/10076236
Downloads since deposit
Download activity - last month
Download activity - last 12 months
Downloads by country - last 12 months

Archive Staff Only

View Item View Item