Survey on the Use of Formal

Abstract

Complexity of access-lists and the diversity of their specifications are continuously increasing. Stating the high level requirements as well as verification of the implemented policies became an impossible task if human intervention is required. Also, proving the soundness of these inter-related and confusing policies is very hard without an appropriate framework. Therefore, a formal and canonical specification for security access-lists is highly needed for us to be able to specify requirements, verify correctness and enforce the policy