Visualization based policy analysis: Case study in SELinux

Wenjuan Xu; Mohamed Shehab; Gail Joon Ahn

doi:10.1145/1377836.1377863

Visualization based policy analysis: Case study in SELinux

Wenjuan Xu, Mohamed Shehab, Gail Joon Ahn

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

25 Scopus citations

Abstract

Determining whether a given policy meets a site's high-level security goals can be difficult, due to the low-level nature and complexity of the policy language, and the multiple policy violation patterns. In this paper, we propose a visualization-based policy analysis framework that enables system administrators to visually query and visualize SELinux security policies and to easily identify the policy violations. We propose and formalize both a semantic substrate and adjacency matrix visualization techniques for policy visualization. Furthermore, we propose a visual query language for expressing policy queries in a visual form. Our framework is targeted towards enabling the average administrator by providing an intuitive cognitive sense about the policy, policy queries and policy violations. We also describe our implementation of a visualization-based policy analysis tool that provides the functionalities discussed in our framework.

Original language	English (US)
Title of host publication	SACMAT'08 - Proceedings of the 13th ACM Symposium on Access Control Models and Technologies
Pages	165-174
Number of pages	10
DOIs	https://doi.org/10.1145/1377836.1377863
State	Published - 2008
Externally published	Yes
Event	13th ACM Symposium on Access Control Models and Technologies, SACMAT'08 - Estes Park, CO, United States Duration: Jun 11 2008 → Jun 13 2008

Publication series

Name	Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT

Conference

Conference	13th ACM Symposium on Access Control Models and Technologies, SACMAT'08
Country/Territory	United States
City	Estes Park, CO
Period	6/11/08 → 6/13/08

Keywords

Security
Verification

ASJC Scopus subject areas

Software
Computer Networks and Communications
Safety, Risk, Reliability and Quality
Information Systems

Access to Document

10.1145/1377836.1377863

Cite this

Visualization based policy analysis: Case study in SELinux. / Xu, Wenjuan; Shehab, Mohamed; Ahn, Gail Joon.
SACMAT'08 - Proceedings of the 13th ACM Symposium on Access Control Models and Technologies. 2008. p. 165-174 1377863 (Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Xu, W, Shehab, M & Ahn, GJ 2008, Visualization based policy analysis: Case study in SELinux. in SACMAT'08 - Proceedings of the 13th ACM Symposium on Access Control Models and Technologies., 1377863, Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT, pp. 165-174, 13th ACM Symposium on Access Control Models and Technologies, SACMAT'08, Estes Park, CO, United States, 6/11/08. https://doi.org/10.1145/1377836.1377863

@inproceedings{790cc8be0dfb43599553a7600d20b7ae,

title = "Visualization based policy analysis: Case study in SELinux",

abstract = "Determining whether a given policy meets a site's high-level security goals can be difficult, due to the low-level nature and complexity of the policy language, and the multiple policy violation patterns. In this paper, we propose a visualization-based policy analysis framework that enables system administrators to visually query and visualize SELinux security policies and to easily identify the policy violations. We propose and formalize both a semantic substrate and adjacency matrix visualization techniques for policy visualization. Furthermore, we propose a visual query language for expressing policy queries in a visual form. Our framework is targeted towards enabling the average administrator by providing an intuitive cognitive sense about the policy, policy queries and policy violations. We also describe our implementation of a visualization-based policy analysis tool that provides the functionalities discussed in our framework.",

keywords = "Security, Verification",

author = "Wenjuan Xu and Mohamed Shehab and Ahn, {Gail Joon}",

year = "2008",

doi = "10.1145/1377836.1377863",

language = "English (US)",

isbn = "9781605581293",

series = "Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT",

pages = "165--174",

booktitle = "SACMAT'08 - Proceedings of the 13th ACM Symposium on Access Control Models and Technologies",

}

TY - GEN

T1 - Visualization based policy analysis

T2 - 13th ACM Symposium on Access Control Models and Technologies, SACMAT'08

AU - Xu, Wenjuan

AU - Shehab, Mohamed

AU - Ahn, Gail Joon

PY - 2008

Y1 - 2008

N2 - Determining whether a given policy meets a site's high-level security goals can be difficult, due to the low-level nature and complexity of the policy language, and the multiple policy violation patterns. In this paper, we propose a visualization-based policy analysis framework that enables system administrators to visually query and visualize SELinux security policies and to easily identify the policy violations. We propose and formalize both a semantic substrate and adjacency matrix visualization techniques for policy visualization. Furthermore, we propose a visual query language for expressing policy queries in a visual form. Our framework is targeted towards enabling the average administrator by providing an intuitive cognitive sense about the policy, policy queries and policy violations. We also describe our implementation of a visualization-based policy analysis tool that provides the functionalities discussed in our framework.

AB - Determining whether a given policy meets a site's high-level security goals can be difficult, due to the low-level nature and complexity of the policy language, and the multiple policy violation patterns. In this paper, we propose a visualization-based policy analysis framework that enables system administrators to visually query and visualize SELinux security policies and to easily identify the policy violations. We propose and formalize both a semantic substrate and adjacency matrix visualization techniques for policy visualization. Furthermore, we propose a visual query language for expressing policy queries in a visual form. Our framework is targeted towards enabling the average administrator by providing an intuitive cognitive sense about the policy, policy queries and policy violations. We also describe our implementation of a visualization-based policy analysis tool that provides the functionalities discussed in our framework.

KW - Security

KW - Verification

UR - http://www.scopus.com/inward/record.url?scp=57349092163&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=57349092163&partnerID=8YFLogxK

U2 - 10.1145/1377836.1377863

DO - 10.1145/1377836.1377863

M3 - Conference contribution

AN - SCOPUS:57349092163

SN - 9781605581293

T3 - Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT

SP - 165

EP - 174

BT - SACMAT'08 - Proceedings of the 13th ACM Symposium on Access Control Models and Technologies

Y2 - 11 June 2008 through 13 June 2008

ER -

Visualization based policy analysis: Case study in SELinux

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this