{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,19]],"date-time":"2025-03-19T12:47:39Z","timestamp":1742388459094},"publisher-location":"Berlin, Heidelberg","reference-count":23,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642030062"},{"type":"electronic","value":"9783642030079"}],"license":[{"start":{"date-parts":[[2009,1,1]],"date-time":"2009-01-01T00:00:00Z","timestamp":1230768000000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2009]]},"DOI":"10.1007\/978-3-642-03007-9_5","type":"book-chapter","created":{"date-parts":[[2009,7,11]],"date-time":"2009-07-11T06:54:17Z","timestamp":1247295257000},"page":"65-80","source":"Crossref","is-referenced-by-count":9,"title":["Towards System Integrity Protection with Graph-Based Policy Analysis"],"prefix":"10.1007","author":[{"given":"Wenjuan","family":"Xu","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Xinwen","family":"Zhang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Gail-Joon","family":"Ahn","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"5_CR1","unstructured":"Tresys Technology Apol., http:\/\/www.tresys.com\/selinux\/"},{"key":"5_CR2","unstructured":"Trusted Computer System Evaluation Criteria. United States Government Department of Defense (DOD), Profile Books (1985)"},{"key":"5_CR3","doi-asserted-by":"crossref","unstructured":"Ahn, G., Xu, W., Zhang, X.: Systematic policy analysis for high-assurance services in selinux. In: Proc. of IEEE Workshop on Policies for Distributed Systems and Networks (2008)","DOI":"10.1109\/POLICY.2008.18"},{"key":"5_CR4","doi-asserted-by":"crossref","unstructured":"Anderson, A.P.: Computer security technology planning study. Technical Report ESD-TR-73-51, II (1972)","DOI":"10.21236\/AD0772806"},{"issue":"5","key":"5_CR5","doi-asserted-by":"publisher","first-page":"733","DOI":"10.1109\/TVCG.2006.166","volume":"12","author":"A. Aris","year":"2006","unstructured":"Aris, A.: Network visualization by semantic substrates. IEEE Transactions on Visualization and Computer Graphics\u00a012(5), 733\u2013740 (2006); Senior Member-Ben Shneiderman","journal-title":"IEEE Transactions on Visualization and Computer Graphics"},{"key":"5_CR6","unstructured":"H.\u00a0C. I.\u00a0L. at\u00a0University\u00a0of Maryland. Piccolo, http:\/\/www.cs.umd.edu\/hcil\/jazz\/download\/index.shtml"},{"key":"5_CR7","unstructured":"Biba, K.J.: Integrity consideration for secure compuer system. Technical report, Mitre Corp. Report TR-3153, Bedford, Mass (1977)"},{"key":"5_CR8","unstructured":"Green, M.: Toward a perceptual science of multidimensional data visualization: Bertin and beyond (1998), http:\/\/www.ergogero.com\/dataviz\/dviz2.html"},{"key":"5_CR9","unstructured":"Guttman, J., Herzog, A., Ramsdell, J.: Information flow in operating systems: Eager formal methods. In: Workshop on Issues in the Theory of Security (WITS) (2003)"},{"issue":"1","key":"5_CR10","doi-asserted-by":"publisher","first-page":"24","DOI":"10.1109\/2945.841119","volume":"6","author":"I. Herman","year":"2000","unstructured":"Herman, I., Melancon, G., Marshall, M.: Graph visualization and navigation in information visualization: A survey. IEEE Transactions on Visualization and Computer Graphics\u00a06(1), 24\u201343 (2000)","journal-title":"IEEE Transactions on Visualization and Computer Graphics"},{"key":"5_CR11","unstructured":"Jaeger, T., Sailer, R., Zhang, X.: Analyzing integrity protection in the selinux example policy. In: Proc. of USENIX Security Symposium (2003)"},{"key":"5_CR12","unstructured":"Loscocco, P., Smalley, S.: Integrating flexible support for security policies into the linux operating system. In: USENIX Annual Technical Conference, FREENIX Track (2001)"},{"key":"5_CR13","unstructured":"Provos, N., Friedl, M., Honeyman, P.: Preventing privilege escalation. In: 12th USENIX Security Symposium, August 2003, p. 11 (2003)"},{"key":"5_CR14","unstructured":"Sailer, R., Zhang, X., Jaeger, T., van Doorn, L.: Design and implementation of a TCG-based integrity measurement architecture. In: USENIX Security Symposium (2004)"},{"issue":"11","key":"5_CR15","doi-asserted-by":"publisher","first-page":"9","DOI":"10.1109\/2.241422","volume":"26","author":"R.S. Sandhu","year":"1993","unstructured":"Sandhu, R.S.: Lattice-based access control models. IEEE Computer\u00a026(11), 9\u201319 (1993)","journal-title":"IEEE Computer"},{"key":"5_CR16","unstructured":"Sarna-Starosta, B., Stoller, S.D.: Policy analysis for security-enhanced linux. In: Proceedings of the 2004 Workshop on Issues in the Theory of Security (2004)"},{"key":"5_CR17","unstructured":"Shankar, U., Jaeger, T., Sailer, R.: Toward automated information-flow integrity verification for security-critical applications. In: NDSS. The Internet Society (2006)"},{"key":"5_CR18","unstructured":"Smalley, S.: Configuring the selinux policy (2003), http:\/\/www.nsa.gov\/SELinux\/docs.html"},{"key":"5_CR19","doi-asserted-by":"crossref","unstructured":"Fraser, T.: Lomac: Low water-mark integrity protection for cots environment. In: Proceedings of the IEEE Symposium on Security and Privacy (May 2000)","DOI":"10.1109\/SECPRI.2000.848460"},{"key":"5_CR20","unstructured":"WIKIPEDIA. Trusted computing base, http:\/\/en.wikipedia.org\/wiki\/Tusted_Computing_Base"},{"key":"5_CR21","doi-asserted-by":"crossref","unstructured":"Xu, W., Shehab, M., Ahn, G.: Visualization based policy analysis: case study in selinux. In: Proc. of ACM Symposium of Access Control Models and Technologies (2008)","DOI":"10.1145\/1377836.1377863"},{"key":"5_CR22","doi-asserted-by":"crossref","unstructured":"Wang, H., Osborn, S.: Discretionary access control with the administrative role graph model. In: Proc. of ACM Symposium of Access Control Models and Technologies (2007)","DOI":"10.1145\/1266840.1266865"},{"key":"5_CR23","doi-asserted-by":"crossref","unstructured":"Osborn, S.: Information flow analysis of an RBAC system. In: Proc. of ACM Symposium of Access Control Models and Technologies (2002)","DOI":"10.1145\/507711.507738"}],"container-title":["Lecture Notes in Computer Science","Data and Applications Security XXIII"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-03007-9_5","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,21]],"date-time":"2019-05-21T11:05:08Z","timestamp":1558436708000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-03007-9_5"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2009]]},"ISBN":["9783642030062","9783642030079"],"references-count":23,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-03007-9_5","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2009]]}}}