{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T04:36:47Z","timestamp":1750307807422,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":41,"publisher":"ACM","license":[{"start":{"date-parts":[[2008,6,11]],"date-time":"2008-06-11T00:00:00Z","timestamp":1213142400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2008,6,11]]},"DOI":"10.1145\/1377836.1377863","type":"proceedings-article","created":{"date-parts":[[2008,6,10]],"date-time":"2008-06-10T14:13:22Z","timestamp":1213107202000},"page":"165-174","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":19,"title":["Visualization based policy analysis"],"prefix":"10.1145","author":[{"given":"Wenjuan","family":"Xu","sequence":"first","affiliation":[{"name":"University of North Carolina at Charlotte, Charlotte, NC"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mohamed","family":"Shehab","sequence":"additional","affiliation":[{"name":"University of North Carolina at Charlotte, Charlotte, NC"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Gail-Joon","family":"Ahn","sequence":"additional","affiliation":[{"name":"University of North Carolina at Charlotte, Charlotte, NC"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2008,6,11]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"Operating System and Devices","author":"Concepts System Management","year":"1999","unstructured":"System Management Concepts : Operating System and Devices . IBM Corporation , 1 Ed., 1999 . System Management Concepts: Operating System and Devices. IBM Corporation, 1 Ed., 1999."},{"key":"e_1_3_2_1_2_1","volume-title":"Meeting critical security objectives with security-enhanced linux. In Proceedings of the Ottawa Linux Symposium","author":"Loscocco P.","year":"2001","unstructured":"P. Loscocco and S. Smalley . Meeting critical security objectives with security-enhanced linux. In Proceedings of the Ottawa Linux Symposium , 2001 . P. Loscocco and S. Smalley. Meeting critical security objectives with security-enhanced linux. In Proceedings of the Ottawa Linux Symposium, 2001."},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_3_1","DOI":"10.1109\/TVCG.2006.166"},{"unstructured":"Human Computer Interaction Lab at University of Maryland. Piccolo. Available from http:\/\/www.cs.umd.edu\/hcil\/jazz\/download\/index.shtml.  Human Computer Interaction Lab at University of Maryland. Piccolo. Available from http:\/\/www.cs.umd.edu\/hcil\/jazz\/download\/index.shtml.","key":"e_1_3_2_1_4_1"},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_5_1","DOI":"10.21236\/ADA023588"},{"key":"e_1_3_2_1_6_1","volume-title":"Integrity considerations for secure computer systems. MTR-3153","author":"Biba K. J.","year":"1977","unstructured":"K. J. Biba . Integrity considerations for secure computer systems. MTR-3153 , MITRE Corporation , April 1977 . K. J. Biba. Integrity considerations for secure computer systems. MTR-3153, MITRE Corporation, April 1977."},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_7_1","DOI":"10.1109\/SP.1987.10001"},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_8_1","DOI":"10.1016\/0167-4048(95)97026-7"},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_9_1","DOI":"10.1145\/360051.360056"},{"key":"e_1_3_2_1_10_1","volume-title":"In Workshop on Issues in the Theory of Security (WITS)","author":"Guttman J.","year":"2003","unstructured":"J. Guttman , A. Herzog , and J. Ramsdell . Information flow in operating systems: Eager formal methods . In In Workshop on Issues in the Theory of Security (WITS) , 2003 . J. Guttman, A. Herzog, and J. Ramsdell. Information flow in operating systems: Eager formal methods. In In Workshop on Issues in the Theory of Security (WITS), 2003."},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_11_1","DOI":"10.1109\/ICSMC.2003.1244260"},{"key":"e_1_3_2_1_12_1","volume-title":"Toward a perceptual science of multidimensional data visualization: Bertin and beyond. Available from http:\/\/www.ergogero.com\/dataviz\/dviz2.html","author":"Green M.","year":"1998","unstructured":"M. Green . Toward a perceptual science of multidimensional data visualization: Bertin and beyond. Available from http:\/\/www.ergogero.com\/dataviz\/dviz2.html , 1998 . M. Green. Toward a perceptual science of multidimensional data visualization: Bertin and beyond. Available from http:\/\/www.ergogero.com\/dataviz\/dviz2.html, 1998."},{"key":"e_1_3_2_1_13_1","volume-title":"Workshop on Issues in the Theory of Security (WITS)","author":"Guttman J.","year":"2003","unstructured":"J. Guttman , A. Herzog , and J. Ramsdell . Information flow in operating systems: Eager formal methods . In Workshop on Issues in the Theory of Security (WITS) , 2003 . J. Guttman, A. Herzog, and J. Ramsdell. Information flow in operating systems: Eager formal methods. In Workshop on Issues in the Theory of Security (WITS), 2003."},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_14_1","DOI":"10.1109\/2945.841119"},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_15_1","DOI":"10.1109\/MCG.2006.34"},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_16_1","DOI":"10.1145\/1133058.1133063"},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_17_1","DOI":"10.5555\/1251353.1251358"},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_18_1","DOI":"10.1145\/990036.990053"},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_19_1","DOI":"10.1145\/937527.937528"},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_20_1","DOI":"10.1057\/palgrave.ivs.9500116"},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_21_1","DOI":"10.1109\/VIZSEC.2005.20"},{"key":"e_1_3_2_1_22_1","first-page":"29","volume-title":"USENIX Annual Technical Conference, FREENIX Track","author":"Loscocco P.","year":"2001","unstructured":"P. Loscocco and S. Smalley . Integrating flexible support for security policies into the linux operating system . In USENIX Annual Technical Conference, FREENIX Track , pages 29 -- 42 , Berkeley, CA, USA , 2001 . P. Loscocco and S. Smalley. Integrating flexible support for security policies into the linux operating system. In USENIX Annual Technical Conference, FREENIX Track, pages 29--42, Berkeley, CA, USA, 2001."},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_23_1","DOI":"10.1145\/1179576.1179578"},{"key":"e_1_3_2_1_24_1","volume-title":"Thesis (M. Eng.)","author":"Nidhi S.","year":"2005","unstructured":"S. Nidhi . Fireviz: A personal firewall visualizing tool . In Thesis (M. Eng.) , Massachusetts Institute of Technology , Dept . of Electrical Engineering and Computer Science, 2005 . S. Nidhi. Fireviz: A personal firewall visualizing tool. In Thesis (M. Eng.), Massachusetts Institute of Technology, Dept. of Electrical Engineering and Computer Science, 2005."},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_25_1","DOI":"10.1145\/1029208.1029225"},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_26_1","DOI":"10.1007\/978-3-322-80108-1_31"},{"key":"e_1_3_2_1_27_1","volume-title":"Insyder: a content-based visual-informationseeking system for the web","author":"Reiterer H.","year":"2005","unstructured":"H. Reiterer , G. Tullius , and T. Mann . Insyder: a content-based visual-informationseeking system for the web . Springer-Verlag GmbH , International Journal on Digital Libraries, 2005 . H. Reiterer, G. Tullius, and T. Mann. Insyder: a content-based visual-informationseeking system for the web. Springer-Verlag GmbH , International Journal on Digital Libraries, 2005."},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_28_1","DOI":"10.1145\/1030083.1030125"},{"issue":"9","key":"e_1_3_2_1_29_1","first-page":"1278","volume":"63","author":"Saltzer J.","year":"1975","unstructured":"J. Saltzer and M. Schroeder . The Protection of Information in Computer Systems. Proceedings of the IEEE , 63 ( 9 ): 1278 -- 1308 , Sept 1975 . J. Saltzer and M. Schroeder. The Protection of Information in Computer Systems. Proceedings of the IEEE, 63(9):1278--1308, Sept 1975.","journal-title":"The Protection of Information in Computer Systems. Proceedings of the IEEE"},{"key":"e_1_3_2_1_30_1","first-page":"1","volume-title":"Proceedings of the 2004 Workshop on Issues in the Theory of Security (WITS)","author":"Starosta B.","year":"2004","unstructured":"B. S.- Starosta and S. D. Stoller . Policy analysis for security-enhanced linux . In Proceedings of the 2004 Workshop on Issues in the Theory of Security (WITS) , pages 1 -- 12 , April 2004 . B. S.-Starosta and S. D. Stoller. Policy analysis for security-enhanced linux. In Proceedings of the 2004 Workshop on Issues in the Theory of Security (WITS), pages 1--12, April 2004."},{"key":"e_1_3_2_1_31_1","first-page":"1","volume-title":"Proceedings of the Workshop on Issues in the Theory of Security (WITS)","author":"Starosta B.","year":"2004","unstructured":"B. S.- Starosta and S. D. Stoller . Policy analysis for security-enhanced linux . In Proceedings of the Workshop on Issues in the Theory of Security (WITS) , pages 1 -- 12 , April 2004 . B. S.-Starosta and S. D. Stoller. Policy analysis for security-enhanced linux. In Proceedings of the Workshop on Issues in the Theory of Security (WITS), pages 1--12, April 2004."},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_32_1","DOI":"10.5555\/2384179.2384192"},{"unstructured":"S. Smalley. Configuring the selinux policy. http:\/\/www.nsa.gov\/SELinux\/docs.html 2003.  S. Smalley. Configuring the selinux policy. http:\/\/www.nsa.gov\/SELinux\/docs.html 2003.","key":"e_1_3_2_1_33_1"},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_34_1","DOI":"10.1002\/1097-4571(2000)9999:9999%3C::AID-ASI1033%3E3.0.CO;2-5"},{"unstructured":"Tresys Technology. Apol. Available from http:\/\/www.tresys.com\/selinux\/.  Tresys Technology. Apol. Available from http:\/\/www.tresys.com\/selinux\/.","key":"e_1_3_2_1_35_1"},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_36_1","DOI":"10.1145\/1240624.1240807"},{"key":"e_1_3_2_1_37_1","first-page":"1","volume-title":"LISA","author":"Tran T.","year":"2007","unstructured":"T. Tran , E. S. Al-Shaer , and R. Boutaba . Policyvis: Firewall security policy visualization and inspection . In LISA , pages 1 -- 16 , 2007 . T. Tran, E. S. Al-Shaer, and R. Boutaba. Policyvis: Firewall security policy visualization and inspection. In LISA, pages 1--16, 2007."},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_38_1","DOI":"10.1109\/VIZSEC.2005.21"},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_39_1","DOI":"10.1145\/1029208.1029214"},{"key":"e_1_3_2_1_40_1","first-page":"16","volume-title":"Proceedings of the 19th conference on Large Installation System Administration Conference","author":"Yurcik W.","year":"2005","unstructured":"W. Yurcik . Visualizing netflows for security at line speed: the sift tool suite . In Proceedings of the 19th conference on Large Installation System Administration Conference , pages 16 -- 16 , Berkeley, CA, USA , 2005 . W. Yurcik. Visualizing netflows for security at line speed: the sift tool suite. In Proceedings of the 19th conference on Large Installation System Administration Conference, pages 16--16, Berkeley, CA, USA, 2005."},{"doi-asserted-by":"publisher","key":"e_1_3_2_1_41_1","DOI":"10.1145\/1179576.1179588"}],"event":{"sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control","ACM Association for Computing Machinery"],"acronym":"SACMAT08","name":"SACMAT08: 13th ACM Symposium on Access Control Models and Technologies","location":"Estes Park CO USA"},"container-title":["Proceedings of the 13th ACM symposium on Access control models and technologies"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1377836.1377863","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1377836.1377863","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T13:56:39Z","timestamp":1750254999000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1377836.1377863"}},"subtitle":["case study in SELinux"],"short-title":[],"issued":{"date-parts":[[2008,6,11]]},"references-count":41,"alternative-id":["10.1145\/1377836.1377863","10.1145\/1377836"],"URL":"https:\/\/doi.org\/10.1145\/1377836.1377863","relation":{},"subject":[],"published":{"date-parts":[[2008,6,11]]},"assertion":[{"value":"2008-06-11","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}