PolicyGlobe: a framework for integrating network and operating system security policies

  • Authors:

  • Hamed Okhravi;Ryan H. Kagin;David M. Nicol

  • Affiliations:

  • University of Illinois at Urbana-Champaign, Urbana, IL, USA;University of Illinois at Urbana-Champaign, Urbana, IL, USA;University of Illinois at Urbana-Champaign, Urbana, IL, USA

  • Venue:
  • Proceedings of the 2nd ACM workshop on Assurable and usable security configuration
  • Year:
  • 2009

Quantified Score

Hi-index 0.00

Visualization

Abstract

In modern networked systems with many machines and traffic control devices (such as firewalls), it is difficult to determine the overall effect of the security policies and configurations implemented inside the operating system and network devices. This paper describes PolicyGlobe, a framework to integrate operating system and network security policies. Using the idea of accessibility sets, PolicyGlobe integrates the Security Enhanced Linux (SE-Linux) access control policies with firewall configurations and traffic control policies. Using this framework, it is possible to construct a global accessibility set for each process in the system. PolicyGlobe makes it possible to determine the global effect of the local security policies and firewall configurations and answer the basic questions "can a subject in one machine access an object in another machine?" We have developed the integration algorithms, optimized the algorithms, implemented the entire framework, and conducted empirical studies on it. The studies show that in a network of 10 densely connected machines each with a large SE-Linux policy (~275,000 lines of rules), PolicyGlobe can build the global accessibility sets in about 10 minutes. In a system with a more limited connectivity, the analysis takes a much shorter amount of time.