Analyzing and Diffing Security Policies

SELinux and SE for Android are important access control systems available in Linux and integrated in Android, but designing and maintaining the policy rules can be challenging for policy administrators because of the number of rules in each policy. I contributed to a research project that experimented with visual analytics help understand policy structure, rules associated with policy denials, and differences between versions of a policy.

Videos

V3SPA demo tutorial

Blogs

V3SPA: An Open Source Tool for Visually Analyzing and Diffing SELinux/SE for Android Security Policies

Code

V3SPA GitHub repo

Papers

Robert Gove. “V3SPA: A Visual Analysis, Exploration, and Diffing Tool for SELinux and SEAndroid Security Policies.” Visualization for Cyber Security 2016. [pdf]