Abstract
In this paper, we present a visual representation of access control permissions in a standard hierarchical file system. Our visualization of file permissions leverages treemaps, a popular graphical representation of hierarchical data. In particular, we present a visualization of access control for the NTFS file system that can help a non-expert user understand and manipulate file system permissions in a simple and effective way. While our examples are based on NTFS, our approach can be used for many other hierarchical file systems as well.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Bladh, T., Carr, D.A., Schol, J.: Extending tree-maps to three dimensions: A comparative study. In: Masoodian, M., Jones, S., Rogers, B. (eds.) APCHI 2004. LNCS, vol. 3101, pp. 50–59. Springer, Heidelberg (2004)
Bruls, M., Huizing, K., van Wijk, J.: Squarified treemaps. In: Proc. of Joint Eurographics and IEEE TCVG Symp. on Visualization (TCVG), pp. 33–42 (2000)
Cao, X., Iverson, L.: Intentional access management: making access control usable for end-users. In: Proc. of Int. Symposium on Usable Privacy and Security (SOUPS), pp. 20–31 (2006)
Foster, J., Subramanian, K., Herring, R., Ahn, G.: Interactive exploration of the AFS file system. In: Proc. of the IEEE Symposium on Information Visualization (INFOVIS), p. 215 (2004)
Jaeger, T., Tidswell, J.E.: Practical safety in flexible access control models. ACM Trans. Information Systems Security 4(2), 158–190 (2001)
Johnson, B., Shneiderman, B.: Tree maps: A space-filling approach to the visualization of hierarchical information structures. In: Proc. IEEE Visualization, pp. 284–291 (1991)
Johnston, J.B.: The contour model of block structured processes. SIGPLAN Not. 6(2), 55–82 (1971)
Montemayor, J., Freeman, A., Gersh, J., Llanso, T., Patrone, D.: Information visualization for rule-based resource access control. In: Proc. of Int. Symposium on Usable Privacy and Security (SOUPS) (2006)
Reeder, R., Bauer, L., Cranor, L., Reiter, M., Bacon, K., How, K., Strong, H.: Expandable grids for visualizing and authoring computer security policies. In: Proc. ACM Conf. on Human Factors in Computing Systems (CHI), pp. 1473–1482 (2008)
Rode, J., Johansson, C., DiGioia, P., Filho, R.S.S., Nies, K., Nguyen, D.H., Ren, J., Dourish, P., Redmiles, D.F.: Seeing further: extending visualization as a basis for usable security. In: SOUPS, pp. 145–155 (2006)
Russinovich, M.E., Solomon, D.A.: Microsoft Windows Internals, 4th edn. Microsoft Windows Server TM2003, Windows XP, and Windows 2000 (Pro-Developer). Microsoft Press, Redmond (2004)
Stasko, J.: An evaluation of space-filling information visualizations for depicting hierarchical structures. Int. J. Hum.-Comput. Stud. 53(5), 663–694 (2000)
Wilson, R.M., Bergeron, R.D.: Dynamic hierarchy specification and visualization. In: Proc. of the IEEE Symposium on Information Visualization (INFOVIS), p. 65 (1999)
Author information
Authors and Affiliations
Editor information
Rights and permissions
Copyright information
© 2008 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Heitzmann, A., Palazzi, B., Papamanthou, C., Tamassia, R. (2008). Effective Visualization of File System Access-Control. In: Goodall, J.R., Conti, G., Ma, KL. (eds) Visualization for Computer Security. VizSec 2008. Lecture Notes in Computer Science, vol 5210. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-85933-8_2
Download citation
DOI: https://doi.org/10.1007/978-3-540-85933-8_2
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-85931-4
Online ISBN: 978-3-540-85933-8
eBook Packages: Computer ScienceComputer Science (R0)