useless metaphors useless metaphors why specifying
play

Useless Metaphors? Useless Metaphors? Why Specifying Security Why - PDF document

Feb 19, 2023 •334 likes •392 views

Useless Metaphors? Useless Metaphors? Why Specifying Security Why Specifying Security is So Hard is So Hard DIMACS Workshop on DIMACS Workshop on Useable Privacy and Security Software Useable Privacy and Security Software Patrick McDaniel

  1. Useless Metaphors? Useless Metaphors? Why Specifying Security Why Specifying Security is So Hard is So Hard DIMACS Workshop on DIMACS Workshop on Useable Privacy and Security Software Useable Privacy and Security Software Patrick McDaniel - AT&T Research Patrick McDaniel - AT&T Research July 8th, 2004 July 8th, 2004 DIMACS WUPSS • July 8th, 2004 • Patrick McDaniel • http://www.patrickmcdaniel.org/ • 1 A story … … A story DIMACS WUPSS • July 8th, 2004 • Patrick McDaniel • http://www.patrickmcdaniel.org/ • 2 What is security policy? What is security policy?  Statement of expected or desirable behavior within some defined scope  A policy system is a collection of abstractions, representations, interfaces, and implementations used to specify and enforce policy  Realization of underlying model (metaphors)  RBAC, B-LP, P3P, Keynote, Antigone, IE Privacy  Problem: Why don’t we have effective interfaces for security policy? DIMACS WUPSS • July 8th, 2004 • Patrick McDaniel • http://www.patrickmcdaniel.org/ • 3 1

  2. Goals Goals  A policy system is effective if  Allows users to state (interface)  what they want (intent)  in terms they understand (vocabulary) …  … and the system meets that specification. (enforcement)  Examples:  IE Cookie Management Policy : no TP cookies  Systrace Policy: ls process cannot open network connections DIMACS WUPSS • July 8th, 2004 • Patrick McDaniel • http://www.patrickmcdaniel.org/ • 4 Clearly, we are not there … … Clearly, we are not there  Policy is to CISCO as security is to Microsoft interface Tunnel0-1a67sd description Tunnel to router at 1b67sd ip address 192.68.23.22 31 tunnel source sdf01orat22 tunnel destination sd02forat23 exit crypto isakmp policy 10 authentication pre-share encryption 3des group 3 hash sha  Moreover, Security is to Microsoft because of default (open functionality) policy, and no clear way to see or change default policy DIMACS WUPSS • July 8th, 2004 • Patrick McDaniel • http://www.patrickmcdaniel.org/ • 5 One Perspective One Perspective  Hypothesis: Security Policy Systems largely fail because designers fail to present a clear narrative * to the user  Experiment: Look at guidelines for fiction and non-fiction writing  S&W, my 6th grade primer, ARMY handbook, Harlequin Romance, BBC, web style guides … DIMACS WUPSS • July 8th, 2004 • Patrick McDaniel • http://www.patrickmcdaniel.org/ • 6 2

  3. Axioms/Guidelines Axioms/Guidelines  What do these stylebooks and guidelines tell us about effective communication?  Themes emerge about good (and bad) writing style (axioms)  Do they apply to design of policy systems?  Policy uses metaphors/abstractions to communicate  This is not only interface, but modeling …  So, lets see what axioms (from the guidelines) apply to policy design …. DIMACS WUPSS • July 8th, 2004 • Patrick McDaniel • http://www.patrickmcdaniel.org/ • 7 (vocabulary ) Axiom 1: Know audience Axiom 1: Know audience “She grew on him like he was e coli and she was room temperature Canadian beef.”  Policy that fails to speak the users’ language has no chance of success  Moreover, any policy that requires decisions about topics outside users scope of experience has little chance of success DIMACS WUPSS • July 8th, 2004 • Patrick McDaniel • http://www.patrickmcdaniel.org/ • 8 Axiom 2: Focus … Axiom 2: Focus … “The knife was as sharp as the tone used by Rep. Shelia Jackson Lee (D-Tex) in the first several points of the parliamentary procedure made to Rep. Henry Hide (R-Ill.) in the House Judiciary Committee hearings on the impeachment of Present William Jefferson Clinton.”  Seperation of concerns Application  Policy should focus on the Policy Engine topics of user interest Key Management Authorization and Failure Dection Access Control Data Handling and Recovery Initialization Membership Mechansism Mechanism Mechanism Mechanism Mechanism Mechanism  Be only as flexible as necessary (e.g., Ismene)  However, needs to be Broadcast Transport complete (enough) IP DIMACS WUPSS • July 8th, 2004 • Patrick McDaniel • http://www.patrickmcdaniel.org/ • 9 3

  4. (intent ) Axiom 3: Simplicity Axiom 3: Simplicity “The plan was simple like my brother-in-law Phil. But unlike Phil, this plan just might work.”  Complexity is the enemy  Abstractions work to clarify meaning  and simplify tasks or policy structures, i.e, roles  … but so is simplicity  Oversimplification also problematic  e.g., high/med/low privacy DIMACS WUPSS • July 8th, 2004 • Patrick McDaniel • http://www.patrickmcdaniel.org/ • 10 (interface ) Axiom 4: Structure/tone Axiom 4: Structure/tone “Her vocabulary was as bad as, like, whatever.”  A confounding interface, no matter how clear the underlying model, is fatal …  Interface should be all those things we hope to see from HCI community  Intuitive  Easy to navigate  Targeted to task  (focused, simple, …) DIMACS WUPSS • July 8th, 2004 • Patrick McDaniel • http://www.patrickmcdaniel.org/ • 11 What does this all mean? What does this all mean?  Idea : we want to apply these axioms to drive design of apply? Narrative Driven Policy Design DIMACS WUPSS • July 8th, 2004 • Patrick McDaniel • http://www.patrickmcdaniel.org/ • 12 4

  5. A (new) policy design workflow A (new) policy design workflow … … a) Apply axioms to policy Start design b) Interact with user Vocabulary Intent community to determine definition definition requirements c) Separation of mechanism Objectives Lexicon from meaning Policy modeling Representation Interface System design design DIMACS WUPSS • July 8th, 2004 • Patrick McDaniel • http://www.patrickmcdaniel.org/ • 13 Conclusions Conclusions  Security policy design is hard  Lots of ways to make mistakes, some unavoidable  Policy rarely a factor in systems/interface design  Community needs to spend more time looking at intent, and less about form and enforcement  Most of the problem is no longer about technology, it is about providing meaningful interfaces  Separation of the how from the what  Idea : narrative driven policy design  Not new: storyboarding, etc. is common in HCI  Apply to distributed systems security Policy  Use tenets of HCI to analysis and modeling DIMACS WUPSS • July 8th, 2004 • Patrick McDaniel • http://www.patrickmcdaniel.org/ • 14 Thank you … … Thank you Patrick McDaniel pdmcdan@research.att.com “ Every minute without you feels like 60 seconds. ” DIMACS WUPSS • July 8th, 2004 • Patrick McDaniel • http://www.patrickmcdaniel.org/ • 15 5

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

METAPHORS WE COMPUTE BY THE YEAR IS 1980 GEORGE LAKOFF & MARK JOHNSON METAPHORS WE LIVE BY

METAPHORS WE COMPUTE BY THE YEAR IS 1980 GEORGE LAKOFF & MARK JOHNSON METAPHORS WE LIVE BY

ALVARO VIDELA - @old_sound METAPHORS WE COMPUTE BY THE YEAR IS 1980 GEORGE LAKOFF & MARK JOHNSON METAPHORS WE LIVE BY METAPHOR ISNT JUST A MATTER OF POETRY AND RHETORICAL FLOURISH METAPHORS PERMEATE ALL AREAS OF OUR LIVES METAPHORS

1.24k views • 97 slides
Chapter 7 Friday, February 05, 1999 Interface Metaphors and Conceptual Models Preview of

Chapter 7 Friday, February 05, 1999 Interface Metaphors and Conceptual Models Preview of

Chapter 7 Friday, February 05, 1999 Interface Metaphors and Conceptual Models Preview of Chapter 7 l Verbal metaphors l Virtual interface metaphors l Ubiquitous computing l Conceptual models 1 Metaphors l Metaphors convey an abstract concept

571 views • 7 slides
E40M Useless Box, Boolean Logic M. Horowitz, J. Plummer, R. Howe 1 Useless Box Lab Project #2

E40M Useless Box, Boolean Logic M. Horowitz, J. Plummer, R. Howe 1 Useless Box Lab Project #2

E40M Useless Box, Boolean Logic M. Horowitz, J. Plummer, R. Howe 1 Useless Box Lab Project #2 Motor Battery pack Two switches The one you switch A limit switch The first version of the box you will build uses mechanical

482 views • 21 slides
A frame-based analysis of synaesthetic metaphors W. Petersen, J. Fleischhauer, H. Beseoglu, P .

A frame-based analysis of synaesthetic metaphors W. Petersen, J. Fleischhauer, H. Beseoglu, P .

Synaesthetic metaphors Frames of synaesthetic metaphors A frame-based analysis of synaesthetic metaphors W. Petersen, J. Fleischhauer, H. Beseoglu, P . B ucker Heinrich-Heine-Universit at D usseldorf A Figure of Speech 2007, Riga

888 views • 43 slides
Models & Metaphors Normans Gulfs Cues Errors Metaphors Jrg Cassens Tutorial

Models & Metaphors Normans Gulfs Cues Errors Metaphors Jrg Cassens Tutorial

Introduction Models & Metaphors Normans Gulfs Cues Errors Metaphors Jrg Cassens Tutorial References SoSe 2019 Contextual Design of Interactive Systems SoSe 2019 Jrg Cassens Models & Metaphors 1 / 66 Introduction

992 views • 70 slides
+ The many uses of imageries and metaphors in problem gambling counselling Lowell Wan &

+ The many uses of imageries and metaphors in problem gambling counselling Lowell Wan &

+ The many uses of imageries and metaphors in problem gambling counselling Lowell Wan & Letty Tumbaga Bentleigh Bayside Community Health + We all have used metaphors and images in our clinical practice effective with clients who are

458 views • 8 slides
Avoiding Useless Rules Automatically Matt Kaufmann May 29, 2020 1/8 B ACKGROUND : A CCUMULATED -

Avoiding Useless Rules Automatically Matt Kaufmann May 29, 2020 1/8 B ACKGROUND : A CCUMULATED -

Avoiding Useless Rules Automatically Matt Kaufmann May 29, 2020 1/8 B ACKGROUND : A CCUMULATED - PERSISTENCE The useless runes tool is based on accumulated-persistence. Time for a demo .... 2/8 D OCUMENTATION See :DOC useless-runes in

370 views • 20 slides
Models for our Planet Metaphors for our World Islands: Models for our Planet Metaphors for

Models for our Planet Metaphors for our World Islands: Models for our Planet Metaphors for

Models for our Planet Metaphors for our World Islands: Models for our Planet Metaphors for our World Interdisciplinary lecture series Institute for Interdisciplinary Studies (University of Amsterdam) Islands: Models for our Planet

200 views • 4 slides
Inves&ga&ng the use of violence metaphors by

Inves&ga&ng the use of violence metaphors by

Inves&ga&ng the use of violence metaphors by pa&ents, family carers and healthcare professionals involved in end of life care Jane Demmen

396 views • 25 slides
Personality as an Emergent Process: Some Metaphors/Speculation Steven N. Durlauf University of

Personality as an Emergent Process: Some Metaphors/Speculation Steven N. Durlauf University of

Personality as an Emergent Process: Some Metaphors/Speculation Steven N. Durlauf University of Wisconsin at Madison October 1, 2015 1 In this talk, I will propose some metaphors for personality which may be relevant to measurement

669 views • 33 slides
Metaphors for good and bad deaths in interviews

Metaphors for good and bad deaths in interviews

Metaphors for good and bad deaths in interviews with hospice managers Elena Semino, Veronika Koller, Jane Demmen, Andrew Hardie, Sheila Payne,

535 views • 20 slides
The role of metaphors in the recent history of the way -construction Florent Perek University of

The role of metaphors in the recent history of the way -construction Florent Perek University of

The role of metaphors in the recent history of the way -construction Florent Perek University of Birmingham Overview o Study in diachronic construction grammar o Schematicity and productivity of the way -construction o Role of metaphors in

327 views • 22 slides
Part III Synchronization Software and Hardware Solutions Computers are useless. They can only

Part III Synchronization Software and Hardware Solutions Computers are useless. They can only

Part III Synchronization Software and Hardware Solutions Computers are useless. They can only give answers. 1 Fall 2015 Pablo Picasso So Softwa ware re So Solut ution ons s for or Two Pr Tw o Proc oces esse ses Suppose we

741 views • 28 slides
Rituals and root-metaphors in a mind shi2 The

Rituals and root-metaphors in a mind shi2 The

Rituals and root-metaphors in a mind shi2 The rituals and imagery of In 100 Years Star9ng Now A ritual can poten5ally

375 views • 13 slides
Grammatical Metaphors Patrick Hanks and Sara Mo e Research Institute of Information And

Grammatical Metaphors Patrick Hanks and Sara Mo e Research Institute of Information And

Verb Patterns, Noun Collocations, and Grammatical Metaphors Patrick Hanks and Sara Mo e Research Institute of Information And Language Processing, University of Wolverhampton Theme of the talk What is meaning? How does it work?

644 views • 20 slides
Cool & Useless @KevlinHenney cool , adjective fashionably attractive or impressive

Cool & Useless @KevlinHenney cool , adjective fashionably attractive or impressive

Cool & Useless @KevlinHenney cool , adjective fashionably attractive or impressive excellent used to express acceptance or agreement unfriendly or unenthusiastic used as an intensive used when a conversation goes silent

620 views • 34 slides
Disclosures Kinematic and Quantitative MR Imaging Evaluation of ACL Reconstructions Using the

Disclosures Kinematic and Quantitative MR Imaging Evaluation of ACL Reconstructions Using the

5/10/2013 Disclosures Kinematic and Quantitative MR Imaging Evaluation of ACL Reconstructions Using the Mini-Two Incision Method Aided by a Resident Research Grant from the Compared to the Anteromedial Portal Technique Orthopaedic Research

190 views • 7 slides
BEFORE WE START A QUICK SYNCHRONIZATION REVIEW! Setting: We have some variables shared by

BEFORE WE START A QUICK SYNCHRONIZATION REVIEW! Setting: We have some variables shared by

BEFORE WE START A QUICK SYNCHRONIZATION REVIEW! Setting: We have some variables shared by several threads. All of them do updates that read and then modify data. Question: Describe our synchronization goal very succinctly. Question:

1.04k views • 62 slides
Snack & Learn Webinar on Future Ready Projects Waterview Connection Waterview Connection

Snack & Learn Webinar on Future Ready Projects Waterview Connection Waterview Connection

Snack & Learn Webinar on Future Ready Projects Waterview Connection Waterview Connection End of Project Video - https://youtu.be/BP2OYNIZmMk Snack & Learn Webinar on Future Ready Projects Waterview Connection Future Ready Better

492 views • 27 slides
CSE 521 Algorithms Depth First Search and Strongly Connected Components W.L. Ruzzo, Winter 2013

CSE 521 Algorithms Depth First Search and Strongly Connected Components W.L. Ruzzo, Winter 2013

CSE 521 Algorithms Depth First Search and Strongly Connected Components W.L. Ruzzo, Winter 2013 1 Undirected Depth-First Search Key Properties: 1. No cross-edges ; only tree- or back-edges 2. Before returning, DFS(v) visits all

984 views • 32 slides
General notes on mobility Mobility in communications consists of various technologies and

General notes on mobility Mobility in communications consists of various technologies and

HELSINKI UNIVERSITY OF TECHNOLOGY Mobility management in IP networks & Mobile IP Lecture slides for S-38.192 17.3.2005 Mika Ilvesmki Tietoverkkolaboratorio Networking laboratory Networking laboratory HELSINKI UNIVERSITY OF

513 views • 17 slides
Viscous Flow Computations for the Diffuser Section of a Large Water Tunnel Ahmet Yusuf GRKAN a,1

Viscous Flow Computations for the Diffuser Section of a Large Water Tunnel Ahmet Yusuf GRKAN a,1

Viscous Flow Computations for the Diffuser Section of a Large Water Tunnel Ahmet Yusuf GRKAN a,1 , aatay Sabri KKSAL a,1 , ar AYDIN a,1 , Uur Oral NAL a,1 a Istanbul Technical University Abstract. A new research project,

559 views • 8 slides
High-Level Synchronization Dining Philosophers while(TRUE) { think(); eat(); } Quiz: Write a

High-Level Synchronization Dining Philosophers while(TRUE) { think(); eat(); } Quiz: Write a

High-Level Synchronization Dining Philosophers while(TRUE) { think(); eat(); } Quiz: Write a synchronization schema for the problem Dining Philosophers Problem philosopher(int i) { while(TRUE) { // Think // Eat P(fork[i]); P(fork[(i+1)

977 views • 51 slides
- tunnel-effect ( "micro-convergence" ) for SC-LDPC [ 1 ] [ 1 ] Schmalen, ten Brink,

- tunnel-effect ( "micro-convergence" ) for SC-LDPC [ 1 ] [ 1 ] Schmalen, ten Brink,

EXIT-Chart of SC-LDPC Spatial Coupling & Tail-biting Further Investigation Simulation results Block-LDPC SC-LDPC 1 1 0.9 0.9 0.8 0.8 0.7 0.7 I E,VND , I A,CND 0.6 I E,VND , I A,CND 0.6 0.5 0.5 0.4 0.4 0.3 0.3 0.2 0.2 I

436 views • 5 slides

More recommend