The Notation for Audit Graphs

Jim is developing the Notation for Attribute Graphs (NAG) and associated functions. Here are some notes on NAG:
o 3 basic objects
o nodes
o edges
o graphs (collections of node, edges, and graphs)
o objects have user-definable groups of attributes, i.e.
o physical: attributes that can be seen i.e. shape, style
o audit: attributes storing info. from audit logs
o data: attributes representing variables
o any other set the user finds helpful
o attributes can have 3 kinds of values:
o scalars (strings)
o unordered lists of values of these 3 types
o ordered lists (tuples) of values of these 3 types
o Perl packages provides abstract-data-type-like access to the NAG data so that the user need not know the details of the notation
o NAG utilities:
o bsm2nag: converts a Sun BSM audit log to NAG
o nag2dot: converts a NAG file to DOT
o a utility that inputs a NAG file, performs specified reductions, and outputs the modifies NAG file (details of reduction specification in flux)
o a GUI written on top of DOTTY that aids in writing graph rewrite specifications (implemented for a old version of the rewrite specs.)
o a GUI written on top of DOTTY that shows the results of applying specified graph rewrites on NAG file(s)
o hpux2nag: converts a HP-UX audit log to NAG (to be written)
o xxx2nag: converts a xxx audit log to NAG (to be written)
o potentially useful for more than just audit graph reduction i.e. debugging, automata
<- AWB SecLab Home Page Last revised 11-Oct-94 by Jim Hoagland