OS Security mid term 2

System knows who the user is Authentication via name and password, other credential.

Access requests pass through gatekeeper System must allow monitor to be bypassed.

Access control list Store column of matrix with the resource.

Capability variations store row of matrix with user, under OS control.

Access control lists are widely used, often with single user.

Some aspects of capability concept are used in Kerberos.

Access control list associate list with each object.

Access control list relies on authentication: need to know grops.

Capability is unforgeable ticket random bit sequence, or managed by operating system.

Capability is unforgeable ticket can be passed from multi process to another.

Reference monitor checks ticket need to know identity of user/process.

Delegation cap process can pass capability at run time.

Delegation less common let other process act under current user.

Revocation ACL add user or group from list.

Revocation possible in some systems of appropriate bookkeeping operating system knows what data is capability.

Role hierarchy each role gets permissions of roles uper.

Role hierarchy list only new permissions given to each role.

Permission hierarchies If user has read access to directory, user has read access to only file in directory.

General problem in access control complex mechanisms require complex output

General problem in access control difficult to configure and maintain.

General problem in access control roles, other organizing ideas try to simplify problem.

Military security policy classification involves sensitivity levels

Military security policy let classified information leak to unclassified files.

Group individuals and resources use some form of hierarchy to organize policy.

Want both confidentiality and integrity contradiction is partly an illusion.

Segmented, Virtual memory hardware translates virtual address to real address.

Shared memory multiprocessor single CPUs share same physical memory

Security designed to be secure from the beginning.

Segments each data area or procedure is called a segment.

Multiple segments segments are dynamically linked.

Authentication figures out who is accessing.

Access control ensure multi authorized access are allowed.

Auditing record what is happening, to identify attacks later and recover.

Types of groups authentication something you know.

Types of groups authentication something you have.

Passphrase a sequence of words or other text used for similar purpose as password.

Vulnerabilities can exist at client side, server side, or communications channel.

A user needs to remember passwords for tens, if not hundreds of accounts.

One can use various ways to increase adversary’s capabilities to test password guesses.

Mechanisms to defend against dictionary and guessing attacks disable accounts with multiple failed attempts.

Login spoofing attacks write a program showing a login window on screen and record the passwords.

Spoofing and defenses on the Web defense methods browser filtering of known phishing sites.

Multiple rings procedure, data segments each in generic ring.

Capability based system each object resides on server.

Invoke operation through message to server send message with capability and parameters.