Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security in Operating Systems Cuiwei Zhao. Security in Operating System §Security breaches §Security goals §Protected objects of the general purpose operating.

Published byGodwin Hensley Modified over 8 years ago

Similar presentations

Presentation on theme: "Security in Operating Systems Cuiwei Zhao. Security in Operating System §Security breaches §Security goals §Protected objects of the general purpose operating."— Presentation transcript:

1 Security in Operating Systems Cuiwei Zhao

2 Security in Operating System §Security breaches §Security goals §Protected objects of the general purpose operating system §Protection of objects

3 Beaches §Exposure l A form of possible loss or harm in a computing system §Vulnerability l Weakness that might be exploited to cause loss or harm §Threats l circumstances that have the potential to cause loss or harm

4 Threats §Interruption §Interception §Modification §Fabrication

5 Security Goals §Confidentiality l the assets of a computing system are accessible only by authorized parties. §Integrity l assets can be modified only by authorized parties or only in authorized ways. §Availability l assets are accessible to authorized parties.

6 Protection In General-Purpose OS §Protected Objects and Methods §Protecting Memory and Addressing §Protecting Access to General Objects §File Protection Mechanisms §User Authentication

7 Protected Objects and Methods §Protected Objects §Security Methods of Operating Systems

8 Protected Objects Memory Sharable I/O devices, such as disks serially reusable I/O devices, such as printers and tape drives sharable programs and sub-procedures sharable data

9 Security Methods of Operating Systems §Separation: keeping one user’s objects separate from other users’ Physical Separation Temporal Separation Logical Separation Cryptographic Separation §Granularity of Control the larger the level of object controlled, the easier it is to implement access control.

10 Protecting Memory and Addressing §Fence §Relocation §Base/Bounds Registers §Tagged Architecture §Segmentation §Paging

11 Fence A fence is a method to confine users to one side of a boundary. Usually, fence is implemented via a hardware register.

12 Relocation Relocation is the process of taking a program written as if it began at address 0 and changing all addresses to reflect the actual address at which the program is located in memory. Fence register can be used within relocation process. To each program address, the contents of the fence register are added. This both relocates the address and guarantees that no one can access a location lower than a fence address.

13 Base/Bounds Registers In a multiuser, multiprogramming environment, fence register is variable. In this case fence register is called base register. Fence registers only provide a lower bound (a starting address), but not an upper one. A second register, called a bounds register can be used to provide a upper bound. In this way, a program’s addresses are neatly confined to the space between the base and the bounds registers. This technique protects a program’s addresses from modification by another user.

14 Tagged Architecture §The disadvantage of Base/Bounds technique §Tagged Architecture Every word of machine memory has one or more extra bits to identify the access rights to that word. This technique is not wide spread because of the market consideration (compatible).

15 Segmentation Segmentation divides a program into separate pieces. Each piece has a logical unity, a relationship among all of its code or data value. Segmentation was developed as a feasible means to have the effect of an unbounded number of base/bounds registers: a program could be divided into many pieces having different access rights. The operating system must maintain a table of segment names and their true addresses in memory. The program address is in the form. OS can retrieve the real address via looking for the table then making a simple calculation: address of the name + offset

16 Paging An alternative to segmentation is paging. The program is divided into equal-sized pieces called pages, and memory is divided into the same sized units, called page frames. Each address is represented in a form. Operating system maintains a table of user page numbers and their true addresses in memory. The page portion of every reference is converted to a page frame address by a table lookup; the offset portion is added to the page frame address to produce the real memory address of the object referred to as.

17 Protecting Access to General Objects §Directory §Access Control List

18 General Objects Memory a file or data set on an auxiliary storage device an executing program in memory a directory of files a hardware device a data structure, such as a stack. A table of the operating system instructions, especially privileged instructions passwords the protection mechanism itself

19 Directory This technique works like a file directory. Imagine the set of objects to be files and the set of subjects to be users of a computing system. Every file has a unique owner who possesses “control” access rights, including the right to declare who has what access and to revoke access to any person at any time. Each user has a file directory, which lists all the files to which that user has access. OS maintains all directories. Each user has a list (directory) that contains all the objects that user is allowed to access.

20 Access Control List Each object has an access control list. This list shows all subjects who should have access to the object and what the access is. This technique is widely used in Distributed File Systems.

21 File Protection Mechanisms §Basic Forms of Protection §Single Permissions

22 Basic Forms of Protection §All-None Protection The principal protection was trust, combined with ignorance. §Group Protection Users in the same group have the same right for objects.

23 Single Permissions §Password or other token l assign a password to a file §Temporary Acquired Permission l Unix set userid permission. If this protection is set for a file to be executed, the protection level is that of the file’s owner, not the executor.

24 User Authentication §Use of Passwords §Attacks on Passwords §Password Selection Criteria §The Authentication Process §Flaws in the Authentication Process §Authentication Other Than Passwords

25 Use of Passwords Passwords are mutually agreed-upon code words, assumed to be known only to the user and the system. The use of of passwords is fairly straightforward. A user enters some piece of identification, such as a name or an assigned user ID, if the identification matches that on file for the user, the user is authenticated to the system. If the identification match fails, the user is rejected by the system.

26 Attacks on Passwords §Try all possible passwords l exhaustive or brute force attack §Try many probable passwords l Users do not likely select a password uncommon, hard to spell or pronounce, very long §Try passwords likely for the user l Password generally is meaningful to the user

27 Attacks on Passwords (cont’) §Search for the system list of passwords l Finding a plain text system password list §Ask the user l Get the password directly from the user.

28 Password Selection Criteria §Use characters other than just A-Z §Choose long passwords §Avoid actual names or words §Choose an unlikely password §Change the password regularly §Don’t write it down §Don’t tell anyone else

29 The Authentication Process §Intentionally slow l This makes exhaustive attack infeasible §identify intruder from the normal user l some who continuously fails to login may not be an authorized user. l System disconnect a user after three to five failed logins

30 Reference §D. Denning, P. Denning, Certification of Programs for Secure Information Flow, CommACM, V20 N7, Jul 1977, pp. 504-513 §J. Linn, Practical Authentication for Distributed Computing, Proc IEEE symp Security & Privacy, IEEE Comp Soc Press 1990, pp. 31-40 §C. P. Pfleeger, Security in Computing, Prentice Hall, NJ, 1996

Download ppt "Security in Operating Systems Cuiwei Zhao. Security in Operating System §Security breaches §Security goals §Protected objects of the general purpose operating."

Similar presentations

Memory.

Memory.
CHAPTER 4 Protection in General-Purpose Operating Systems (c) by Syed Ardi Syed Yahya Kamal, UTM 2004 1.

CHAPTER 4 Protection in General-Purpose Operating Systems (c) by Syed Ardi Syed Yahya Kamal, UTM
CS426Fall 2010/Lecture 71 Computer Security CS 426 Lecture 7 Operating System Security Basics.

CS426Fall 2010/Lecture 71 Computer Security CS 426 Lecture 7 Operating System Security Basics.
Chapter 6 User Protections in OS. csci5233 computer security & integrity (Chap. 6) 2 Outline User-level protections 1.Memory protection 2.Control of access.

Chapter 6 User Protections in OS. csci5233 computer security & integrity (Chap. 6) 2 Outline User-level protections 1.Memory protection 2.Control of access.
CSC 405 Introduction to Computer Security

CSC 405 Introduction to Computer Security
Memory Management Questions answered in this lecture: How do processes share memory? What is static relocation? What is dynamic relocation? What is segmentation?

Memory Management Questions answered in this lecture: How do processes share memory? What is static relocation? What is dynamic relocation? What is segmentation?
Network Security Philadelphia UniversitylAhmad Al-Ghoul 2010-20111 Module 6 Module 6 Security in Operating Systems  MModified by :Ahmad Al Ghoul  PPhiladelphia.

Network Security Philadelphia UniversitylAhmad Al-Ghoul Module 6 Module 6 Security in Operating Systems  MModified by :Ahmad Al Ghoul  PPhiladelphia.
1 Protection Protection = access control Goals of protection Protecting general objects Example: file protection in Linux.

1 Protection Protection = access control Goals of protection Protecting general objects Example: file protection in Linux.
Memory Management Design & Implementation Segmentation Chapter 4.

Memory Management Design & Implementation Segmentation Chapter 4.
What we will cover… Protection and Security in OS.

What we will cover… Protection and Security in OS.
CS-550 (M.Soneru): Protection and Security - 1 [SaS] 1 Protection and Security.

CS-550 (M.Soneru): Protection and Security - 1 [SaS] 1 Protection and Security.
CMSC 414 Computer and Network Security Lecture 9 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 9 Jonathan Katz.
1 Chapter 8 Virtual Memory Virtual memory is a storage allocation scheme in which secondary memory can be addressed as though it were part of main memory.

1 Chapter 8 Virtual Memory Virtual memory is a storage allocation scheme in which secondary memory can be addressed as though it were part of main memory.
Computer Organization and Architecture

Computer Organization and Architecture
Memory Management Five Requirements for Memory Management to satisfy: –Relocation Users generally don’t know where they will be placed in main memory May.

Memory Management Five Requirements for Memory Management to satisfy: –Relocation Users generally don’t know where they will be placed in main memory May.
95-752:7-1 Operating System Features. 95-752:7-2 Operating System Features Memory protection Temporary file issues Dead space issues Sandboxing Object.

95-752:7-1 Operating System Features :7-2 Operating System Features Memory protection Temporary file issues Dead space issues Sandboxing Object.
Chapter 12 File Management Systems

Chapter 12 File Management Systems
CMSC 414 Computer and Network Security Lecture 13 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 13 Jonathan Katz.
SE571 Security in Computing

SE571 Security in Computing
CSCI2413 Lecture 6 Operating Systems Memory Management 2 phones off (please)

CSCI2413 Lecture 6 Operating Systems Memory Management 2 phones off (please)

Similar presentations

Ads by Google