csge602055 operating systems csf2600505 sistem operasi
play

CSGE602055 Operating Systems CSF2600505 Sistem Operasi Week 02: - PowerPoint PPT Presentation

Apr 18, 2023 •363 likes •547 views

CSGE602055 Operating Systems CSF2600505 Sistem Operasi Week 02: Security, Protection, Privacy, & C-language Rahmat M. Samik-Ibrahim (ed.) University of Indonesia https://os.vlsm.org/ Always check for the latest revision! REV254

  1. CSGE602055 Operating Systems CSF2600505 Sistem Operasi Week 02: Security, Protection, Privacy, & C-language Rahmat M. Samik-Ibrahim (ed.) University of Indonesia https://os.vlsm.org/ Always check for the latest revision! REV254 27-Oct-2020 Rahmat M. Samik-Ibrahim (ed.) (UI) � 2016-2020 VauLSMorg c REV254 27-Oct-2020 1 / 17

  2. Operating Systems 202 3 ) — PJJ from HOME ZOOM: International [Tue 08-10] — A/Matrix [Tue 10-12] Schedule & Deadline 1 ) OSC10 2 ) Week Topic Week 00 15 Sep - 21 Sep 2020 Overview 1, Virtualization & Scripting Ch. 1, 2, 18. Week 01 22 Sep - 28 Sep 2020 Overview 2, Virtualization & Scripting Ch. 1, 2, 18. Week 02 29 Sep - 05 Oct 2020 Security, Protection, Privacy, & C-language. Ch. 16, 17. Week 03 06 Oct - 12 Oct 2020 File System & FUSE Ch. 13, 14, 15. Week 04 13 Oct - 19 Oct 2020 Addressing, Shared Lib, & Pointer Ch. 9. Week 05 20 Oct - 26 Oct 2020 Virtual Memory Ch. 10. Week 06 27 Oct - 16 Nov 2020 Concurrency: Processes & Threads Ch. 3, 4. 29 Oct 2020 Maulid Nabi Week 07 17 Nov - 23 Nov 2020 Synchronization & Deadlock Ch. 6, 7, 8. Week 08 24 Nov - 30 Nov 2020 Scheduling + W06/W07 Ch. 5. Week 09 01 Dec - 07 Dec 2020 Storage, Firmware, Bootloader, & Systemd Ch. 11. Week 10 08 Dec - 16 Dec 2020 I/O & Programming Ch. 12. 09 Dec 2020 Pil Kada 1 ) The DEADLINE of Week 00 is 21 Sep 2020, whereas the DEADLINE of Week 01 is 28 Sep 2020, and so on... 2 ) Silberschatz et. al.: Operating System Concepts , 10 th Edition, 2018. 3 ) This information will be on EVERY page two (2) of this course material. Rahmat M. Samik-Ibrahim (ed.) (UI) � 2016-2020 VauLSMorg c REV254 27-Oct-2020 2 / 17

  3. STARTING POINT — https://os.vlsm.org/ � Text Book — Any recent/decent OS book. Eg. ( OSC10 ) Silberschatz et. al.: Operating System Concepts , 10 th Edition, 2018. See also http://codex.cs.yale.edu/avi/os-book/OS10/ . � Resources � SCELE — https://scele.cs.ui.ac.id/course/view.php?id=3020. The enrollment key is XXX . � Download Slides and Demos from GitHub.com https://github.com/UI-FASILKOM-OS/SistemOperasi/ : os00.pdf (W00), os01.pdf (W01), os02.pdf (W02), os03.pdf (W03), os04.pdf (W04), os05.pdf (W05), os06.pdf (W06), os07.pdf (W07), os08.pdf (W08), os09.pdf (W09), os10.pdf (W10). � Problems — https://rms46.vlsm.org/2/ : 195.pdf (W00), 196.pdf (W01), 197.pdf (W02), 198.pdf (W03), 199.pdf (W04), 200.pdf (W05), 201.pdf (W06), 202.pdf (W07), 203.pdf (W08), 204.pdf (W09), 205.pdf (W10). � Build your own Virtual Guest https://osp4diss.vlsm.org/ Rahmat M. Samik-Ibrahim (ed.) (UI) � 2016-2020 VauLSMorg c REV254 27-Oct-2020 3 / 17

  4. Agenda Start 1 Jadwal 2 Schedule 3 Agenda 4 Week 02 5 Week 02: Protection, Security, Privacy, & C-language 6 The Security Problem 7 Protection 8 Privacy 9 10 C Language 11 Week 02: Summary 12 Week 02: Check List 13 The End Rahmat M. Samik-Ibrahim (ed.) (UI) � 2016-2020 VauLSMorg c REV254 27-Oct-2020 4 / 17

  5. Week 02 Security & Protection: Topics 1 Overview of system security Policy/mechanism separation Security methods and devices Protection, access control, and authentication Backups 1 Source: ACM IEEE CS Curricula 2013 Rahmat M. Samik-Ibrahim (ed.) (UI) � 2016-2020 VauLSMorg c REV254 27-Oct-2020 5 / 17

  6. Week 02 Security & Protection: Learning Outcomes 1 Articulate the need for protection and security in an OS (cross-reference IAS/Security Architecture and Systems Administration/Investigating Operating Systems Security for various systems). [Assessment] Summarize the features and limitations of an operating system used to provide protection and security [Familiarity] Explain the mechanisms available in an OS to control access to resources [Familiarity] Carry out simple system administration tasks according to a security policy, for example creating accounts, setting permissions, applying patches, and arranging for regular backups [Usage] 1 Source: ACM IEEE CS Curricula 2013 Rahmat M. Samik-Ibrahim (ed.) (UI) � 2016-2020 VauLSMorg c REV254 27-Oct-2020 6 / 17

  7. Week 02: Protection, Security, Privacy, & C-language Figure: How to protect and secure this design? Rahmat M. Samik-Ibrahim (ed.) (UI) � 2016-2020 VauLSMorg c REV254 27-Oct-2020 7 / 17

  8. The Security Problem OSC10 : Security is a measure of confidence that the integrity of a system and its data will be preserved. Protection is the set of mechanisms that control the access of processes and users to the resources defined by a computer system. Secure System, Intruders, Threat, Attack. Security Violation Categories: Breach of (confidentiality, integrity, availability), theft of service, DOS. Security Violation Methods: Masquerading, Replay attack, Human-in-the-middle attack, Session hijacking, Privilege escalation. Security Measure Levels: Physical, Network, Operating System, Application. Program, System, and Network Threats Social Engineering: Phishing. Security Hole: Code Review. Principle of least privilege. Rahmat M. Samik-Ibrahim (ed.) (UI) � 2016-2020 VauLSMorg c REV254 27-Oct-2020 8 / 17

  9. The Security Problem (cont) Threats: Malware, Trojan Horse, Spyware, Ransomware, Trap (back) Door, Logic Bomb, Code-injection Attack, Overflow, Script Kiddie. Viruses: Virus Dropper, Virus Signature, Keystroke Logger. Worm, Sniffing, Spoofing, Port Scanning, DOS (Denial of Service). Cryptography: (Symmetric and Asymmetric) Encryption, Public/Private Key Pairs, Key Distribution, Digital Certificate. User Authentication: Password: One Time Password, Two-Factor Authentication, Biometrics. Implementing Security Defenses: Policy, Assesment, Prevention, Detection, Protection, Auditing. Linux Security gnupg & sha1sum Rahmat M. Samik-Ibrahim (ed.) (UI) � 2016-2020 VauLSMorg c REV254 27-Oct-2020 9 / 17

  10. Protection Principle of Least Privilege Domain Structure and Access Matrix ACL: Access Control List Domain = set of Access-rights (eg. user-id ). Access-right = <object-name, rights-set> (eg. object: file). File1 File2 File3 Printer User1 Read Read User2 Print User3 Read Execute Print User4 R/W R/W Print Access-right Plus Domain (Users) as Objects F1 F2 F3 Printer U1 U2 U3 U4 U1 R R SW U2 Print SW SW U3 R EXEC Print U4 R/W R/W Print SW Rahmat M. Samik-Ibrahim (ed.) (UI) � 2016-2020 VauLSMorg c REV254 27-Oct-2020 10 / 17

  11. Copy Rights Start File1 File2 File3 User1 Exec Write* User2 Exec Read* Exec User3 Exec User3: Read access to File2 (by User2) File1 File2 File3 User1 Exec Write* User2 Exec Read* Exec User3 Exec Read Owner Rights File1 File2 File3 User1 O & E W User2 O & R* & W* O & R* & W User3 W W Rahmat M. Samik-Ibrahim (ed.) (UI) � 2016-2020 VauLSMorg c REV254 27-Oct-2020 11 / 17

  12. Privacy (Wikipedia) Privacy can mean different things in different contexts; different people, cultures, and nations have different expectations about how much privacy a person is entitled to or what constitutes an invasion of privacy. Considering all discussions as one of these concepts Right to be let alone (such as one’s own home). Limited access (no information collection). Control over information (in the era of big data). States of privacy: solitude, intimacy, anonymity, and reserve. Secrecy: does not apply for any already publicly disclosed. Personhood and autonomy. Self-identity and personal growth. Rahmat M. Samik-Ibrahim (ed.) (UI) � 2016-2020 VauLSMorg c REV254 27-Oct-2020 12 / 17

  13. Beginner’s Guide to Internet Safety & Privacy URL: https://choosetoencrypt.com/privacy/ complete-beginners-guide-to-internet-safety-privacy/ Who Are You Protecting Yourself From? Governments ISPs (H)Crackers Trackers Advertisers/Malwertisers Which Information Should You Keep Private? Metadata Personal Information Passwords Financial Data Medical Records History Communication Rahmat M. Samik-Ibrahim (ed.) (UI) � 2016-2020 VauLSMorg c REV254 27-Oct-2020 13 / 17

  14. C Language Reference: (Any C Language Tutorial) Rahmat M. Samik-Ibrahim (ed.) (UI) � 2016-2020 VauLSMorg c REV254 27-Oct-2020 14 / 17

  15. Week 02: Summary Reference: (OSC10-ch16 OSC10-ch17 demo-w02) Goals of Protection Domain and Access Matrix ACL: Access Control List The Security Problem Threats: Trojan Horse, Trap Door, Overflow, Viruses, Worms, Port Scanning, DOS (Denial of Service). Cryptography: (Symmetric and Asymmetric) Encryption, User Authentication: Password, Biometrics. Implementing Security Defenses: Policy, Assesment, Prevention, Detection, Protection, Auditing. Privacy. Rahmat M. Samik-Ibrahim (ed.) (UI) � 2016-2020 VauLSMorg c REV254 27-Oct-2020 15 / 17

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CSGE602055 Operating Systems CSF2600505 Sistem Operasi Week 09: Storage, Firmware, Bootloader,

CSGE602055 Operating Systems CSF2600505 Sistem Operasi Week 09: Storage, Firmware, Bootloader,

CSGE602055 Operating Systems CSF2600505 Sistem Operasi Week 09: Storage, Firmware, Bootloader, &amp; Systemd Rahmat M. Samik-Ibrahim (ed.) University of Indonesia https://os.vlsm.org/ Always check for the latest revision! REV254 27-Oct-2020

457 views • 30 slides
CSGE602055 Operating Systems CSF2600505 Sistem Operasi Week 03: File System &amp; FUSE Rahmat M.

CSGE602055 Operating Systems CSF2600505 Sistem Operasi Week 03: File System &amp; FUSE Rahmat M.

CSGE602055 Operating Systems CSF2600505 Sistem Operasi Week 03: File System &amp; FUSE Rahmat M. Samik-Ibrahim (ed.) University of Indonesia https://os.vlsm.org/ Always check for the latest revision! REV254 27-Oct-2020 Rahmat M.

933 views • 27 slides
CSF2600505 Sistem Operasi CSGE602055 Operating Systems Week 00: Overview 1 Rahmat M.

CSF2600505 Sistem Operasi CSGE602055 Operating Systems Week 00: Overview 1 Rahmat M.

CSF2600505 Sistem Operasi CSGE602055 Operating Systems Week 00: Overview 1 Rahmat M. Samik-Ibrahim (ed.) University of Indonesia https://os.vlsm.org/ Always check for the latest revision! REV254 27-Oct-2020 Rahmat M. Samik-Ibrahim (ed.) (UI)

763 views • 59 slides
Why Nobody Should Care About Operating Systems for Exascale Operating Systems for Exascale Ron

Why Nobody Should Care About Operating Systems for Exascale Operating Systems for Exascale Ron

Why Nobody Should Care About Operating Systems for Exascale Operating Systems for Exascale Ron Brightwell Scalable System Software Sandia National Laboratories Albuquerque, NM, USA International Workshop on Runtime and Operating Systems for

575 views • 32 slides
About Me Bhuvan Urgaonkar Operating Systems Assistant Professor, CSE Operating Systems

About Me Bhuvan Urgaonkar Operating Systems Assistant Professor, CSE Operating Systems

About Me Bhuvan Urgaonkar Operating Systems Assistant Professor, CSE Operating Systems Ph.D., Sept. 2005, Univ. of Mass. Amherst CSE 411 CSE 411 Research areas Operating systems, Distributed systems, Computer networks

500 views • 8 slides
CPS 210: Operating Systems CPS 210: Operating Systems Operating Systems: The Big Picture

CPS 210: Operating Systems CPS 210: Operating Systems Operating Systems: The Big Picture

CPS 210: Operating Systems CPS 210: Operating Systems Operating Systems: The Big Picture Operating Systems: The Big Picture The operating system (OS) is the interface between user applications and the hardware. User Applications virtual

245 views • 24 slides
Roadmap for Section 1.2. History of Operating Systems Tasks of an Operating System OS as

Roadmap for Section 1.2. History of Operating Systems Tasks of an Operating System OS as

Unit OS1: Overview of Operating Systems 1.2. The Evolution of Operating Systems Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze Roadmap for Section 1.2. History of Operating Systems Tasks of

556 views • 12 slides
History Where the idea for Operating systems came from Genealogy of Operating Systems

History Where the idea for Operating systems came from Genealogy of Operating Systems

BS1 WS19/20 topic-based slides History Where the idea for Operating systems came from Genealogy of Operating Systems Critical Innovations Hardware and Software Hardware Development Operating System Development Operating Systems

631 views • 23 slides
Operating Systems WT 2019/20 Abridged History of Operating Systems Something to Ponder What is

Operating Systems WT 2019/20 Abridged History of Operating Systems Something to Ponder What is

Operating Systems WT 2019/20 Abridged History of Operating Systems Something to Ponder What is an Operating System? try to come up with a defjnition of what the term operating system means. Discuss your fjndings amongst yourselves. Operating

607 views • 26 slides
Architectural Support for Operating Systems (Chapter 2) CS 4410 Operating Systems [R. Agarwal,

Architectural Support for Operating Systems (Chapter 2) CS 4410 Operating Systems [R. Agarwal,

Architectural Support for Operating Systems (Chapter 2) CS 4410 Operating Systems [R. Agarwal, L. Alvisi, A. Bracy, M. George, E. Sirer, R. Van Renesse] Lets start at the very beginning 2 A Short History of Operating Systems 3 History of

822 views • 34 slides
CSE 3320 Operating Systems Computer and Operating Systems Overview Jia Rao Department of

CSE 3320 Operating Systems Computer and Operating Systems Overview Jia Rao Department of

CSE 3320 Operating Systems Computer and Operating Systems Overview Jia Rao Department of Computer Science and Engineering http://ranger.uta.edu/~jrao Overview Recap of last class o What is an operating system ? o Functionalities of

530 views • 24 slides
Operating Systems and Middleware Non-functional properties in Operating Systems and Middleware

Operating Systems and Middleware Non-functional properties in Operating Systems and Middleware

Dependability aspects of Operating Systems and Middleware Non-functional properties in Operating Systems and Middleware Seminar topics 2016 Driver verification Exhaustive verification has become feasible for small software systems, such as

494 views • 7 slides
Hardware Issues for Operating Systems CS 111 Operating Systems Peter Reiher Lecture 3 CS 111

Hardware Issues for Operating Systems CS 111 Operating Systems Peter Reiher Lecture 3 CS 111

Hardware Issues for Operating Systems CS 111 Operating Systems Peter Reiher Lecture 3 CS 111 Page 1 Fall 2015 Outline Hardware and the operating system Processor issues Buses and devices Disk drives Well talk about

777 views • 64 slides
Chapter 10: Case Studies So what happens in a real operating system? Operating systems in the real

Chapter 10: Case Studies So what happens in a real operating system? Operating systems in the real

Chapter 10: Case Studies So what happens in a real operating system? Operating systems in the real world Studied mechanisms used by operating systems Processes &amp; scheduling Memory management File systems Security How are

408 views • 22 slides
Real-Time Operating Systems Heechul Yun 1 What is an OS? 2 Operating Systems A program

Real-Time Operating Systems Heechul Yun 1 What is an OS? 2 Operating Systems A program

Real-Time Operating Systems Heechul Yun 1 What is an OS? 2 Operating Systems A program that acts as an intermediary between users and the computer hardware Applications Operating System Computer Hardware 3 Common OS Services Task

604 views • 15 slides
CS5460: Operating Systems Lecture 24: Security CS 5460: Operating Systems Once upon a time,

CS5460: Operating Systems Lecture 24: Security CS 5460: Operating Systems Once upon a time,

CS5460: Operating Systems Lecture 24: Security CS 5460: Operating Systems Once upon a time, this patch was made to Linuxs wait4() system call: + if ((options == (__WCLONE|__WALL)) &amp;&amp; (current-&gt;uid = 0)) +

550 views • 33 slides
Current Quantum Measurements in . . . Cryptography Algorithm Main Idea of Quantum . . . A

Current Quantum Measurements in . . . Cryptography Algorithm Main Idea of Quantum . . . A

Why Quantum . . . Quantum . . . Remaining Problems . . . Quantum Physics: . . . Current Quantum Measurements in . . . Cryptography Algorithm Main Idea of Quantum . . . A General Family of . . . Is Optimal: A Proof What Do We Want to . . .

818 views • 40 slides
Training Objectives Build a short relationship database and understand why it is necessary in

Training Objectives Build a short relationship database and understand why it is necessary in

4/5/2011 Engaging Communities and the Media by Telling Compelling Public Health Stories Webinar April 14, 2011 p , 1:30 PM 3:30 PM Sponsored by: 1 Laurie Call Director Center for Community Capacity Development Illinois Public

162 views • 14 slides
MANAGE THE IMPRESSION YOU AND YOUR DISABILITY MAKE DURING THE JOB INTERVIEW Impression

MANAGE THE IMPRESSION YOU AND YOUR DISABILITY MAKE DURING THE JOB INTERVIEW Impression

GET THE JOB MANAGE THE IMPRESSION YOU AND YOUR DISABILITY MAKE DURING THE JOB INTERVIEW Impression management strategies and self disclosure can be used to dispel myths about disability, and strengthen your presentation during the interview.

813 views • 45 slides
Fun with symbolic execution Carl Svensson, 27 MSc in Computer Science, KTH Head of

Fun with symbolic execution Carl Svensson, 27 MSc in Computer Science, KTH Head of

Carl Svensson Exploit development and deobfuscation September 13, 2018 SEC-T 2018 Fun with symbolic execution Carl Svensson, 27 MSc in Computer Science, KTH Head of Security, Kry CTF-player, HackingForSoju 1 About me

695 views • 23 slides
Global Illumination Shadow Layers Franois Desrichard , David Vanderhaeghe, Mathias Paulin IRIT,

Global Illumination Shadow Layers Franois Desrichard , David Vanderhaeghe, Mathias Paulin IRIT,

Global Illumination Shadow Layers Franois Desrichard , David Vanderhaeghe, Mathias Paulin IRIT, Universit de Toulouse, CNRS, INPT, UPS, UT1, UT2J, France July 12, 2019 Cinematic Lighting Design Scene Render Composite Animated geometry

756 views • 39 slides
A Design for Comprehensive Kernel Instrumentation Peter Feiner Angela Demke Brown Ashvin Goel

A Design for Comprehensive Kernel Instrumentation Peter Feiner Angela Demke Brown Ashvin Goel

A Design for Comprehensive Kernel Instrumentation Peter Feiner Angela Demke Brown Ashvin Goel peter@cs.toronto.edu demke@cs.toronto.edu ashvin@eecg.toronto.edu University of Toronto 01 / 16 1 Motivation Transparent fault isolation for

841 views • 44 slides
virtual machine (pt 2) / microkernels 1 last time (1) sandboxing fjlter system calls guest

virtual machine (pt 2) / microkernels 1 last time (1) sandboxing fjlter system calls guest

virtual machine (pt 2) / microkernels 1 last time (1) sandboxing fjlter system calls guest OS running in hypervisor on host OS hypervisor tracks virtual machine state does guest OS think its in kernel mode? does guest OS think

947 views • 71 slides
Catamount N-Way Performance on XT5 Ron Brightwell, Suzanne Kelly, Jeff Crow Scalable System

Catamount N-Way Performance on XT5 Ron Brightwell, Suzanne Kelly, Jeff Crow Scalable System

Catamount N-Way Performance on XT5 Ron Brightwell, Suzanne Kelly, Jeff Crow Scalable System Software Department Sandia National Laboratories rbbrigh@sandia.gov Cray User Group Conference May 6, 2009 Sandia is a multiprogram laboratory

1.05k views • 60 slides

More recommend