prolog to lecture 3 cs 236 on line ms program networks
play

Prolog to Lecture 3 CS 236 On-Line MS Program Networks and Systems - PowerPoint PPT Presentation

Mar 31, 2023 •142 likes •220 views

Prolog to Lecture 3 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 3 Page 1 CS 236 Online Mandatory Access Control and the Real World For a long time, things like Bell-La Padula were hard to run

  1. Prolog to Lecture 3 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 3 Page 1 CS 236 Online

  2. Mandatory Access Control and the Real World • For a long time, things like Bell-La Padula were hard to run • Real-world commercial systems did not support them • That’s changing Lecture 3 Page 2 CS 236 Online

  3. SE Linux and Flask • Security Enhanced Linux – Developed by NSA researchers – Open source, like all Linux • Implementation of the Flask security architecture – Which allows flexible use of mandatory access control Lecture 3 Page 3 CS 236 Online

  4. What Can You Do With Flask? • Multi-level security – Including Bell La Padula • Domain Type Enforcement • Role-based Access Control • Many other types of mandatory access control policies • No superuser, many other common Linux/ Unix security problems avoided Lecture 3 Page 4 CS 236 Online

  5. What Does This Mean For You? • You can get usable, commercial operating systems with MAC • Even operating systems with strong industry support • Well, so what? Lecture 3 Page 5 CS 236 Online

  6. Is MAC For You? • MAC is only useful where it makes sense to force policy to be followed • Typically not on a single user’s personal machine • More common on industry installations – Especially those with military connections • Do you need to guarantee access control properties? – Regardless of how foolish your users are? Lecture 3 Page 6 CS 236 Online

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Prolog to Lecture 2 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 2 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 2 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 2 Page 1 CS 236 Online Whats This Prolog Stuff? When I can, I will add a short presentation to each lecture Discussing application

234 views • 10 slides
Prolog to Lecture 4 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 4 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 4 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 4 Page 1 CS 236 Online Brute Force Attacks, the iPhone, and the FBI Recently lots of news about the FBI needing to crack an iPhone It

85 views • 8 slides
Prolog to Lecture 16 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 16 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 16 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 16 Page 1 CS 236 Online Security Evaluations and the US Government The US government runs lots of computers and networks Its a

263 views • 8 slides
Prolog to Lecture 9 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 9 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Prolog to Lecture 9 CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 9 Page 1 CS 236 Online Buffer Overflows Buffer overflows are a big problem One class of defenses concentrates on not allowing attacker

767 views • 8 slides
Logic and Prolog Lecture 10 Logic Programming The meaning of a Prolog program can be

Logic and Prolog Lecture 10 Logic Programming The meaning of a Prolog program can be

Logic and Prolog Lecture 10 Logic Programming The meaning of a Prolog program can be explained very naturally using First Order Predicate Logic (FOPL). This gives a theoretical basis for Prolog and related computational systems.

568 views • 4 slides
Learn Prolog Now! SWI Prolog Freely available Prolog interpreter Works with Linux,

Learn Prolog Now! SWI Prolog Freely available Prolog interpreter Works with Linux,

Learn Prolog Now! SWI Prolog Freely available Prolog interpreter Works with Linux, Windows, or Mac OS There are many more Prolog interpreters Not all are ISO compliant/free Lecture 1 Theory Introduction to

1.01k views • 76 slides
Network Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture

Network Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture

Network Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 9 Page 1 CS 236 Online Some Important Network Characteristics for Security Degree of locality Media used Protocols used Lecture 9

156 views • 11 slides
Introduction to Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter

Introduction to Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter

Introduction to Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 3 Page 1 CS 236 Online Outline What is data encryption? Cryptanalysis Basic encryption methods Substitution ciphers

766 views • 21 slides
More on Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

More on Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

More on Cryptography CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 4 Page 1 CS 236 Online Outline Desirable characteristics of ciphers Stream and block ciphers Cryptographic modes Uses of

475 views • 29 slides
An Introduction to Prolog Programming 1 What is Prolog? Prolog ( pro gramming in log ic) is a

An Introduction to Prolog Programming 1 What is Prolog? Prolog ( pro gramming in log ic) is a

An Introduction to Prolog Programming 1 What is Prolog? Prolog ( pro gramming in log ic) is a logic-based programming language: programs correspond to sets of logical formulas and the Prolog interpreter uses logical methods to resolve

1.18k views • 72 slides
Authentication CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 7

Authentication CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 7

Authentication CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 7 Page 1 CS 236 Online Outline Introduction Basic authentication mechanisms Lecture 7 Page 2 CS 236 Online Introduction Much of

799 views • 30 slides
Evaluating System Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Evaluating System Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Evaluating System Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 15 Page 1 CS 236 Online Evaluating Program Security What if your task isnt writing secure code? Its determining if someone

423 views • 16 slides
Network Security: Continued CS 236 On-Line MS Program Networks and Systems Security Peter

Network Security: Continued CS 236 On-Line MS Program Networks and Systems Security Peter

Network Security: Continued CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 10 Page 1 CS 236 Online Firewall Configuration and Administration Again, the firewall is the point of attack for intruders

375 views • 16 slides
Securing Your System CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Securing Your System CS 236 On-Line MS Program Networks and Systems Security Peter Reiher

Securing Your System CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 19 Page 1 CS 236 Online Putting It All Together Weve talked a lot about security principles And about security problems And

209 views • 17 slides
Security Principles, Policies, and Tools CS 236 On-Line MS Program Networks and Systems

Security Principles, Policies, and Tools CS 236 On-Line MS Program Networks and Systems

Security Principles, Policies, and Tools CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 2 Page 1 CS 236 Online Outline Security design principles Security policies Basic concepts Security

419 views • 12 slides
Intrusion Detection Systems CS 236 On-Line MS Program Networks and Systems Security Peter

Intrusion Detection Systems CS 236 On-Line MS Program Networks and Systems Security Peter

Intrusion Detection Systems CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 11 Page 1 CS 236 Online Outline Introduction Characteristics of intrusion detection systems Some sample intrusion detection

143 views • 12 slides
Enterprise Storage Architecture Fall 2017 Security Tyler Bletsch Duke University What this

Enterprise Storage Architecture Fall 2017 Security Tyler Bletsch Duke University What this

ECE590-03 Enterprise Storage Architecture Fall 2017 Security Tyler Bletsch Duke University What this lecture contains Included: Not included: Cryptography internals Basic definitions How to program using Fundamental

1.03k views • 55 slides
Security I CS 4410 Operating Systems [E. Birrell, A. Bracy, F. B. Schneider, E. Sirer, R. Van

Security I CS 4410 Operating Systems [E. Birrell, A. Bracy, F. B. Schneider, E. Sirer, R. Van

Security I CS 4410 Operating Systems [E. Birrell, A. Bracy, F. B. Schneider, E. Sirer, R. Van Renesse] References: Security Introduction and Access Control by Fred B. Schneider Secure Systems? A secure system will do what is expected

592 views • 25 slides
DAC and Trojan Horse Brown: read, write Employee Mandatory Access Control Brown B Read

DAC and Trojan Horse Brown: read, write Employee Mandatory Access Control Brown B Read

DAC and Trojan Horse Brown: read, write Employee Mandatory Access Control Brown B Read Employee R d E l Black, Brown: read, write REJECTED! Blacks Employee Black is not allowed To access Employee Black 1 2 Mandatory Access

433 views • 6 slides
Mandatory Access Control in Linux CMPSC 443 - Spring 2012 Introduction Computer and Network

Mandatory Access Control in Linux CMPSC 443 - Spring 2012 Introduction Computer and Network

Mandatory Access Control in Linux CMPSC 443 - Spring 2012 Introduction Computer and Network Security Professor Jaeger www.cse.psu.edu/~tjaeger/cse443-s12/ CSE443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger

231 views • 20 slides
Ostro OS security architecture An IoT OS security architecture that is so boring that you can

Ostro OS security architecture An IoT OS security architecture that is so boring that you can

Ostro OS security architecture An IoT OS security architecture that is so boring that you can sleep soundly at night Ismo Puustinen, Intel Finland What is Ostro OS? https://ostroproject.org IoT operating system, based on Yocto project

261 views • 9 slides
TDDD17 Informatjon Security (VT 2019) Topic: Database Security Olaf Hartjg olaf.hartjg@liu.se

TDDD17 Informatjon Security (VT 2019) Topic: Database Security Olaf Hartjg olaf.hartjg@liu.se

TDDD17 Informatjon Security (VT 2019) Topic: Database Security Olaf Hartjg olaf.hartjg@liu.se Acknowledgement: Several of the slides in this slide set are adaptations from slides made available for the database textbook by Elmasri and

284 views • 27 slides
CS 423 Operating System Design: MP4 Walkthrough Mohammad Noureddine Spring 2018 CS 423:

CS 423 Operating System Design: MP4 Walkthrough Mohammad Noureddine Spring 2018 CS 423:

CS 423 Operating System Design: MP4 Walkthrough Mohammad Noureddine Spring 2018 CS 423: Operating Systems Design Goals for Today Learning Objective: Understand Linux Security Modules Go through implementation details of MP4

702 views • 33 slides
Outline Database Security: Research Motivation and Practice Access Control Multilevel

Outline Database Security: Research Motivation and Practice Access Control Multilevel

Outline Database Security: Research Motivation and Practice Access Control Multilevel Relational Data Model Concurrency and Object Oriented Elisa Bertino, Sushil Jajodia and issues Pierangela Samarati Conclusions Presented

492 views • 5 slides

More recommend