



Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
Material Type: Notes; Class: Operating Systems Design; Subject: Computer Science; University: University of Illinois - Urbana-Champaign; Term: Fall 2005;
Typology: Study notes
1 / 6
This page cannot be seen from the preview
Don't miss anything!




CS423UG Operating Systems
CS 423UG - Operating Systems,
Indranil Gupta
CS 423UG - Operating Systems,
Indranil Gupta
CS 423UG - Operating Systems,
Indranil Gupta
CS 423UG - Operating Systems,
Indranil Gupta
Extreme form of changing the passwords all the time
When one-time passwords are used, the user gets a bookcontaining a list of passwords. Each login uses the nextpassword.
More elegant scheme by Leslie Lamport: use one-way functionwhich has property: given x it is easy to find y = f(x), but given yit is computationally infeasible to find x.
Protocol:
User picks a secret password ``s'' that he memorizes.
User picks an integer ``n'', which is how many one-time passwordsthe algorithm is able to generate.
The first password is given by running the one-way function ntimes:
The second password is give by running the one-way function n-1times:
Note that given any password in the sequence, it is easy tocompute previous password, but impossible to know the nextone in the sequence
CS 423UG - Operating Systems,
Indranil Gupta
CS 423UG - Operating Systems,
Indranil Gupta
Magnetic cards
magnetic stripe cards
chip cards: stored value cards, smart cards
CS 423UG - Operating Systems,
Indranil Gupta
CS 423UG - Operating Systems,
Indranil Gupta
CS 423UG - Operating Systems,
Indranil Gupta
Internal Security and Security Kernels
To develop a highly secure system:
Ideally build the security into the design from the beginning.``Afterthought'' security measures don't work as well, but mostsystems today are built with performance in mind first.
Make the kernel of the operating system secure.
Implement critical security measures in the kernel.
Keep the kernel as small as possible (hard to do). It is easier tocheck it for flaws and to formally demonstrate its correctness.
Critical areas:
Access control
Logging
Monitoring
Management of central memory
Management of virtual storage
Management of the file system
CS 423UG - Operating Systems,
Indranil Gupta
Systems should contain machinery to trap attempts atpenetration. This will tend to catch the less skilledpenetrators, and so is primarily a first line of defense.
Intruder detection
toolkits
CS 423UG - Operating Systems,
Indranil Gupta
Authentication
E.g., a dummy program, pretending to be the signon program, asking forthe user's password and then storing it.
Line disconnect
When a line is disconnected with a user logged in over it, the system musteither log the user out, or at least put the line in a state in which the usermust re-authenticate his identity after reconnecting before proceeding withthe session.
Operator carelessness
E.g., tricking the operator into mounting a counterfeit operating systemdisk.
Residue
Interesting information often turns up in wastebaskets; use papershredders! Information is often left in central memory from a previous user,possibly a system routine; variables that contain sensitive informationshould be overwritten before being deallocated!
Shielding
One can inductively ``tap'' a cable, phone line, or in fact any wire overwhich information passes, without making physical connection to it.Electrical shielding can protect against this.
Passwords
Password guessing, etc.
CS 423UG - Operating Systems,
Indranil Gupta
CS 423UG - Operating Systems,
Indranil Gupta
CS 423UG - Operating Systems,
Indranil Gupta
CS 423UG - Operating Systems,
Indranil Gupta
One process modifies the arguments another process haspassed to an operating system procedure after they havebeen tested for validity but before they have been used.
A user searches the system simply trying things, looking forprivileged information.
A user taps into a line being used by an inactive but logged-in terminal.
A patch is made to the system which, instead of or inaddition to doing what it is supposed to do, provides a holethat a penetrator can use later.
CS 423UG - Operating Systems,
Indranil Gupta
A user writes a program to deliberately crash the system, send it into an infinite loop, or otherwise disrupt use of it bylegitimate users.
A penetrator tries to find an incoming line that disconnectedwhile someone was logged in using it.
A penetrator assumes another user's identity, typically bystealing his password.
The system may be vulnerable when a running process isinterrupted.
A penetrator might be able to catch the system in anunprotected state during interruption, and thus seize control.
CS 423UG - Operating Systems,
Indranil Gupta
CS 423UG - Operating Systems,
Indranil Gupta
CS 423UG - Operating Systems,
Indranil Gupta
CS 423UG - Operating Systems,
Indranil Gupta
Recursive procedure that finds
executable files on a UNIXsystem
Virus couldinfect them all
CS 423UG - Operating Systems,
Indranil Gupta
a.
An executable program
b.
With a virus at the front
c.
With the virus at the end
d.
With a virus spread over free space within program
CS 423UG - Operating Systems,
Indranil Gupta
a)
After virus has captured interrupt, trap vectors
b)
After OS has retaken printer interrupt vector
c)
After virus has noticed loss of printer interrupt vector and recaptured it
CS 423UG - Operating Systems,
Indranil Gupta