









Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
This unit explains the concepts of protection and security in operating systems. Protection ensures that only authorized users and processes can access system resources such as memory, files, CPU, and I/O devices. It covers the goals and principles of protection, domains of protection, access matrix, Access Control Lists (ACLs), capability lists, and different access control models like DAC, MAC, and RBAC. The unit also discusses revocation of access rights and capability-based systems. The security section focuses on protecting systems from unauthorized access and cyber threats. It covers common program threats such as viruses, worms, Trojan horses, logic bombs, buffer overflow attacks, and ransomware, along with system and network threats like Denial of Service (DoS), IP spoofing, session hijacking, and Man-in-the-Middle (MITM) attacks.
Typology: Lecture notes
1 / 16
This page cannot be seen from the preview
Don't miss anything!










Definition: Protection in an OS refers to the mechanisms and policies that ensure controlled access to system resources , such as memory, CPU, files, and I/O devices. It ensures that only authorized processes or users can access or modify resources, and prevents accidental or malicious interference. Protection is a subset of security focused specifically on correct and safe usage of resources , while security also covers threats from external sources.
The goals define what the OS aims to achieve through protection mechanisms:
o Example: Logging file access events for audit purposes.
Protection principles guide the design of mechanisms to achieve the above goals:
Definition: The Access Matrix is a conceptual table used to represent the access rights of subjects (users or processes) to objects (files, devices, or resources) in the system. Structure: o Rows: Represent domains or subjects (users/processes). o Columns: Represent objects (files, devices, resources). o Cells: Contain access rights (e.g., read, write, execute) of the subject over the object. Example of Access Matrix: This table shows who can access what and with what rights. Domain / Object File1 File2 Printer Databas e Domain A (User A) Read/ Write Read No Access Read Domain B (User B) No Access Read/ Write Print Read/ Write Domain C (User C) Read No Access Print No Access
Since storing the full matrix can be inefficient (large systems have many subjects and objects), OS typically uses two main implementation strategies : a) Access Control Lists (ACLs) Definition: Each object stores a list of subjects and their allowed operations. Structure: o Object → List of subjects with access rights. Example: o File1: User A (Read/Write), User C (Read) o Printer: User B (Print), User C (Print) Advantages: o Easy to check who can access an object. Disadvantages: o Harder to list all objects a user can access. b) Capability Lists Definition: Each subject stores a list of objects it can access and the permitted operations. Structure: o Subject → List of objects with access rights. Example: o User A: File1 (Read/Write), File2 (Read), Database (Read) o User B: File2 (Read/Write), Printer (Print), Database (Read/Write) Advantages: o Easy to check what a subject can access. Disadvantages:
o Access decisions are made based on predefined rules or conditions. o Example: Firewall rules allowing or blocking network traffic.
Definition: Revocation is the process of removing previously granted access rights from a user or process. Reasons for Revocation: User leaves the organization. Role or responsibility of a user changes. Security breach or policy update. Types of Revocation:
Definition: A capability-based system uses capability tokens as a means of access control. A capability is an unforgeable token or key that gives the holder the right to access an object in a specific way. Features of Capability-Based Systems:
Program threats are malicious or flawed software that can compromise system security. Types of Program Threats:
Keep software and OS updated with security patches. Use antivirus and anti-malware programs. Implement access control mechanisms and least privilege policies. Perform regular backups to recover from attacks. Monitor systems with audit trails and intrusion detection systems.
1. System Threats System threats are attacks or vulnerabilities that exploit the operating system or its resources directly. These threats often compromise confidentiality, integrity, or availability. Common System Threats: 1. Unauthorized Access o Occurs when a user or process accesses files, memory, or resources without permission.
Network threats target networked systems , communication channels, or data in transit. They often exploit vulnerabilities in protocols, services, or misconfigured devices. Common Network Threats:
1. Cryptography as a Security Tool Definition: Cryptography is the practice of securing information by converting it into a form that is unreadable to unauthorized users, ensuring confidentiality, integrity, and authenticity. Objectives in OS Security: 1. Confidentiality: Prevent unauthorized access to data. 2. Integrity: Ensure data is not altered during storage or transmission. 3. Authentication: Verify the identity of users or systems. 4. Non-repudiation: Ensure that a user cannot deny sending a message. Types of Cryptography: 1. Symmetric Key Cryptography (Secret Key) o Same key is used for encryption and decryption. o Examples: AES, DES. o Pros: Fast and efficient. o Cons: Key distribution problem. 2. Asymmetric Key Cryptography (Public Key) o Uses a pair of keys : public key (encryption) and private key (decryption). o Examples: RSA, ECC. o Pros: Secure key distribution. o Cons: Slower than symmetric encryption.
o Pros: More secure than passwords alone. o Cons: Can be lost or stolen.