Lecture 14 - Security

Question 1

What is the difference between protection and security?

Answer 1

Protection: control access of resources to processes

Enforces security policies

Security: Prevents unauthorised access to a system

Question 2

What 5 broad objectives does security aim to provide?

Answer 2

Confidentiality- prevent unauthorised access

Integrity - ensure data has not been modified

Availability - ensure system is accessible

Accountability - know who did what

Authentication - authenticate each user

Question 3

What is a protection domain?

Answer 3

Defines the objects a process may access and how it may access them

E.g. in domain 1 File1 has [R] access, but in domain two (another process) it might have [RW] access

Question 4

How does a protection/access matrix work?

Answer 4

Domains down left side files at top

Permissions in intersecting squares

Question 5

How can an access matrix be compressed?

Answer 5

Associate permissions with each object: access control list

Associate permissions with each domain: capabilities

Question 6

How are access control lists done on UNIX?

Answer 6

Process permission is specified by the owner of the process

Each file has entry in the list

Each entry has access rights for each owner

Question 7

In UNIX what 3 domains are ACLs defined for?

Answer 7

File owner

Group

Everyone else

Question 8

What is a capability?

Answer 8

Each process has a list of capabilities i.e. access rights to an object

Question 9

How is faking of capabilities prevented?

Answer 9

Cryptographic techniques to encode what each capability allows - can’t impersonate because don’t know how the capability was encoded

Capability lists are privileged instructions

Rely on hardware features

Question 10

How is revocation of access rights easier in Access Lists than Capability Lists?

Answer 10

Access list - simply delete the rights

Capability - have to find the process and its list before the right can be deleted

Question 11

What is the difference between discretionary access control and mandatory access control?

Answer 11

Discretionary: each object has an owner, usually creator, who controls the access rights

Mandatory: creator is not owner, and does not control access rights, they are defined by a security policy

Question 12

What are the 3 forms of authentication?

Answer 12

Something you know - password

Something you have - key card

Something you are - biometric

Question 13

What is bell-la padula multilevel security model?

Answer 13

Processes and objects have a security level

Process at level k can only read objects at level k or lower and write at level k or higher

Prevents higher level info leaking to lower levels

Question 14

What is the Biba multilevel integrity model?

Answer 14

Processes and objects have security level

Process can write only objects at its level or lower

Can read only at its level or higher

Question 15

How can covert channels be used to communicate?

Answer 15

Send data using side effects

e.g. file locking or allocating resources

Question 16

What is a trojan horse/

Answer 16

Program that does bad stuff when it is let in

Question 17

what is a trap door?

Answer 17

Program that does bad stuff when exsecuted with particular data or password

Question 18

What is a logic bomb?

Answer 18

Program that does bad stuff under certain circumstances

Question 19

what is a virus?

Answer 19

Program that embeds itself into another program to reproduce and cause harm

Question 20

What is stack smashing/buffer overflow?

Answer 20

When program reads data into a buffer but does not check size

Data overflows and contains instructions which are then executed