Scribd Logo
Carica

Benvenuto in Scribd!

  • Protection 2007

    Caricato da

    api-3703205
    33 visualizzazioni12 pagine
    DOMAIN -- it is a set of (object,rights) pairs Computer system contains many objects that needed to be protected may be hardware(cpu,disk drives,printers) or software (processes,files or databases) domain - it is. A set. Of objects that each process runs in some protection domain at. Every instant of time There is some collection of objects that it can access and. For each object,it has got some rights [Read,Write,Ex

    Descrizione originale:

    Copyright

    © Attribution Non-Commercial (BY-NC)

    Formati disponibili

    PPT, PDF, TXT o leggi online da Scribd

    Hai trovato utile questo documento?

    Questo contenuto è inappropriato?

    Segnala questo documento
    DOMAIN -- it is a set of (object,rights) pairs Computer system contains many objects that needed to be protected may be hardware(cpu,disk drives,printers) or software (processes,files or databases) domain - it is. A set. Of objects that each process runs in some protection domain at. Every instant of time There is some collection of objects that it can access and. For each object,it has got some rights [Read,Write,Ex

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Scarica in formato PPT, PDF, TXT o leggi online su Scribd
    Segnala contenuti inappropriati
    33 visualizzazioni12 pagine

    Protection 2007

    Caricato da

    api-3703205
    DOMAIN -- it is a set of (object,rights) pairs Computer system contains many objects that needed to be protected may be hardware(cpu,disk drives,printers) or software (processes,files or databases) domain - it is. A set. Of objects that each process runs in some protection domain at. Every instant of time There is some collection of objects that it can access and. For each object,it has got some rights [Read,Write,Ex

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Scarica in formato PPT, PDF, TXT o leggi online su Scribd
    Segnala contenuti inappropriati
    di 12

    PROTECTION

    Lecture Series By : Er. Kanwalvir Singh Dhindsa

    Website :: www.dhindsa.info

    http://groups.google.com/group/os-2007

    O.S. by Er. K.S.Dhindsa © 2007


    Protection Policy & Mechanism

     POLICY -- whose data are to be protected


    from whom

     MECHANISM – how the system enforces the


    policy

    O.S. by Er. K.S.Dhindsa © 2007


    Protection Domains
     Computer system contains many objects that
    needed to be protected
     May be hardware(CPU,disk drives,printers)
    or software (processes,files or databases)
     DOMAIN -- It is a set of (object,rights) pairs

     Diagram shows the objects in each domain and


    rights[Read,Write,Execute] available on each
    object
     Each process runs in some protection domain at
    every instant of time
     There is some collection of objects that it can access
    and for each object,it has got some rights
    O.S. by Er. K.S.Dhindsa © 2007
    Protection Mechanisms
    Protection Domains (1)

    Examples of three protection domains

    O.S. by Er. K.S.Dhindsa © 2007


    Protection Domains (2)

    A protection matrix

    O.S. by Er. K.S.Dhindsa © 2007


    Access Control Lists
     This technique consist of associating with
    each object – an ordered list containing all
    the domains that may access the object,and
    how ---- Called ACL
    Each file has an ACL associated with it
     Entries in ACL seperated by semicolon
     Diag; three processes each belonging to
    different domain,A,B and C
     Three Files – F1,F2 and F3
     Users (called subjects or principals)
     Objects { Files}

    O.S. by Er. K.S.Dhindsa © 2007


    Access Control Lists (1)

    Use of access control lists of manage file access


    O.S. by Er. K.S.Dhindsa © 2007
    Access Control Lists (2)

    Two access control lists

    O.S. by Er. K.S.Dhindsa © 2007


    Capabilities{ C- List }
    Associated with each object is a list of objects that may be
    accessed, along with an indication of which operations are
    permitted on each of its domain– called CAPABILITY LIST

     Each process has a capability list


     Each capability grants the owner certain rights on
    certain objects
    O.S. by Er. K.S.Dhindsa © 2007
    OPERATING SYSTEMS - EXAMPLES
    • GUI
     System 7.x
     Windows 98
     Windows CE
     MULTI-USER
     Linux
     UNIX
     Windows 2000
     VMS
     MVS
     MULTIPROCESSING
     Linux
     UNIX
     Windows 2000
    O.S. by Er. K.S.Dhindsa © 2007
    OPERATING SYSTEMS - EXAMPLES

    • MULTITASKING
     UNIX
     Windows 2000
    • MULTITHREADING
     Linux
     UNIX
     Windows 2000
    • NETWORKING OS
     Windows 2000
     Novell Netware

    O.S. by Er. K.S.Dhindsa © 2007


    PROTECTION

    Lecture Series By : Er. Kanwalvir Singh Dhindsa

    Website :: www.dhindsa.info

    http://groups.google.com/group/os-2007

    O.S. by Er. K.S.Dhindsa © 2007

    Potrebbero piacerti anche