https://homeostasis.scs.carleton.ca/wiki/api.php?action=feedcontributions&feedformat=atom&user=DerekaubinSoma-notes - User contributions [en]2026-05-02T07:46:25ZUser contributionsMediaWiki 1.42.1https://homeostasis.scs.carleton.ca/wiki/index.php?title=SystemsSec_2016W_Lecture_3&diff=20546SystemsSec 2016W Lecture 32016-01-18T20:41:11Z<p>Derekaubin: </p>
<hr />
<div>'''Topics & Readings'''<br />
<br />
* Trent Jaeger's Operating Systems Security is the textbook we are currently using (Reading it Helps)<br />
* Notes<br />
* Chat<br />
* Names<br />
* Hacking Journal → Starting next week (Hand in weekly)<br />
** Grading<br />
** Brainstorming<br />
<br />
<br />
'''Class Notes:''' <br />
<br />
Hacking Journal: <br />
<br />
2 Note takers per class for participation marks. Make sure to say your name <br />
before you talk in order to receive participation marks. Check e-mails for DISCORD app, for a chat room that is set up for this course to discuss Hacking topics.<br />
<br />
Hacking Journal (Record of PAIN)<br />
* Weekly hand-ins (3-4 hours a week)<br />
* Grades per week as follows:<br />
0 → no Submission, 1 → Handed in, 2 → On the right track<br />
* End of semester the grade will be given based on journals as a whole.<br />
* Journal outline<br />
* Date, Time, Durations, Description or explanation of hack or a development of your thinking behind the process chosen. (TXT File)<br />
<br />
Brainstorming:<br />
<br />
You may use the text book, tutorials, and class exercises to get you started (getting familiar with hacking and defense against hacking).<br />
<br />
* Hacking opportunities (Breadth/Depth)<br />
* Class exercises/tutorials<br />
* Not just breaking into a system but rather how you can mess with a security feature. Playful fun hacks.<br />
* Not just tutorials, more so playing<br />
* Analysis of how a hack could be done (security analysis) but not only these<br />
* Not just one project all semester<br />
* You may extend on projects from other classes but not use the same thing.<br />
* Setting up of systems to be used for hacking opportunities is highly encouraged. Specifically Linux systems<br />
* The set up can be documented in your hacking journal<br />
* Making systems do what they are not supposed to do<br />
* Repository of exploits for many types of machines (METASPLOIT)<br />
* Many system specific exploits<br />
* Hackthissite.org is a good place to start for web security<br />
* We are allowed to run an old OS and play with its security systems (Old or New)<br />
* Weekly submissions will be marked based on progression throughout the course (Moving forward)<br />
- ***MONDAY WILL BE FIRST SUBMISSION OF HACKING JOURNAL [MIDNIGHT ON MONDAY]***<br />
* Expected to be submitted on time<br />
* Don’t be a developer be a hacker (Security Hacking)<br />
* Key loggers are boring, don’t make one unless Android version. If you are going to build something, then do it where little already exits.<br />
* Bug bounties (You keep the money!)<br />
* Do research till you cant find much info on a topic and then work from there.<br />
* Do not work on non-authorized systems<br />
* Teams are allowed but don’t be a freeloader<br />
* Go off the rails and collaborate!<br />
* Hoping that some students will find interesting vulnerabilities<br />
<br />
Important Concepts<br />
<br />
* Protection domains<br />
* separating O/S into boundaries so things don’t mess with other things unless they are supposed to. O/S’s try to separate things into different parts, Processes and resources. We don’t not want either to access everything on the system.<br />
<br />
* Access matrix<br />
Processes| Resource<br />
| A | B | C | <br />
1 | | r | rw| w |<br />
2 | | r | r | w |<br />
3 | | | rw| r |<br />
<br />
This matrix will be very sparse. We want something to aggregate.<br />
We need to aggregate process and resources. This is normally not enough. <br />
* Capabilities vs ACL’s (Access Control Lists)<br />
<br />
Capabilities: Each process has a list of what it can access<br />
<br />
ACL’s: A list associated with each object that contains all the processes that can access that object.<br />
<br />
Unix permissions are very impoverished ACL.<br />
<br />
* A process should not be able to change its own capabilities<br />
<br />
* But why do this at all?<br />
** Rules and restrictions but why?<br />
** Done so programs don’t leak info of one user to another.<br />
** i.e. Top secret info<br />
** How do we make sure no one cheat’s?<br />
<br />
Mandatory Access Control (MAC)<br />
** Permissions are set and stone<br />
** Cannot be changed at run time<br />
** Must boot into special mode with password<br />
** Rigid system<br />
** SELINUX<br />
** Root can’t do everything!<br />
<br />
Discretionary Access Control (DAC)<br />
** Most of us use these systems<br />
** Users have the ability to change things<br />
** Windows and Linux are discretionary<br />
<br />
* Assignment next week *<br />
<br />
<br />
This is all from chapter 2 information from the textbook. Assignments will be confirmation of tests.<br />
<br />
<br />
** Reference Monitor<br />
<br />
How do we keep programs from breaking these rules?<br />
*** Make sure all rule enforcement runs through a small program “The Rule Enforcer”<br />
*** You cannot by pass or mess with it<br />
*** There must be no bugs therefor elaborate testing must be done.<br />
*** Forbid inter communications between processes<br />
*** What about covert channels?<br />
<br />
** MULTICS</div>Derekaubin