SystemsSec 2016W Lecture 7

From Soma-notes
Jump to navigation Jump to search

-We are finished with discussions on the OS, and now are moving into the Networking aspect of security

-the major difference between the two is virtualization

-older computers were extremely secure as they were run by operators who had sole access to the computer and when a programmer wished to run some code they would have to give the code to the operator who would then run it on the computer

-then it was decided to give more access to the computer which compromised the security so they added another layer, now that there are multiple people using the computer there is a guard to check if they are authorized to use it.

-This is a never ending process of wanting to increase the usability and access which opened up computer systems to be more vulnerable to hostile actions. This cycle developed into computer security.

-Virtualization sets up a fake computer inside another, the VM runs as a hypervisor (instead of running as a kernel) which runs the VM that runs an OS.

-The hypervisor provides a hardware-like interface.

-Networking is the ultimate sharing tool that leaves computers open for all sorts of attacks, one security that is used is cryptography.

-crypto helps with confidentiality and integrity for computers, it also helps with authentication of an entity

-crypto can be broken down into codes (which have specific meanings) and ciphers (with more general usage)