System Security

Course Description

Operating systems provide the fundamental mechanisms for securing computer processing. Recently, the importance of ensuring such security has become a mainstream issue for all operating systems. In this course, we examine what it takes to build a secure operating system, and explore the major systems development approaches that have been applied towards building secure operating systems. This journey has several goals: access control, file systems encryption, and isolation. Moreover, the students will get various hand-on experiences with common Unix configurations.

Keywords:

Access Control, Authentication, DAC, SELinux, Capability, FDE, Syscalls.

Prerequisites:

Introduction to UNIX.

Teaching Team:

Mohamed Sabt.

Teaching Language:

English.

Course Organization:

Syllabus

Week 1: The Boring Introduction  

Week 2: The Rabbit Hole into How your Computer Runs Programs  

Week 3: Security is Found at the Boundary (Kernel/User Modes)  

Week 4: Files as the True OS Atom  

Week 5: You Shall Pass with the Right Password  

Week 6: Waltzing Access Control in Unix 1/2  

Week 7: Waltzing Access Control in Unix 2/2  

Week 8: Learn you a Capability for Great Good!  

Week 9: The Art of Encrypting Your Filesystems  

Week 10: Read and Thy Professor Would Listen to Thee  

Week 11: Windows is the New Black  

Week 12: Name Your Favorite Namespace  

Other Resources

Materials of Lab 0   ISS-Lab0-data.zip

TD About Capabilities   use_cap.c