System Security

ISS.
M1 1st Semester.
since 2018.

Course Description

Operating systems provide the fundamental mechanisms for securing computer processing. Recently, the importance of ensuring such security has become a mainstream issue for all operating systems. In this course, we examine what it takes to build a secure operating system, and explore the major systems development approaches that have been applied towards building secure operating systems. This journey has several goals: access control, file systems encryption, and isolation. Moreover, the students will get various hand-on experiences with common Unix configurations.

Keywords:

DAC, SELinux, Capability, FDE, Syscalls.

Prerequisites:

Introduction to UNIX.

Teaching Team:

Mohamed Sabt.

Teaching Language:

English.

Course Organization:


Syllabus

Week 1: In the Beginning Was Unix  
Week 2: Files as the True OS Atom  
Week 3: Waltzing Access Control in Unix and Windows  
Week 4: Learn you a Capability for Great Good!  
Week 5: The Art of Encrypting Your Filesystems  
Week 6: Security is Found at the Boundary (Kernel/User Modes)  
Week 7: Read and Thy Professor Would Listen to Thee  
Week 8: Thinking Inside the (Sand)Box  


Other Resources

TD About Capabilities   use_cap.c
Challenge 3   shadow file