Screen Version
School of Computer Science & Engineering
University of New South Wales
Advanced Operating Systems
COMP9242 2002/S2
Next:
Protection Mechanisms
Protection Mechanisms
Protection:
Two basic security issues:
Access matrix model
Access matrix properties
Issues for Protection System Design
Access matrix implementation: ACLs
Access matrix implementation: Capabilities
Capabilities
Tagged Capabilities
Protected procedure call (AS/400)
Tagged capabilities outside RAM
Tagged capabilities summary
Partitioned Capabilities
Propagating partitioned capabilities (MACH):
Partitioned capabilities summary
Sparse Capabilities
Example: Signature capabilities
Amoeba's capabilities
Properties of Amoeba capabilities
Amoeba rights restriction
Improved version (not implemented)
Server authentication: F-boxes
Password capabilities
Properties of password capabilities
Sparse capabilities summary
References
Bibliography
About this document ...
Gernot Heiser 2002-08-15