Presentation is loading. Please wait.

Presentation is loading. Please wait.

Operating Systems Concepts

Published byMarybeth Flowers Modified over 5 years ago

Similar presentations

Presentation on theme: "Operating Systems Concepts"— Presentation transcript:

1 Operating Systems Concepts
Lecture 44,45 – Security Techniques

2 Operating System Facilities
Authentication Authentication is a process of verifying whether a person is a legitimate user or not. Authentication can be achieved in following three ways. A secret, known only to that user (password)  Some thing possessed only by that user (An Artifact such as magnetic badge) Some human characteristics of the user (handwritten signatures, fingerprints, retina images)

3 Means of Authentication
Traditionally listed as three factors Something you know Password, PIN Something you have Card, RFID badge Something you are Biometrics All of these methods, properly implemented and used, can provide secure user authentication. However, each method has problems. An adversary may be able to guess or steal a password. or may be able to forge or steal a token. or a user may forget a password or lose a token. Further, there is a significant administrative overhead for managing password and token information on systems and securing such information on systems. With respect to biometric authenticators, there are a variety of problems, including dealing with false positives and false negatives, user acceptance, cost, and convenience.

4 Biometrics expanded Recently Biometrics (something you are) has been expanded into: Something the individual is Static Biometrics: Fingerprint, face Something the individual does Dynamic Biometrics: handwriting, voice recognition, typing rhythm

5 Operating System Facilities
File Access Control Since the data held within the file system is the principal interest of the computer’s security system. It is not surprising to find that operating systems generally include facilities for the protection of files. Dictates what types of access are permitted, under what circumstances, and by whom. For various objects, operating system allows different Access Rights for different subjects. For example, for a file, these access rights can be Own, Write, Append, Read, and Execute (OWARE), as in AOS/VS of Data General Machines. UNIX has only Read, Write and eXecute (RWX) access rights. For a printer as device, the access rights can be ‘Write’ or ‘None’ only. In general, we can list different access rights that can be granted as shown in the table

6 Contd. List of Access Rights Serial no Access Rights Code No Access N
No Access N 1 Execute Only E 2 Read Only R 3 Append Only A 4 Update U 5 Modify Protection M 6 Delete D

7 Cryptography Encoding and decoding data so that it can be interpreted only by the intended recipients Cryptography is associated with the process of converting ordinary plain text into unintelligible text and vice-versa. It is a method of storing and transmitting data in a particular form so that only those for whom it is intended can read and process it. The process involves two things: Encryption, which means changing the original data to some other form so that nobody can make out anything about it, and Decryption, which means recovering the data in the original form.

8 Contd. Encryption is the conversion of data in some intelligent format into an unintelligible format (cipher text) to prevent the data from being understood if read by an unauthorized party. A reverse operation, Decryption, converts the encrypted data back to its original form. The most common scheme in use involves an encryption algorithm a decryption algorithm and a Key value. The key is some arbitrary bit string value, which is used in the algorithms. The data before encryption is called plaintext and the data after encryption is called ciphertext.

9 Private Key Cryptography
Also known as symmetric cryptography Uses the same secret key to encrypt and decrypt a message Sender Encrypts a message using the secret key Sends encrypted message to the intended recipient Recipient Decrypts the message using the same secret key Limitation of private-key cryptography Before two parties can communicate securely, they must find a secure way to exchange the secret key

10

11 Asymmetric Key or Public Key Cryptography
Solves the problem of securely exchanging symmetric keys Asymmetric Employs two inversely related keys: Public key Freely distributed Private key Kept secret by its owner If the public key encrypts a message, only the corresponding private key can decrypt it

12

13 Thank You!

Download ppt "Operating Systems Concepts"

Similar presentations

Management Information Systems Lection 05 Coding and encryption CLARK UNIVERSITY College of Professional and Continuing Education (COPACE)

Management Information Systems Lection 05 Coding and encryption CLARK UNIVERSITY College of Professional and Continuing Education (COPACE)
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.

Presented by Xiaoping Yu Cryptography and PKI Cosc 513 Operating System Presentation Presented to Dr. Mort Anvari.
ENCRYPTION Jo Cromwell Cornelia Bradford. History of Encryption Encryption has been around since antiquity Cryptography began around 2,000 B.C in Egypt.

ENCRYPTION Jo Cromwell Cornelia Bradford. History of Encryption Encryption has been around since antiquity Cryptography began around 2,000 B.C in Egypt.
Encryption Methods By: Michael A. Scott 20140508.

Encryption Methods By: Michael A. Scott
Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.

Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.
Encryption is a way to transform a message so that only the sender and recipient can read, see or understand it. The mechanism is based on the use of.

Encryption is a way to transform a message so that only the sender and recipient can read, see or understand it. The mechanism is based on the use of.
Digital Signature Xiaoyan Guo/102587 Xiaohang Luo/104446.

Digital Signature Xiaoyan Guo/ Xiaohang Luo/
Authentication Approaches over Internet Jia Li

Authentication Approaches over Internet Jia Li
DNSSEC Cryptography Review Track 2 Workshop July 3, 2010 American Samoa Hervey Allen.

DNSSEC Cryptography Review Track 2 Workshop July 3, 2010 American Samoa Hervey Allen.
1 Introduction to Security and Cryptology Enterprise Systems DT211 Denis Manley.

1 Introduction to Security and Cryptology Enterprise Systems DT211 Denis Manley.
Network Security. Security Threats 8Intercept 8Interrupt 8Modification 8Fabrication.

Network Security. Security Threats 8Intercept 8Interrupt 8Modification 8Fabrication.
10/1/2015 9:38:06 AM1AIIS. OUTLINE Introduction Goals In Cryptography Secrete Key Cryptography Public Key Cryptograpgy Digital Signatures 2 10/1/2015.

10/1/2015 9:38:06 AM1AIIS. OUTLINE Introduction Goals In Cryptography Secrete Key Cryptography Public Key Cryptograpgy Digital Signatures 2 10/1/2015.
Cryptography, Authentication and Digital Signatures

Cryptography, Authentication and Digital Signatures
CSCD 218 : DATA COMMUNICATIONS AND NETWORKING 1

CSCD 218 : DATA COMMUNICATIONS AND NETWORKING 1
Certificate-Based Operations. Module Objectives By the end of this module participants will be able to: Define how cryptography is used to secure information.

Certificate-Based Operations. Module Objectives By the end of this module participants will be able to: Define how cryptography is used to secure information.
4 th lecture.  Message to be encrypted: HELLO  Key: XMCKL H E L L O message 7 (H) 4 (E) 11 (L) 11 (L) 14 (O) message + 23 (X) 12 (M) 2 (C) 10 (K) 11.

4 th lecture.  Message to be encrypted: HELLO  Key: XMCKL H E L L O message 7 (H) 4 (E) 11 (L) 11 (L) 14 (O) message + 23 (X) 12 (M) 2 (C) 10 (K) 11.
Network Security Lecture 10 Presented by: Dr. Munam Ali Shah.

Network Security Lecture 10 Presented by: Dr. Munam Ali Shah.
11-Basic Cryptography Dr. John P. Abraham Professor UTPA.

11-Basic Cryptography Dr. John P. Abraham Professor UTPA.
Encryption. What is Encryption? Encryption is the process of converting plain text into cipher text, with the goal of making the text unreadable.

Encryption. What is Encryption? Encryption is the process of converting plain text into cipher text, with the goal of making the text unreadable.

Similar presentations

Ads by Google