Lecture 28 Outline (June 3, 2015)

Reading: §15, 22 (not 22.6), [Nac97]
Assignment: Homework 4, due June 3, 2015 (no late assignments accepted)

1. Greeting and felicitations!
   1. Review sessions:
      1. Friday, June 5 at 1:10pm–2:00pm in 1003 Giedt Hall
      2. Monday, June 8 at 4:10pm–5:00pm in 26 Wellman
   2. Office hours:
      1. Friday, June 5 at 3:10pm–4:00pm
      2. Monday, June 8 at 2:10pm–3:00pm
      3. Tuesday, June 9 at 12:10pm–1:00pm
2. Capabilities
   1. Capability-based addressing
   2. Inheritance of C-Lists
   3. Revocation: use of a global descriptor table
3. Lock and Key
   1. Types and locks
4. MULTICS ring mechanism
   1. Rings, gates, ring-crossing faults
   2. Used for both data and procedures; rights are REWA
   3. (b₁, b₂) access bracket—can access freely; (b₃, b₄) call bracket—can call segment through gate; so if a’s access bracket is (32, 35) and its call bracket is (36, 39), then assuming permission mode (REWA) allows access, a procedure in:
      rings 0–31: can access a, but ring-crossing fault occurs
      rings 32–35: can access a, no ring-crossing fault
      rings 36–39: can access a, provided a valid gate is used as an entry point
      rings 40–63: cannot access a
   4. If the procedure is accessing a data segment d, no call bracket allowed; given the above, assuming permission mode (REWA) allows access, a procedure in:
      rings 0–32: can access d
      rings 33–35: can access d, but cannot write to it (W or A)
      rings 36–63: cannot access d
5. Types of malicious logic
   1. Trojan horse
      1. Replicating Trojan horse
      2. Thompson’s compiler-based replicating Trojan horse
   2. Computer virus
      1. Boot sector infector
      2. Executable infector
      3. Multipartite
      4. TSR (terminate and stay resident)
      5. Stealth
      6. Encrypted
      7. Polymorphic
      8. Metamorphic
      9. Macro
   3. Computer worm
   4. Bacterium, rabbit
   5. Logic bomb
   6. Others