|
After this course, the students are able to
- recognize limitations of classic (UNIX) security,
- understand security concepts of modern operating systems for desktop and mobile devices,
- evaluate OS configurations from a security perspective,
- identify and apply common attacks against operating systems,
- recognize and utilize standard defense mechanisms.
|
|
This lecture gives an introduction to security issues of operating systems and in particular puts the content of the lecture of "Hacking in C" into a broader context.
Topics covered in the course:
• Singleuser/Multiuser environments
• Authentication
• Authorization
• File-access policies
• Memory protection
• Virtualization and related security issues
• Malware and malware detection
• Security-enhanced operating systems
• Operating systems designed for security
Instructional modes
- Lecture
- Tutorial
- Self-study
|
|
|
|
Knowledge of the C programming language as well as background from the course "Hacking in C" (https://cryptojedi.org/peter/teaching/hacking-in-c-2019.shtml) is assumed. Background on the topics of "Security" and "Network Security" is helpful but not crucial. Students should have followed at least two programming courses.
|
|
Homework assignments and written exam.
The assignments are mandatory and are worth 10% of the final grade. Students need a minimum of 40% of the assignment points in order to pass the course. Students with two or more missed (non-delivered) assignments will fail, regardless of the final exam outcome.
The final exam is worth 90% of the grade.
|
|
|