Syllabus - OS Internals for Security Support (CY501)

CSE-Cyber Security/Cyber Security

OS Internals for Security Support (CY501)

V-Semester

Unit-1

Introduction To Kernel

Architecture of the UNIX operating system, System concepts, Data structures, Buffer Cache, Buffer header, Structure of Buffer pool, Reading and writing disk blocks. Files INODES, Structure of a regular file, Directories, Super block, INODE assignment, System calls - OPEN, READ, CLOSE, WRITE, CREATE, CHMOD, CHOWN, Pipes, Mounting and Un-mounting.

Unit-2

Process

Layout System Memory, Process Description, Process control, process creation, signals, Process scheduling, Privileges, Threats, intruders, malicious software, time, clock, Principals of Concurrency, Inter-Process Communications - Process tracing, System V IPC, Shared Memory, Semaphores.

Unit-3

Security and Protection in Operating Systems

access control, auditing, trusted computing, Multics and the commercial Operating Systems, Malware analysis, protection- viruses, worms and Trojans, Root-kits, Ransomware, Polymorphic malware, Malware capture and analysis using honey-pots.

Unit-4

Common vulnerabilities and Exposures

Secure system configuration, Virtualization techniques for security, Mobile Operating Systems security, Systems security in Android, Application Security, Secure wallets, secure co-processors.

Unit-5

Windows Operation System

versions, Concepts and tools, Windows internals, System Architecture, System worker threads, Windows global flags, Local procedural calls, Socket, Sockets Programming, Winsock, functions, data structures, descriptors, Connections, Socket elements, Stream and Datagram Sockets.

Practicals

Reference Books

Maurice J. Bach: “The Design of the Unix Operating System”, Prentice Hall of India, 1991.
Mark E. Russinovich and David A. Solomon: “Microsoft® Windows® Internals”, 4th Edition, Microsoft Press, 2004.