CISSPEssentials:MasteringtheCommonBodyofKnowledgeClass4:SecurityarchitectureandmodelsLecturerShonHarris,CISSP,MCSEPresident,LogicalSecurityCISSPEssentialsLibrary:www.searchsecurity.com/CISSPessentialsClass4Quiz:www.searchsecurity.com/Class4quizClass4Spotlight:www.searchsecurity.com/Class4spotlightCISSPEssentials:MasteringtheCommonBodyofKnowledgeSecurityarchitectureandmodelsobjectives•Computerarchitecture,software,hardwarecomponents•Operatingsystemprotectionmechanisms•Accesscontrolmodels•Evaluationassurancecriterionandratings•Certificationandaccreditationprocesses•AttacktypesAgenda•Hardwareandsoftwarecomputercomponents•Memorytypesanduses•Storagetypes•Processesandthreads•LanguagegenerationsHardwarecomponents-CentralProcessingUnit(CPU)CPUcomponents•Primarystorage•Registersthatstoreinstructionsanddatathatneedstobeprocessed•Controlunit•Coordinatesactivitiesduringprograminstructionexecution•Doesnotprocessdata,butcontrolsprocessesthatcarryoutexecution•ArithmeticLogicUnit(ALU)•PerformsmathematicalandlogicalfunctionsonthedataMemorymanagementResponsibilities•Keeptrackofusedandunusedmemorysegments•Assignmemorysegmentstoprocesses•Manageswappingbetweenmainmemoryandsecondarystorage•Memoryprotection•Ensurethatprocessesdonotcorrupteachother’smemory•Accesscontrol•Ensurethatarequestingprocesshasthenecessaryrightstoaccessamemorysection•Keepingtrackofsoftwareandvirtualaddressingschemes•Multi-useroperatingsystemrequiresamorecomplexmemorymanager•MS-DOSandWindows9xaresingle-useroperatingsystemsStatesthatprocessesworkinDifferentstates•Stopped•Theprocessisnotrunning•Couldbestoppedbytheoperatingsystemoruser•Waiting•TheprocessiswaitingforaninterrupttobeabletobeprocessedbytheCPU•SoftwareinterruptsallowtimeslicingandsharingoftheCPU•Running•Theprocess’instructionsarebeingexecutedbytheCPU•Run-time•Ready•Availabletobeusedandwaitingforaninstruction•WaitingforarequestfromanapplicationoruserLanguagetypesMachineLanguage–1GL•ExecuteddirectlybyCPUAssemblyLa...
