1.6 Security and Protection

Question 1

If a computer system has multiple users, access to data must be regulated by __________.

Answer 1

mechanisms

Question 2

Memory-addressing hardware ensures that a process can execute only within its own __________.

Answer 2

address space

Question 3

The __________ ensures that no process can gain control of the CPU without eventually relinquishing control.

Answer 3

timer

Question 4

Device-control registers are not accessible to __________.

Answer 4

users

Question 5

Protection is any mechanism for controlling the access of processes or users to the __________ defined by a computer system.

Answer 5

resources

Question 6

Protection mechanisms must provide means to specify the controls to be imposed and to __________ the controls.

Answer 6

enforce

Question 7

Protection can improve reliability by detecting latent errors at the __________ between component subsystems.

Answer 7

interfaces

Question 8

An unprotected resource cannot defend against use or misuse by an __________ or incompetent user.

Answer 8

unauthorized

Question 9

A protection-oriented system provides a means to distinguish between authorized and __________ usage.

Answer 9

unauthorized

Question 10

Security is responsible for defending a system from external and internal __________.

Answer 10

attacks

Question 11

Denial-of-service attacks use all of a system’s resources and keep legitimate users __________.

Answer 11

out of the system

Question 12

Operating system security features are a fast-growing area of __________ and implementation.

Answer 12

research

Question 13

Most operating systems maintain a list of user names and associated __________.

Answer 13

user identifiers (user IDs)

Question 14

In Windows, the user identifier is known as a security __________.

Answer 14

ID (SID)

Question 15

When a user logs in to the system, the authentication stage determines the appropriate __________ for the user.

Answer 15

user ID

Question 16

To distinguish among sets of users, we need to define a __________ name and the set of users belonging to that group.

Answer 16

group

Question 17

Group functionality can be implemented as a system-wide list of __________ names and group identifiers.

Answer 17

group

Question 18

A user can be in one or more __________, depending on operating-system design decisions.

Answer 18

groups

Question 19

A user sometimes needs to escalate __________ to gain extra permissions for an activity.

Answer 19

privileges

Question 20

On UNIX, the setuid attribute on a program causes that program to run with the user ID of the __________ of the file.

Answer 20

owner

Question 21

The process runs with this effective UID until it turns off the extra privileges or __________.

Answer 21

terminates