Lecture Videos and CyBOK

April 11, 2024 · View on GitHub

The Cyber Security Body of Knowledge (CyBOK) is a body of knowledge that aims to encapsulate the various knowledge areas present within cyber security. Scenarios within SecGen now contain XML elements linking them to CyBOK knowledge areas and specific topics within those knowledge areas. Additionally, video lectures for scenarios are tagged with their CyBOK associations.

This file is an autogenerated index of the lecture videos referenced by scenarios -- with CyBOK metadata.

There are 71 videos with CyBOK metadata.

Cyber Security Body of Knowledge (CyBOK) Issue 1.1 is Crown Copyright, The National Cyber Security Centre 2021, licensed under the Open Government Licence http://www.nationalarchives.gov.uk/doc/open-government-licence/.

Lecture Videos

The CIA Triad

by Z. Cliffe Schreuders

thumbnail

https://www.youtube.com/watch?v=sv1pHuuoW9g

KATopicsKeywords
(IC)Foundational Conceptsobjectives of cyber security

Protecting Integrity

by Z. Cliffe Schreuders

thumbnail

https://www.youtube.com/watch?v=grISRv-CuHE

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authorisationaccess control; Protecting integrity
Operating Systems & Virtualisation (OSV)Primitives for Isolation and MediationLinux read only protections: ro mounts; file attributes

Monitoring Integrity

by Z. Cliffe Schreuders

thumbnail

https://www.youtube.com/watch?v=qzyEdeQ_7ZY

KATopicsKeywords
Forensics (F)Artifact Analysiscryptographic hashing
Security Operations & Incident Management (SOIM)Monitor: Data SourcesMONITORING - FILE INTEGRITY CHECKERS
Operating Systems & Virtualisation (OSV)OS Hardeningcode and data integrity checks

Incident Response

by Z. Cliffe Schreuders

thumbnail

https://www.youtube.com/watch?v=kz7m-iyzSOw

KATopicsKeywords
Operating Systems & Virtualisation (OSV)Fundamental Conceptsworkflows and vocabulary; architectural principles
Operating Systems & Virtualisation (OSV)Human Factors: Incident Managementprepare: incident management planning; handle: actual incident response; follow up: post incident activities; BUSINESS CONTINUITY PLAN - AND INCIDENT RESPONSE; incident response methodologies
Law & Regulation (LR)Data Protectioninvestigation and prevention of crime; personal data breach notification; enforcement and penalties

Contingency Planning

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/lak1Sued4GY

KATopicsKeywords
Operating Systems & Virtualisation (OSV)Human Factors: Incident Managementprepare: incident management planning; BUSINESS CONTINUITY PLAN - AND INCIDENT RESPONSE

Backup Planning

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/stVomGROfbQ

KATopicsKeywords
Security Operations & Incident Management (SOIM)Execute: Mitigation and CountermeasuresRecover data and services after an incident
Operating Systems & Virtualisation (OSV)Human Factors: Incident Managementprepare: incident management planning; BUSINESS CONTINUITY PLAN - AND INCIDENT RESPONSE

Backup Levels: Differential and Incremental Backups Using Rsync

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/n8IKEJUOISY

KATopicsKeywords
Security Operations & Incident Management (SOIM)Execute: Mitigation and CountermeasuresRecover data and services after an incident; BACKUP - DIFFERENTIAL; BACKUP - INFERENTIAL
Operating Systems & Virtualisation (OSV)Human Factors: Incident Managementprepare: incident management planning

The Cloud

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/raR0HstMnjg

KATopicsKeywords
Security Operations & Incident Management (SOIM)Execute: Mitigation and CountermeasuresDATA REDUNDANCY; REDUNDANCY IN NETWORK SERVICES
Distributed Systems Security (DSS)CLOUD - COMPUTING - SERVICESCLOUD COMPUTING - DEPLOYMENT MODELS; CLOUD COMPUTING - RESOURCE POOLING; CLOUD COMPUTING - SERVICE MODELS - IAAS; CLOUD COMPUTING - SERVICE MODELS - PAAS; CLOUD COMPUTING - SERVICE MODELS - SAAS; CLOUD COMPUTING - STORAGE
Operating Systems & Virtualisation (OSV)CLOUD - COMPUTING - SERVICESCLOUD COMPUTING - VIRTUALIZATION
Privacy & Online Rights (POR)ConfidentialityCLOUD COMPUTING - PRIVACY CONCERNS

Redundancy and RAID

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/3oDVTSFhl8Y

KATopicsKeywords
Security Operations & Incident Management (SOIM)Execute: Mitigation and CountermeasuresDATA REDUNDANCY

Intrusion Detection and Prevention Systems (IDS IPS)

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/M6MisvbU32M

KATopicsKeywords
Security Operations & Incident Management (SOIM)Monitor: Data Sourcesnetwork traffic
Security Operations & Incident Management (SOIM)Analyse: Analysis Methodsmisuse detection; anomaly detection
Security Operations & Incident Management (SOIM)Execute: Mitigation and Countermeasuresintrusion prevention systems
Network Security (NS)Network Defence Toolspacket filters; intrusion detection systems
Malware & Attack Technology (MAT)Malware Detectionattack detection

IDS accuracy

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/ZUMBsMppsLo

KATopicsKeywords
Security Operations & Incident Management (SOIM)Analyse: Analysis Methodsthe base-rate fallacy
Security Operations & Incident Management (SOIM)Analyse: Analysis Methodsmisuse detection; anomaly detection
Security Operations & Incident Management (SOIM)Execute: Mitigation and Countermeasuresintrusion prevention systems
Network Security (NS)Network Defence Toolsintrusion detection systems

Snort IDS

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/nuUm4NO_S1s

KATopicsKeywords
Security Operations & Incident Management (SOIM)Monitor: Data Sourcesnetwork traffic
Security Operations & Incident Management (SOIM)Analyse: Analysis Methodsmisuse detection; anomaly detection
Security Operations & Incident Management (SOIM)Execute: Mitigation and Countermeasuresintrusion prevention systems
Network Security (NS)Network Defence Toolspacket filters; intrusion detection systems; IDS rules creation
Malware & Attack Technology (MAT)Malware Detectionattack detection

Regexp (unstructured demo)

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/4zYn4hbwKYQ

Snort Regexp Tips

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/Y32tmFrCEBk

KATopicsKeywords
Security Operations & Incident Management (SOIM)Monitor: Data Sourcesnetwork traffic
Security Operations & Incident Management (SOIM)Analyse: Analysis Methodsmisuse detection; anomaly detection
Network Security (NS)Network Defence Toolspacket filters; intrusion detection systems; IDS rules creation
Malware & Attack Technology (MAT)Malware Detectionattack detection

Live System Analysis: Concepts

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/aNvVtF437LI

KATopicsKeywords
Forensics (F)Main Memory Forensicsprocess information; file information; network connections; artifacts and fragments; challenges of live forensics
Operating Systems & Virtualisation (OSV)OS Hardeninganomaly detection
Authentication, Authorisation & Accountability (AAA)AccountabilityThe fallibility of digital evidence to tampering
Malware & Attack Technology (MAT)Malware Detectionidentifying the presence of malware

Live System Analysis: Tools Demo

by Z. Cliffe Schreuders

thumbnail

https://www.youtube.com/watch?v=iUInvMrBw3k

KATopicsKeywords
Forensics (F)Main Memory Forensicsprocess information; file information; network connections; artifacts and fragments; challenges of live forensics
Operating Systems & Virtualisation (OSV)OS Hardeninganomaly detection
Authentication, Authorisation & Accountability (AAA)AccountabilityThe fallibility of digital evidence to tampering
Malware & Attack Technology (MAT)Malware Detectionidentifying the presence of malware

Investigating a running process

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/9nyvtJRQ17w

KATopicsKeywords
Forensics (F)Main Memory Forensicsprocess information; file information; network connections

Dead System Analysis

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/3kiV0ZJWmMY

KATopicsKeywords
Forensics (F)Operating System Analysisstorage forensics; data recovery and file content carving; Timeline analysis
Malware & Attack Technology (MAT)Malware Detectionidentifying the presence of malware
Authentication, Authorisation & Accountability (AAA)AccountabilityThe fallibility of digital evidence to tampering

Log Management

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/0EafG4CLwA4

KATopicsKeywords
Security Operations & Incident Management (SOIM)Fundamental Conceptsworkflows and vocabulary; PURPOSE OF LOGGING AND AUDITING
Security Operations & Incident Management (SOIM)Monitor: Data Sourcessystem and kernel logs; Syslog; Linux Journal and SystemD; EVENTS - LOGGING; LOG FILES - CENTRALIZED LOGGING; LOG FILES - EVENT SOURCE CONFIGURATION; Log format: Common Log Format (CLF)
Security Operations & Incident Management (SOIM)Analyse: Analysis Methodscontribution of SIEM to analysis and detection

Reverse Engineering and Malware Analysis: Part 1 Static Analysis

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/14Hv_QodLxs

KATopicsKeywords
Malware & Attack Technology (MAT)Malware Analysisanalysis techniques; analysis environments; STATIC ANALYSIS

Reverse Engineering and Malware Analysis: Part 2 Dynamic Analysis

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/quKsZbpvYIY

KATopicsKeywords
Malware & Attack Technology (MAT)Malware Analysisanalysis techniques; analysis environments; DYNAMIC ANALYSIS

The Problem of Malware

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/CxZx7b3OPsg

KATopicsKeywords
Malware & Attack Technology (MAT)Malware Taxonomypotentially unwanted programs
Operating Systems & Virtualisation (OSV)Attacker Modelattack surface; threats to security for modern OSs

Malware Types

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/3qmmqfBtJio

KATopicsKeywords
Malware & Attack Technology (MAT)Malware Taxonomydimensions; kinds; potentially unwanted programs

Stopping Malware

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/k3NwrFWuhaY

KATopicsKeywords
Malware & Attack Technology (MAT)Malware DetectionANTI-MALWARE - SYSTEMS; ANTIVIRUS SOFTWARE; MALCODE/MALWARE - COUNTERMEASURES - CODE SIGNING; MALCODE/MALWARE - COUNTERMEASURES - SANDBOXING; MALCODE/MALWARE - THIRD-PARTY CERTIFICATIONS

Introduction to C - Part 1

by Thalita Vergilio

thumbnail

https://youtu.be/chebVVwj1kM

KATopicsKeywords
Malware & Attack Technology (MAT)Technical UnderpinningTechnical underpinnings for malware analysis: C

Introduction to C - Part 2

by Thalita Vergilio

thumbnail

https://youtu.be/2R4QzDAfzLQ

KATopicsKeywords
Malware & Attack Technology (MAT)Technical UnderpinningTechnical underpinnings for malware analysis: C

From C to Assembly Language

by Thalita Vergilio

thumbnail

https://youtu.be/QbyorEb3WTs

KATopicsKeywords
Malware & Attack Technology (MAT)Technical UnderpinningTechnical underpinnings for malware analysis: ASM; Technical underpinnings for malware analysis: C

Recognising C Constructs in Assembly

by Thalita Vergilio

thumbnail

https://youtu.be/8b6JokfEFEo

KATopicsKeywords
Malware & Attack Technology (MAT)Malware Analysisanalysis techniques

SRE with Ghidra: Overview and Interface

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/0zUmUZoEpC4

KATopicsKeywords
Malware & Attack Technology (MAT)Malware Analysisanalysis techniques; analysis environments; STATIC ANALYSIS

SRE with Ghidra: Analysis and Renaming Variables and Editing Function Signatures

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/m73pHO_0vhI

KATopicsKeywords
Malware & Attack Technology (MAT)Malware Analysisanalysis techniques; analysis environments; STATIC ANALYSIS

Dynamic Analysis and Debugging

by Thalita Vergilio

thumbnail

https://youtu.be/6MeJIr3EKKM

KATopicsKeywords
Malware & Attack Technology (MAT)Malware Analysisanalysis techniques; analysis environments; DYNAMIC ANALYSIS

Dynamic Analysis and Debugging

by Thalita Vergilio

thumbnail

https://youtu.be/pExTbDVt0Gw

KATopicsKeywords
Malware & Attack Technology (MAT)Malware Analysisanalysis techniques; analysis environments; DYNAMIC ANALYSIS

Malware Behaviour

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/6XMrHyAqD-4

KATopicsKeywords
Malware & Attack Technology (MAT)Malware Analysisanalysis techniques; MALICIOUS ACTIVITIES BY MALWARE

DLL injection for Linux: LD_PRELOAD Demo

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/KJPeZptzl1U

KATopicsKeywords
Malware & Attack Technology (MAT)Malware Analysisanalysis techniques; MALICIOUS ACTIVITIES BY MALWARE

Packers and UPX Short Demo

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/6qeDnjOaRiI

KATopicsKeywords
Malware & Attack Technology (MAT)Malware Analysisanalysis techniques; MALICIOUS ACTIVITIES BY MALWARE

Software, Vulnerabilities and Exploits

by Tom Shaw

thumbnail

https://youtu.be/jo_07iOplzA

KATopicsKeywords
Malware & Attack Technology (MAT)Attacks and exploitationEXPLOITATION

Software Vulnerabilities

by Tom Shaw

thumbnail

https://youtu.be/1Hy_166CwRk

KATopicsKeywords
Malware & Attack Technology (MAT)Attacks and exploitationEXPLOITATION

Structured Output Generation Vulnerabilities

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/nVpqjsfii6c

KATopicsKeywords
Software Security (SS)Categories of Vulnerabilitiesstructured output generation vulnerabilities
Software Security (SS)Prevention of Vulnerabilitiesstructured output generations mitigations

Race Conditions and Time of Check to Time of Use TOCTTOU Vulnerabilities

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/PH73lpG2B1M

KATopicsKeywords
Software Security (SS)Categories of Vulnerabilitiesrace condition vulnerabilities
Software Security (SS)Prevention of Vulnerabilitiesrace condition mitigations

The Format String Vulnerability

by Tom Shaw

thumbnail

https://youtu.be/Du3fVc_ZLiI

KATopicsKeywords
Software Security (SS)Categories of VulnerabilitiesFormat string attacks

Fuzzing Part 1

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/nwxtlR31hvw

KATopicsKeywords
Software Security (SS)Detection of Vulnerabilitiesdynamic detection

Fuzzing Part 2

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/vT2PP7VnSNw

KATopicsKeywords
Software Security (SS)Detection of Vulnerabilitiesdynamic detection

Overflows and Stack Smashing Buffer Overflows

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/Zh7IdmnCfy0

KATopicsKeywords
Software Security (SS)Categories of Vulnerabilitiesmemory management vulnerabilities

Writing Exploits (Buffer Overflows Part 2)

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/WU06L-u0t2Q

KATopicsKeywords
Software Security (SS)Categories of Vulnerabilitiesmemory management vulnerabilities

Memory Vulnerabilities

by Tom Shaw

thumbnail

https://youtu.be/j2S-XgY-Fyg

KATopicsKeywords
Software Security (SS)Categories of Vulnerabilitiesmemory management vulnerabilities

The Stack (part 1)

by Tom Shaw

thumbnail

https://youtu.be/Lf1UPaqPJMM

KATopicsKeywords
Software Security (SS)Technical UnderpinningTechnical underpinnings for memory management vulnerabilities: the stack

The Stack (part 2)

by Tom Shaw

thumbnail

https://youtu.be/5OUQ7ExlgKI

KATopicsKeywords
Software Security (SS)Technical UnderpinningTechnical underpinnings for memory management vulnerabilities: the stack

Threat modeling using STRIDE and Attack Trees

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/oi_CfBe_umU

KATopicsKeywords
(SSL)Prescriptive ProcessesMicrosoft SDL
Risk Management & Governance (RMG)THREAT ANALYSISTHREAT MODEL; ATTACK TREES

STRIDE Threat Modeling using Microsoft Threat Modeling Tool

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/Wry2get_RRc

KATopicsKeywords
(SSL)Prescriptive ProcessesMicrosoft SDL
Risk Management & Governance (RMG)THREAT ANALYSISTHREAT MODEL; ATTACK TREES

Secure Design Principles

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/ywLXfSR5YWk

KATopicsKeywords
Operating Systems & Virtualisation (OSV)OS Security PrinciplesSaltzer and Schroeder’s principles; newer principles

Secure Development Lifecycles

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/v2rChKDAmFg

KATopicsKeywords
(SSL)Motivations for Secure Software Lifecyclevulnerabilities can be exploited without being noticed
(SSL)Prescriptive ProcessesMicrosoft SDL; SAFECode; Touchpoints

Open source development and security practices

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/xwsBaNQZozg

KATopicsKeywords
(SSL)Prescriptive ProcessesOpen source secure development

User accounts and Linux

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/2I_JSdTu-oI

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authenticationuser authentication
Operating Systems & Virtualisation (OSV)Primitives for Isolation and Mediationauthentication and identification; Linux authentication; Types of user accounts

Passwords Part 1 Hashing and salt

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/pGcJEML1mRo

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authenticationuser authentication; Cryptography and authentication (hashes and attacks against authentication schemes / passwords)
Operating Systems & Virtualisation (OSV)Primitives for Isolation and Mediationauthentication and identification; Linux authentication

Passwords Part 2 Attacks and Countermeasures

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/icC2Zrno_uM

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authenticationuser authentication; Cryptography and authentication (hashes and attacks against authentication schemes / passwords)
Operating Systems & Virtualisation (OSV)Primitives for Isolation and Mediationauthentication and identification; Linux authentication

Password cracking with Johnny

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/Wrg6XZu6Luw

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authenticationuser authentication; Cryptography and authentication (hashes and attacks against authentication schemes / passwords)
Operating Systems & Virtualisation (OSV)Primitives for Isolation and Mediationauthentication and identification; Linux authentication

Authentication

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/z4L6Yv5ry1A

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authenticationidentity management; user authentication; facets of authentication
Operating Systems & Virtualisation (OSV)Primitives for Isolation and Mediationauthentication and identification; Linux authentication

Biometrics

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/-zcnfmoLjYI

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authenticationidentity management; user authentication; facets of authentication; AUTHENTICATION - BIOMETRICS

Authentication Tokens and One-Time Passwords

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/xHs3LB4Yyrk

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authenticationidentity management; user authentication; facets of authentication; AUTHENTICATION - OTP (ONE-TIME PASSWORD); AUTHENTICATION - TOKENS

Network-based Authentication (SSO, AD, LDAP, Kerberos)

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/c2dPdQmaVyo

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authenticationidentity management; authentication in distributed systems; user authentication; Network based-authentication with heterogeneous Linux and Windows networks
Authentication, Authorisation & Accountability (AAA)AuthorisationAUTHORIZATION - SSO (SINGLE SIGN-ON); AUTHORIZATION - LDAP (LIGHTWEIGHT DIRECTORY ACCESS PROTOCOL); AUTHENTICATION - KERBEROS; ACTIVE DIRECTORY DOMAIN SERVICES (ADDS)
Authentication, Authorisation & Accountability (AAA)Access Control in Distributed Systemscore concepts; federated access control

Lightweight Directory Access Protocol (LDAP)

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/dCBabesIXo8

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authenticationidentity management; authentication in distributed systems; user authentication
Authentication, Authorisation & Accountability (AAA)Authorisationtheory; Network based-authentication with heterogeneous Linux and Windows networks; AUTHORIZATION - LDAP (LIGHTWEIGHT DIRECTORY ACCESS PROTOCOL)

Kerberos overview

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/rhdcxhSDqp4

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authenticationidentity management; authentication in distributed systems; user authentication; Network based-authentication with heterogeneous Linux and Windows networks
Authentication, Authorisation & Accountability (AAA)AuthorisationAUTHENTICATION - KERBEROS

Active Directory

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/PCXK2cK8tpE

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authenticationidentity management; authentication in distributed systems; user authentication; Network based-authentication with heterogeneous Linux and Windows networks
Authentication, Authorisation & Accountability (AAA)AuthorisationAUTHORIZATION - SSO (SINGLE SIGN-ON); AUTHORIZATION - LDAP (LIGHTWEIGHT DIRECTORY ACCESS PROTOCOL); AUTHENTICATION - KERBEROS; ACTIVE DIRECTORY DOMAIN SERVICES (ADDS)
Authentication, Authorisation & Accountability (AAA)Access Control in Distributed Systemscore concepts; federated access control

Access Controls: Introduction

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/yWJyZEFbchQ

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authorisationaccess control; enforcing access control; theory
Operating Systems & Virtualisation (OSV)Primitives for Isolation and MediationAccess controls and operating systems
Operating Systems & Virtualisation (OSV)Role of Operating Systemsmediation; TRUSTED COMPUTING BASE (TCB); REFERENCE MONITOR

Unix File Permissions

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/i0kO_3ExJv4

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authorisationaccess control; enforcing access control; ACCESS CONTROL - DAC (DISCRETIONARY ACCESS CONTROL)
Operating Systems & Virtualisation (OSV)Primitives for Isolation and MediationAccess controls and operating systems; Linux security model; Unix File Permissions; filesystems; inodes; and commands
Operating Systems & Virtualisation (OSV)Role of Operating Systemsmediation

Access Control Models

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/viSkkNB777k

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authorisationaccess control; theory; ACCESS CONTROL - DAC (DISCRETIONARY ACCESS CONTROL); ACCESS CONTROL - MAC (MANDATORY ACCESS CONTROL); ACCESS CONTROL - NDAC (NON-DISCRETIONARY ACCESS CONTROL); ACCESS CONTROL - ROLE-BASED
Operating Systems & Virtualisation (OSV)OS Security Principlessecurity models

Special File Permissions SetUID, SetGUI

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/PGHsb3bg_h4

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authorisationaccess control; Elevated privileges; Real and effective identity; Vulnerabilities and attacks on access control misconfigurations
Operating Systems & Virtualisation (OSV)Primitives for Isolation and MediationAccess controls and operating systems; Linux security model; Unix File Permissions; setuid/setgid

ACLs and Capabilities

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/Bn3NJhgmdLk

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authorisationaccess control; ACCESS CONTROL - MATRIX; ACCESS CONTROL LIST (ACL); Vulnerabilities and attacks on access control misconfigurations
Operating Systems & Virtualisation (OSV)Primitives for Isolation and Mediationcapabilities

Linux Extended ACLs

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/OT7ifs8PkHI

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)Authorisationaccess control; ACCESS CONTROL LIST (ACL); Vulnerabilities and attacks on access control misconfigurations
Operating Systems & Virtualisation (OSV)Primitives for Isolation and MediationAccess controls and operating systems; Linux security model; Linux Extended Access Control Lists (facl)

Sandboxing and Virtualisation

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/f4yBcKkb12g

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)AuthorisationSANDBOX; Application-based access controls: user-based access controls insufficiently limit privileges
Operating Systems & Virtualisation (OSV)Primitives for Isolation and Mediationcapabilities; Container-based sandboxes: chroot; Docker; Rule-based controls: Course grained: Linux capabilities; System-level sandboxes (complete OS; Qubes); hardware-emulation and paravirtualisation; Copy on write sandboxes
Operating Systems & Virtualisation (OSV)Role of Operating Systemsisolation; CONTAINERS
Web & Mobile Security (WAM)Fundamental Concepts and Approachessandboxing; permission dialog based access control

Rule-based Sandboxing and Mandatory Access Controls

by Z. Cliffe Schreuders

thumbnail

https://youtu.be/Xgs5akM6ayc

KATopicsKeywords
Authentication, Authorisation & Accountability (AAA)AuthorisationACCESS CONTROL - MAC (MANDATORY ACCESS CONTROL); ACCESS CONTROL - NDAC (NON-DISCRETIONARY ACCESS CONTROL); Application-based access controls: user-based access controls insufficiently limit privileges; Rule-based sandboxes; System call interposition; Integrity level access controls
Operating Systems & Virtualisation (OSV)Primitives for Isolation and MediationRule-based controls: Fine grained: AppArmor
Software Security (SS)Mitigating Exploitationlimiting privileges