| Enforcing Access Control |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| • | User
level privileges must always be less than OS |
||||||||||||||
| privileges! |
|||||||||||||||
| – | For
example, a user should not be allowed to grab |
||||||||||||||
| exclusive
control of a critical device |
|||||||||||||||
| – | or
write to OS memory space |
||||||||||||||
| • | …and
the user cannot be allowed to raise his |
||||||||||||||
| privilege
level! |
|||||||||||||||
| • | The
OS must enforce it…and the user must not be |
||||||||||||||
| able
to bypass the controls |
|||||||||||||||
| • | In
most modern operating systems, the code which |
||||||||||||||
| manages
the resource enforces the policy |
|||||||||||||||
