, , . .
( ) [DoD, 1993]. D, , . D . (C1, C2, 1, 2, ). , .
C2, Windows NT, Unix .
. .
, ( ). (, ) .
. , , .
, .
, , .
Common Criteria, Controlled AccessProtectionProfile C2.
, . (, , .) . "" "" . , , . , , , . .
, : , , ? , . , , , .
|
|
, . , (Saltzer) (Schroeder) (1975) MULTICS .
. ( ).
. , , .
. , . , .
.
, , ( "" MS-DOS).
. , , . .
.
, , , , .
, , . , , , . .
, , ( ). , , . , , - .
, , , ( , .), .
. , . , . .
. . , .
|
|
(authentication) . , .
, . , . .
. . (, Microsoft) (, , ) , . .
" " . , : , , , 7-8 . . , .
. , . (, ).
, .
()
, .
(Trojan Horse) , "" , () , , . , , , .
(Trap Door) - , , .
(Stack and Buffer Overflow) - ( ) .
()
, (vulnerabilities) , .
(Worms) , (). , - UNIX ( ) finger sendmail. : .
1. - Morris, UNIX.
. 1. - Morris.
, . . , "". .
, . . (safe computing) , guards , -.exe, doc, ..
|
|
(Denial of Service DoS) , . , Web- , "GET". , .
, .
Phishing . phishing fishing( ), .. " ". , , , , . phishing- , .., . ( ) web- email- ( ) , , email. . , phishing email-, - email-. .
Pharming Web- ( phishing). . web- , . , .
Tampering with data . .
Spoofing " " ( , ). (, phishing), "" .
Elevation of privilege (, ) c . , .