3 , . , , , . , , . , (, ) .
, Windows
. , , , ( ) .
. , , Event I.og.
LSASS , . :
,
,
,
.
LSASS -*, , Windows-
. , , , .
SAM. , , , . SAM , . HKLM\SAM.
Active Directory , . Active Directory , , . Active Directory , .
DLL-, Lsass Windows. DLL , I.SASS ( ) , LSASS (token).
|
|
(Winlogon) I Iponecc (\Win-dows\Systcm32\Winlogon.). SAS . , Winlogon .
GINA (Graphical Identification and Authentication) DM. , Winlogon PIN- -. CHNA \Windows\Sysicm32\Msgina.dll.
) (Net logon) Windows- (\Windows\Sys-tem32 \Netlogon.dll). , , , ( Windows NT), LAN Manager NT LAN Manager (vl v2).
Kernel Security Device Driver (KSecDD) , LPC (local procedure call), (Encrypting File System, EFS) LSASS . KsecDD \Windows\System32\Drivcrs\Ksccdd.sys.
IP- (Internet Protocol Securiiy, IPSec) TCP/IP IP- , IP- . IPSec , , , , , , , .. , . IP- IPSec :
IP- ;
IP- ;
IP- , ;
IP- . , IP-, .
IPSec (host-based packet tillering) . IPScc IP-, , . ' IPSec IP- ( 3) TCP/IP , , TCP/IP.
|
|
Active Directory' , (organizational units. Oil), IPSec (Group Policy Objects. GPO). IPScc. IPSec Active Directory'. a . IPSec .
IPSec (mutual authentication), : Kerberos 5, 509 3 (preshared key).
Windows- IPScc RI;C. IPScc Windows IPSec IPScc Policy Agent, Internet Key Exchange (IKE) IPSec.
IP-. LSASS ( LSASS . 8). - Services () IPSEC Services ( IPSEC). 1- IPSec Active Directory IP- IPSec. IKE.
IKE IPSec (security associations. SA). SA. SA IPScc. SA IPSec , , IPSec SA , , , . IKE SA , oi IPScc . SA IKE ( ISAKMP) , IKE. a SA ( IPScc) .
IPSec. , TCP/IP , TCP/IP IPSec IP-, , IP- IP-. , IPSc SA SA. - IP Security Policy Management ( IP) IPScc , IPSec IPSec Active Directory, IPSec
[(1;3-27,196-227),(5;380-414),(2;207-219)]
1. Windows API
2.
3.
1. ., . Microsoft Winows
2. ., .. .
3. , : .
4.
5. .., ..