[Security란] Security vs Protection, Authentication vs Authorization

✅Security

: keeping unauthorized entities from doing things you don’t want them to do

: protecting systems from deliberate attacks

 

- Confidentiality, Integrity, Availability 

 

OS의 역할

privileged mode, memory protection, file access permissions, ...

 

✅Protection

: protecting files and other resources from accidental misuse

 

✅Authentication

: proving that someone is who they say they are

 

✅Authorization

: Verify whether the authenticated user has an access privilege to the system resource.

 

ACL(Access control list)

: implements file permission.

 

- read protection: provide confidentiality

- write protection: provide integrity