In a multiprogramming and time-sharing environment, several users share the system simultaneously. This situation can result in various security problems. Name at least two of these problems. Can we ensure the same degree of security in a time-share machine as we have in a dedicated machine? Explain your answer.
Primary problems are the privacy and files can be duplicated and fabricated. Also Programs and applications can be copied without proper accounting because of the type of system that is used that can inevitably be shared.
No, it's not as secure as we think it is. Anything that man uses as protection from schemes of threats for security can easily be broken also by man. It just like protecting your computer from virus by buying those protective softwares like anti-virus but who else do you think made the virus that could specifically be quarantined by a the anti-virus you bought?hmm??how ironic but its true.
But I think more appropriate question is "How much less secure is it, and does the added exposure outweigh the cost savings for this application?" If you're working with nuclear launch codes, it's going to be hard to argue for saving money by timesharing. If it's just a bank's database, timesharing makes sense and you get added security there because you can have one guy update software for patching and everybody is running the new software, rather than having 1,000 desktops not all of which are patched. A case can be made that to secure a system, mutli-user operation is required, in order to support multiple roles system admin, security auditor, and user dedicated operations don't provide a suitable audit trail. Also, it's the rare multiprogramming system these days where the operating system is the weak link even Windows provides enough security that your biggest threat are the malicious users.
No comments:
Post a Comment