Verify whether a person is an authorized user. Step 2. This is the reason why it is still so widely used. The following list offers some important considerations when developing an information security policy. Operating System Drives. Purpose Network Security Policy. A mechanism might operate by itself, or with others, to provide a particular service. This function is performed by the system administrator Mechanisms 1. Your operating-system-specific Oracle documentation contains more information about operating system security issues Data Security Policy Data security includes the mechanisms that control the access to and use of the database at the object level. This part will focus on best practices and methodologies of network security in the form of policies, instead of the actual implementation. 1. Security mechanisms are technical tools and techniques that are used to implement security services. 8 Elements of an Information Security Policy. There is no definitive mechanism for protecting a network because any security system can be subverted or compromised, if not from the outside then certainly from the inside. This policy may be implemented using a queue of requests. Add or delete users 2. Protection and security are two of them. • the security kernel is responsible for enforcing the security mechanisms of the entire OS • the reference monitor (RM) is the part of the security kernel that controls access to objects • the trusted computing base (TCB) is everything in the trusted OS necessary to enforce the security policy TRUSTED OPERATING SYSTEM CONCEPTS Figure 11: Local Group Policy Editor screen with Operating Systems Drive folder selected. The operating system, when transferring information between different security domains, must decompose information into policy-relevant subcomponents for submission to policy enforcement mechanisms. A key factor that generated a large part of security issues in Windows XP is the over use of administrator accounts. Identification is the ability to identify uniquely a user of a system or an application that is running in the system. Policies are ways to choose which activities to perform. Windows XP does not have UAC and it is an excellent operating system from a usability point of view. Then in the right-hand panel of this window, double-click Require additional authentication at startup to open new window. A security policy can be as broad as you want it to be from everything related to IT security and the security of related physical assets, but enforceable in its full scope. Mechanisms are the implementations that enforce policies, and often depend to some extent on the hardware on which the operating system runs. Implements a security policy that specifies who or what may have access to each specific system resource and the type of access that is permitted in each instance Mediates between a user and system resources, such as applications, operating systems, firewalls, routers, files, and databases Security and Protection: Policies and Mechanisms Security Policy Specify whether a person can become a user of the system. However over the time it had important security problems. For instance, a processes may be granted resources using the first come, first serve policy. Protection Policy Specify whether a user can access a specific file. The main difference between protection and security is that the protection focuses on internal threats in a computer system while security focuses on external threats to a computer system.. An operating system provides a mechanism to prevent interference with logical and physical resources.