Aaÿ!€T€r€›€}€ Å0 ÅÀPP‚p0P à‚0@°p€0@Ð`€ @° HH $ €@ÃÂdÁ HHHH€ÌÌ€ÌÌ€ÌÌ€ff€@ÊøÊøÊøÿ€ÿÿÿ€ÿÿÿ€ÿÿÁÿÿö Êøÿÿÿÿÿÿÿÿ€™ d ÑFootnote TableFootnote* à* à.\t.\t/ - Ð Ñ:;,.É!? - a;- dxTOCHeading1Heading2 ZEquationVariables€€I¦?@ƒ>þ@®@ñA A#A@???<$lastpagenum><$monthname> <$daynum>, <$year>"<$monthnum>/<$daynum>/<$shortyear>J<$hour>:<$minute00> <$ampm> on <$dayname>, <$monthname> <$daynum>, <$year>"<$monthnum>/<$daynum>/<$shortyear><$monthname> <$daynum>, <$year>"<$monthnum>/<$daynum>/<$shortyear> <$fullfilename> <$filename><$paratext[Title]><$paratext[Heading1]> <$curpagenum> <$marker1> <$marker2> (Continued)+ (Sheet <$tblsheetnum> of <$tblsheetcount>)Heading & Page Ò<$paratext>Ó on page<$pagenum>Pagepage<$pagenum>See Heading & Page%See Ò<$paratext>Ó on page<$pagenum>. Table All7Table<$paranumonly>, Ò<$paratext>,Ó on page<$pagenum>Table Number & Page'Table<$paranumonly> on page<$pagenum>Handout DateJanuary 7, 1999Heading<$paratext>A~HTML€€Headings2A;;==??A€c5y??? 5… 5ˆ*D£1.D¼b.?*???"?$?& ?( ?* ?, ?. ?0 ?2 ?4 ?6 ?8 ?: ?< ?> ?@ ?B ?D ?F ?H ?J ?L ?N ?P ?R ?T ?V Dka.>£+Dl2.?X ?Z ?\ ?^ ?` ?b FT FV ?f ?h ?j ?l ?n ?p ?r ?t ?v ?x Fx Fz ?| ?~ ?€ ?‚ ?„ ?† ?ˆ ?Š ?Œ ?Ž ? ?’ ?” ?– ?˜ ?š ?œ ?ž ? ?¢ F¼ F¾ ?¦ ?¨ ?ª ?¬ ?® ?° ?² ?´ ?¶ ?¸ ?º ?¼ ?¾ ?À ?Â ?Ä ?Æ ?È ?Ê ?Ì ?Î ?Ð ?Ò ?Ô ?Ö G G ?Ú ?Ü ?Þ ?à ?â ?ä ?æ ?è ?ê ?ì ?î ?ð ?ò ?ô ?ö GD GF ?ú ?ü ?þ @ @ @ @ @ @ @ @ @ @ @ @ @ @ @ @ @ @" @$ ABADAFAH AJ AL ANAPAR AT@& @( @* @, @. @0 @2 @4 @6 @8 @: @< @> @@ @B @D @F @H @J @L @N @P @R @T @V @X @Z @\ @^ @` @b @d @f @h @j @l @n @p @r @t @v @x @z @| Dma.@~ @€ @‚ @…@‡Dnb.Doc.Dpd.@‰@‹ @ @ @‘ AVAX AZ@“ @• @— @™ @› A\A^ @ @Ÿ @¡ @£ @¥ @§ @© @« @ @°@²@´@¶ @¸ @º @¼ @¾ @À @Â @Ä @Æ @È @Ê @Ì @Î @Ð @Ò €!Ae@Ô @Ö @Ø @Ú @Ü @Þ @à @â @ä @æ @è @ê H H H% @ó@õ@÷@ù @û @ý @ÿ A A EkEm Eo AAAAA A A A A A A A" A%A'A)A+ A- A/ A1 A3 A5 A6Dq3.Dra.Dsb.Dtc.Dud.Dve.Dwf.Dx4.Dya.Dzb.D{c.D|d.D}e.D~5.Da.D€b.Dc.D‚d.Dƒ6.D„a.D½&c.Dï D‡7.Dˆa.D‰b.DŠc.D‹8.DŒa.Db.DŽc.Dd.De.D‘ 9.D’ a.D“ b.D” c.D• d.D– e.D— f.D˜ g.Dñ Dó Dõ D÷ Dù Dû Dý Dÿ E E E E E E E E E Eq Es Eu Ew Ey E{ E} H' H) H+ D%H- H/ H1 H3 H5 H7 H9 H; H= H? HA HC HE HG HI HK HM HO HQ HS HU HW HY H[ H] H_ Ha Hc He Hg Hi H‚ H„ H– H˜ Hª H¬ I I I I I I €rÂdÃqÁÂdÃD22ÂdÃ?H—´m³Rë‹™? H—´m³Rë‹™H RH RFootnoteHÀrýÀ@‹™? HÀrýÀ@‹™HÀz·¯HÀz·¯Single LineH§À´Žÿð?Footnote ‚ À? ‚ À ‚ À™‚ HÀ¨ýÀD‹™? HÀ¨ýÀD‹™HÀ°·¯HÀ°·¯Double LineHÀ¹ÿðÁÔŒ? Double LineÁÔ? ÁÔÁÔ„ÁÔ? „ÁÔ„ÁÔ„HÀ…ÿúÁÔŠ? Single LineÁÔ?ÁÔÁÔHZÀ´…ÿð? TableFootnoteÀE¸ÏÀGxÅÀRªù‹™?ÀE¸ÏÀGxÅÀRªù‹™ÀE¸ÏÀPwÀE¸ÏÀPw TableFootnoteÂdÃ5pHHÁÔÂˆ5xHHÁÔÂˆ‰ÿÿG†ªªeHHÁÔÂˆ5zHHÁÔÂˆŽÿðlÂdÃ?ÂdÃ?ÂdÃHŽÿðlÂdÃ?ÂdÃÃ9ÿÿ'v'mhc^€^€a€d€g€j€m€p‚€v€y€|€#'+/ADROL963W3†ªª†ªªBm Å Æ È É Ê Ë€}ÿÿÂd?!ÿÿÂdWeHTML Mapping Table€}HÿÿÂd?HÿÿÂdWe€}HÿÿÂd?HÿÿÂdWeHÂíUVÁÔ 5„HÂíUVÁÔ ‰ÿÿG†ªªeHÂíUVÁÔ 5†HÂíUVÁÔ ŽÿðlH$ÁÔ 5‡H$ÁÔ –G†ªªeH$ÁÔ 5‰H$ÁÔ ŽÿðlHHÁÔÂˆ5ŠHHÁÔÂˆÂkÿÐ11( `Outline for May 18, 2000 †ªªªªª`Greetings and felicitations! '¶ª©`1A bit about the penetration stuff for homework 3 )ÀDª¨`Verifiably Secure Systems €LÀPª§`#Review notion of reference monitor €R` Review notion of Òtrusted pathÓ €S`NIsolate all control functions into a small nucleus called a Òsecurity kernelÓ €T`Review Levels of Abstraction 4À‚ª£`UCLA Secure UNIX 5ÀŽª¢`2Each user process in separate domain, with 2 part 6`&Application program runs in user mode 7`EUNIX interface and Kernel Interface SubSystem run in supervisor mode 8`*Protection domain represented by a C-List 9`EPolicy manager establishes policies for kernel objects, shared files :`8Dialoguer establishes trusted path between user, kernel ;ÀØªœ` Verification <Àäª›`Top level specification =`Abstract level specification >`Low level specification !? jCode satisfying specifications: formulate specs in terms of abstract machines with states and transitions qsuch that protected objects may be modified or read Ûonly Å by explicit request; and all accesses must be @authorized @`MVerify code implementations satisfies low level specs, all levels consistent AÁ:ª”`KSOS BÁFª“`5Kernel is an operating system, not a security kernel C`?Enforces access control policy, including multi-level security D`4Handles files, type extensions ˆ la DOS and TOPS-20 E`KUNIX emulator, ÒtrustedÓ non-lernel system software run in supervisor mode FÁxª`PSOS GÁ„ªŽ`1Capabilities at lowest level used for addressing `V15 layers; all below 8 invisible at user interface, except level 4 (basic operations) aH PSOS Hierarchy 16.Command interpreter '15.User environments and name space 14.User input/output 13.Procedure records .12.User processes and visible input/output )11.Creation, deletion of user objects 10.Directories 9.Abstract data types #8.Virtual memory (segmentation) 7.Paging .6.System processes and system input/output 5.Primitive input/output -4.Basic arithmetic and logical operations 3.Clocks 2.Interrupts 1.Real memory @0.Capabilities HHÁÔÂˆ5ŒHHÁÔÂˆ2Žÿðl€}HÿÿÂd?!HÿÿÂdWe€}HÿÿÂd?#HÿÿÂdW e€}ŸÿÿH&?%"ŸÿÿH&%FrameMaker PESource Item€}HŸÿÿÀ?'!$HŸÿÿÀWe HTML Item€}ÀŸÿÿH?)ÀŸÿÿHWe€}ÀØŸÿÿH&?+"%ÀØŸÿÿH&WeInclude Auto#€}Á ŸÿÿH&?-$'Á ŸÿÿH&We Comments€}«ÿÿH?/«ÿÿHWe€}H«ÿÿH?1%(H«ÿÿHWeElement€}À«ÿÿH?3'+À«ÿÿH%New Web PEPage?€}ÀØ«ÿÿH?5ÀØ«ÿÿHWe€}Á «ÿÿH?7Á «ÿÿHWe€}¹ÿÿH?9(,¹ÿÿHWeP:Date Line€}H¹ÿÿH?;+-H¹ÿÿHWeP€}À¹ÿÿH?=,.À¹ÿÿHWeN€}ÀØ¹ÿÿH??-/ÀØ¹ÿÿHWeN€}Á ¹ÿÿH?A.0Á ¹ÿÿHWe€}ÀEÿÿH?C/1ÀEÿÿHWe P:Reading€}HÀEÿÿH?E02HÀEÿÿHWeP€}ÀÀEÿÿH?G13ÀÀEÿÿHWeN€}ÀØÀEÿÿH?I24ÀØÀEÿÿHW eN€}Á ÀEÿÿH?K35Á ÀEÿÿHW!e€}ÀQÿÿH?M46ÀQÿÿHW"eP:Title€}HÀQÿÿH?O57HÀQÿÿHW#eH*€}ÀÀQÿÿH?Q68ÀÀQÿÿHW$eN€}ÀØÀQÿÿH?S79ÀØÀQÿÿHW%eN€}Á ÀQÿÿH?U8:Á ÀQÿÿHW&e€}À]ÿÿH?W9;À]ÿÿHW*eP:Body€}HÀ]ÿÿH?Y:<HÀ]ÿÿHW+eP€}ÀÀ]ÿÿH?[;=ÀÀ]ÿÿHW,eN€}ÀØÀ]ÿÿH?]<>ÀØÀ]ÿÿHW-eN€}Á À]ÿÿH?_=?Á À]ÿÿHW.e€}ÀiÿÿH(?a>@ÀiÿÿH(W/eP:Numbered1€}HÀiÿÿH(?c?AHÀiÿÿH((2eLI 0eParent = OL Q1e Depth = 0€}ÀÀiÿÿH(?g@BÀÀiÿÿH(W3eN€}ÀØÀiÿÿH(?iACÀØÀiÿÿH(W4eY€}Á ÀiÿÿH(?kBDÁ ÀiÿÿH(W5e€}À‘ÿÿH?mCEÀ‘ÿÿH W6eP:Heading1€}HÀ‘ÿÿH?oDFHÀ‘ÿÿH W7eH*€}ÀÀ‘ÿÿH?qEGÀÀ‘ÿÿH W8eN€}ÀØÀ‘ÿÿH?sFHÀØÀ‘ÿÿH W9eN€}Á À‘ÿÿH?uGIÁ À‘ÿÿH W:e€}ÀÿÿH(?wHJÀÿÿH( W;eP:Numbered€}HÀÿÿH(?yIKHÀÿÿH(( >eP <eParent = OL Q=e Depth = 0€}ÀÀÿÿH(?}JLÀÀÿÿH( W?eN€}ÀØÀÿÿH(?KMÀØÀÿÿH( W@eY€}Á ÀÿÿH(?LNÁ ÀÿÿH( WAe€}ÀÅÿÿH?ƒMOÀÅÿÿHWBeP:CellBody€}HÀÅÿÿH?…NPHÀÅÿÿHWCeP€}ÀÀÅÿÿH?‡OQÀÀÅÿÿHWDeN€}ÀØÀÅÿÿH?‰PRÀØÀÅÿÿHWEeN€}Á ÀÅÿÿH?‹QSÁ ÀÅÿÿHWFe€}ÀÑÿÿH?RTÀÑÿÿHWGeP:CellHeading€}HÀÑÿÿH?SUHÀÑÿÿHWHeP€}ÀÀÑÿÿH?‘TVÀÀÑÿÿHWIeN€}ÀØÀÑÿÿH?“UWÀØÀÑÿÿHWJeN€}Á ÀÑÿÿH?•VXÁ ÀÑÿÿHWKe€}ÀÝÿÿH?—WYÀÝÿÿH WLeP:Footnote€}HÀÝÿÿH?™XZHÀÝÿÿH WMeP€}ÀÀÝÿÿH?›Y[ÀÀÝÿÿH WNeN€}ÀØÀÝÿÿH?Z\ÀØÀÝÿÿH WOeN€}Á ÀÝÿÿH?Ÿ[]Á ÀÝÿÿH WPe€}ÀéÿÿH(?¡\^ÀéÿÿH(WQeP:Bulleted€}HÀéÿÿH(?£]_HÀéÿÿH((TeLI ReParent = UL QSe Depth = 0€}ÀÀéÿÿH(?§^`ÀÀéÿÿH(WUeN€}ÀØÀéÿÿH(?©_aÀØÀéÿÿH(WVeN€}Á ÀéÿÿH(?«`bÁ ÀéÿÿH(WWe€}ÁÿÿH?acÁÿÿHWXeP:Heading2€}HÁÿÿH?¯bdHÁÿÿHWYeH*€}ÀÁÿÿH?±ceÀÁÿÿHWZeN€}ÀØÁÿÿH?³dfÀØÁÿÿHW[eN€}Á ÁÿÿH?µegÁ ÁÿÿHW\e€}ÁÿÿH?·fhÁÿÿH]%P:HeadingRuPEnIn€}HÁÿÿH?¹giHÁÿÿHW^eP€}ÀÁÿÿH?»hjÀÁÿÿHW_eN€}ÀØÁÿÿH?½ikÀØÁÿÿHW`eN€}Á ÁÿÿH?¿jlÁ ÁÿÿHWae€}Á7ÿÿH?ÁkmÁ7ÿÿHWbeP:Indented€}HÁ7ÿÿH?ÃlnHÁ7ÿÿHWceP€}ÀÁ7ÿÿH?ÅmoÀÁ7ÿÿHWdeN€}ÀØÁ7ÿÿH?ÇnpÀØÁ7ÿÿHWeeN€}Á Á7ÿÿH?ÉoqÁ Á7ÿÿHWfe€}ÁCÿÿH?ËprÁCÿÿHg%P:TableFootPEnote€}HÁCÿÿH?ÍqsHÁCÿÿHWheP€}ÀÁCÿÿH?ÏrtÀÁCÿÿHWieN€}ÀØÁCÿÿH?ÑsuÀØÁCÿÿHWjeN€}Á ÁCÿÿH?ÓtvÁ ÁCÿÿHWke€}Á]ÿÿH(?ÕuwÁ]ÿÿH(Wle P:TableTitle€}HÁ]ÿÿH(?×vxHÁ]ÿÿH((oeLI meParent = OL Qne Depth = 0€}ÀÁ]ÿÿH(?ÛwyÀÁ]ÿÿH(WpeN€}ÀØÁ]ÿÿH(?ÝxzÀØÁ]ÿÿH(WqeN€}Á Á]ÿÿH(?ßy{Á Á]ÿÿH(Wre€}Á…ÿÿH?áz|Á…ÿÿHWse P:BodySpaced€}HÁ…ÿÿH?ã{}HÁ…ÿÿHWteP€}ÀÁ…ÿÿH?å|~ÀÁ…ÿÿHWueN€}ÀØÁ…ÿÿH?ç}ÀØÁ…ÿÿHWveN€}Á Á…ÿÿH?é~€Á Á…ÿÿHWwe€}Á‘ÿÿH?ë€Á‘ÿÿHWxeP:Date€}HÁ‘ÿÿH?í€€HÁ‘ÿÿHWyeP€}ÀÁ‘ÿÿH?ï€€ÀÁ‘ÿÿHWzeN€}ÀØÁ‘ÿÿH?ñ€€ÀØÁ‘ÿÿHW{eN€}Á Á‘ÿÿH?ó€€Á Á‘ÿÿHW|e€}ÁÿÿH(?õ€€ÁÿÿH(}%P:NumberedPESpaced€}HÁÿÿH(?÷€€HÁÿÿH((€eP ~eParent = OL Qe Depth = 0€}ÀÁÿÿH(?û€€ÀÁÿÿH(W€eN€}ÀØÁÿÿH(?ý€€ ÀØÁÿÿH(W€eY€}Á ÁÿÿH(?ÿ€€ Á ÁÿÿH(W€e€}ÁÅÿÿH@€ €ÁÅÿÿHW€eP:DateProject€}HÁÅÿÿH@€ €HÁÅÿÿHW€eP€}ÀÁÅÿÿH@€€ÀÁÅÿÿHW€eNÂdÃA=€€ÂdÃA>€ ÂdÃ€€ŽÿðlÂdÃA?€ ÂdÃÀiÿÿ€€Y€W†ªª†ªªBm Ì€}ÿÿÂdAA€ €ÿÿÂd€!W€eHeadings Table€}HÿÿÂdAC€ HÿÿÂd€!W€e€}HÿÿÂdAE€ HÿÿÂd€!W€e€}ŸÿÿHAG€ €€ŸÿÿH€"W€eHeading Level€}HŸÿÿHAI€ €€HŸÿÿH€"€%Paragraph ForPEmat€}ÀŸÿÿHAK€ €€ÀŸÿÿH€"W€e Comments€}¹ÿÿHAM€ €€¹ÿÿH€#W€e2€}H¹ÿÿHAO€ €€H¹ÿÿH€#W€e Heading1€}À¹ÿÿHAQ€ €€OÀ¹ÿÿH€#W€e€}ÀØÁÅÿÿH@€€ÀØÁÅÿÿHW€eN€}Á ÁÅÿÿH@ €€Á ÁÅÿÿHW€e€}ÁÑÿÿH@€€ÁÑÿÿHW€ e C:BoldItalic€}HÁÑÿÿH@ €€HÁÑÿÿHW€ eSTRONG€}ÀÁÑÿÿH@€€ÀÁÑÿÿHW€eN€}ÀØÁÑÿÿH@€€ÀØÁÑÿÿHW€eN€}Á ÁÑÿÿH@€€ Á ÁÑÿÿHW€ e€}ÁÝÿÿH@€€!ÁÝÿÿH€%C:EquationPE Variables€}HÁÝÿÿH@€ €"HÁÝÿÿHW€eEM€}ÀÁÝÿÿH@€!€#ÀÁÝÿÿHW€eN€}ÀØÁÝÿÿH@€"€$ÀØÁÝÿÿHW€eN€}Á ÁÝÿÿH@€#€%Á ÁÝÿÿHW€e€}Á÷ÿÿH@€$€&Á÷ÿÿHW€e C:Italic€}HÁ÷ÿÿH@!€%€'HÁ÷ÿÿHW€eEM€}ÀÁ÷ÿÿH@#€&€(ÀÁ÷ÿÿHW€eN€}ÀØÁ÷ÿÿH@%€'€)ÀØÁ÷ÿÿHW€ eN€}Á Á÷ÿÿH@'€(€*Á Á÷ÿÿHW€!e€}ÂÿÿH@)€)€+ÂÿÿHW€"eC:Bold€}HÂÿÿH@+€*€,HÂÿÿHW€#eSTRONG€}ÀÂÿÿH@-€+€-ÀÂÿÿHW€$eN€}ÀØÂÿÿH@/€,€.ÀØÂÿÿHW€%eN€}Á ÂÿÿH@1€-€/Á ÂÿÿHW€&e€}ÂÿÿH@3€.€0ÂÿÿH€'%X:Heading & PEPage€}HÂÿÿH@5€/€1HÂÿÿHW€(e See Also€}ÀÂÿÿH@7€0€2ÀÂÿÿHW€)eN€}ÀØÂÿÿH@9€1€3ÀØÂÿÿHW€*eN€}Á ÂÿÿH@;€2€4Á ÂÿÿHW€+e€}Â)ÿÿH@=€3€5Â)ÿÿHW€,eX:Page€}HÂ)ÿÿH@?€4€6HÂ)ÿÿHW€-e See Also€}ÀÂ)ÿÿH@A€5€7ÀÂ)ÿÿHW€.eN€}ÀØÂ)ÿÿH@C€6€8ÀØÂ)ÿÿHW€/eN€}Á Â)ÿÿH@E€7€9Á Â)ÿÿHW€0e€}Â5ÿÿH@G€8€:Â5ÿÿH€1%X:See HeadPEing & Page€}HÂ5ÿÿH@I€9€;HÂ5ÿÿHW€2e See Also€}ÀÂ5ÿÿH@K€:€<ÀÂ5ÿÿHW€3eN€}ÀØÂ5ÿÿH@M€;€=ÀØÂ5ÿÿHW€4eN€}Á Â5ÿÿH@O€<€>Á Â5ÿÿHW€5e€}ÂOÿÿH@Q€=€?ÂOÿÿHW€6eX:Table All€}HÂOÿÿH@S€>€@HÂOÿÿHW€7e See Also€}ÀÂOÿÿH@U€?€AÀÂOÿÿHW€8eN€}ÀØÂOÿÿH@W€@€BÀØÂOÿÿHW€9eN€}Á ÂOÿÿH@Y€A€CÁ ÂOÿÿHW€:e€}Â[ÿÿH@[€B€DÂ[ÿÿH €;%X:Table NumPEber & Page€}HÂ[ÿÿH@]€C€EHÂ[ÿÿH W€<e See Also€}ÀÂ[ÿÿH@_€D€FÀÂ[ÿÿH W€=eN€}ÀØÂ[ÿÿH@a€E€GÀØÂ[ÿÿH W€>eN€}Á Â[ÿÿH@c€F€HÁ Â[ÿÿH W€?e€}ÂuÿÿH@e€G€JÂuÿÿH$W€@e X:HeadingHHÁÔÂˆDHHÁÔÂˆÂ'ÿË..2J†ªª†ªª` Verification K’ª©`YHierarchical Decomposition Methodology breaks system into hierarchy or abstract machines L`Specify each module in SPECIAL !M >Functions: primitive V-functions give value of state variable ;derived V-functions give values computed from state values $O-functions cause state transitions @OV-functions do both NÀ\ª£`Methodology 1OÀhª¢ fInterface definition; decomposed into set of modules each of which manages some system object (collec@ntion of V, O functions); general security requirements formulated (Detection Principle, Alteration Principle) !P eHierarchical Decomposition: modules arranged in linear hierarchy; consistency of structure, function @names verified !Q kModule Specification: develop formal specs for each module; verify internal consistency, global assertions fincluding representation of general security requirements (which are the PSOS principles expressed in @"terms of read/write capabilities) !R lMapping functions; define these to describe the state space at one level in terms of lower level and verify @Wconsistency of mapping functions with respect to specifications, modular decomposition S`4Implementation: implement, verify modules as you go TÀâª˜`VAX VMM Security Kernel UÀîª—`OVM monitor for the VAX; can run VMS or Ultrix, but is itself a security kernel V`!Design: present VAX architecture !W iCompress rings: Real: user, supervisor, executive, kernel; VM user, supervisor, VM executive, VM kernel, @ forbidden X`bSubjects: users, VMs; servers run in VM kernel, and only run kernel software; canÕt run user code Y`FObjects: flat file system for kernel, each VM has its own file system !Z sAccess classes: security, integrity levels form access class; A = B iff security, integrity levels and classes the @Nsame; A > B iff A > B for Ûboth Å integrity and security (> dominates) ![ Layered design: 16.Users 15.VMOS (virtual machine OS) <14.Secure Server layer (trusted path for security kernel) W13.Virtual VAX layer (emulates sensitive instructions, interrupts, exceptions, etc.) N12.Kernel interface layer (virtual controllers for the virtual I/O devices) F11.Virtual printers layer (implements virtual printers for each VM) 10.Virtual terminals layer Z9.Volumes layer (VAX Security kernel file columes; registries of all subkects, objects) h8.Files-11 Files layer implements subset of a file system used in the VMS operating system; all files %must be preallocated and contiguous) 7.Auditing layer 6.High-level scheduler 75.VM Virtual memory layer (shadow page tables, etc.) 04.VM Physical layer (manages physical memory) -3.I/O Services layer (implements real I/O) 2.Lower Level Scheduler @[1.Hardware Interrupt Handler layer (interrupt handlers for the physical I/O controllers) _w‚ÕP…*¨Â"Õ#`€}HÂuÿÿH@g€H€KHÂuÿÿH$€A% USE XREF PEFMT€}ÀÂuÿÿH@i€J€LÀÂuÿÿH$W€BeN€}ÀØÂuÿÿH@k€K€MÀØÂuÿÿH$W€CeN€}Á ÂuÿÿH@m€L€NÁ ÂuÿÿH$W€De€}ÂÿÿH@o€M€RÂÿÿH%W€Ee P:Header€}ÀKÿÿHAS€ €€PÀKÿÿH€0W€e3€}HÀKÿÿHAU€ €O€QHÀKÿÿH€0W€Ze Heading2€}ÀÀKÿÿHAW€ €P€WÀÀKÿÿH€0W€[e€}HÂÿÿH@q€N€SHÂÿÿH%€F%THROW PEAWAY€}ÀÂÿÿH@s€R€TÀÂÿÿH%W€GeN€}ÀØÂÿÿH@u€S€UÀØÂÿÿH%W€HeN€}Á ÂÿÿH@w€T€VÁ ÂÿÿH%W€Ie€}Â©ÿÿH(@y€U€ZÂ©ÿÿH(&W€Je P:Letter€}ÀWÿÿHAY€ €Q€XÀWÿÿH€2W€\e1€}HÀWÿÿHA[€ €W€YHÀWÿÿH€2W€beTitle€}ÀÀWÿÿHA]€ €XÀÀWÿÿH€2W€ce€}HÂ©ÿÿH(@{€V€[HÂ©ÿÿH((&€KeLI eParent = OL Qe Depth = 0€}ÀÂ©ÿÿH(@}€Z€\ÀÂ©ÿÿH(&W€MeN€}ÀØÂ©ÿÿH(@€[€]ÀØÂ©ÿÿH(&W€NeN€}Á Â©ÿÿH(@€\wÁ Â©ÿÿH(&W€Oe€}Â»ÿÿÂd@„G]€aÂ»ÿÿÂdI'W€PeHTML Options Table€}DÂ»ÿÿÂd@†GDÂ»ÿÿÂdI'W€Qe€}DÂ»ÿÿÂd@ˆGDÂ»ÿÿÂdI'W€Ue€}ÂËÿÿD@ŠG€^€bÂËÿÿDI(W€VeControl€}DÂËÿÿH@ŒG€a€cDÂËÿÿHI(W€WeValue€}ÀŒÂËÿÿH@ŽG€b€dÀŒÂËÿÿHI(W€Xe Comments€}Â×ÿÿD6@G€c€eÂ×ÿÿD6I)W€Ye Image Format€}DÂ×ÿÿH6@’G€d€fDÂ×ÿÿH66I)€]% 0001IMAGGIF MACP0001GIPEF€}ÀŒÂ×ÿÿH6@”G€e€gÀŒÂ×ÿÿH6I)W€^e€}ÂãÿÿD@–G€f€hÂãÿÿDI*W€_eBanners€}DÂãÿÿH@˜G€g€iDÂãÿÿHI*W€`eN€}ÀŒÂãÿÿH@šG€h€jÀŒÂãÿÿHI*W€ae€}ÂïÿÿD@œG€i€kÂïÿÿDI+€e% Banner ReferPEence Frame€}DÂïÿÿH@žG€j€lDÂïÿÿHI+W€fe€}ÀŒÂïÿÿH@ G€k€mÀŒÂïÿÿHI+W€ge€}D(@¢G€l€nD((I,€h$%Copy Files Imported by PERerefernce€}DH(@¤G€m€oDH(I,W€ie€}ÀŒH(@¦G€n€pÀŒH(I,W€je€}DD(@¨G€o€qDD((I-€k%Copy Files Imported by PE Reference€}DDH(@ªG€p€rDDH(I-W€leN€}ÀŒDH(@¬G€q‚ÀŒDH(I-W€me€€}VÂd@¯G‚€yVÂdI.W€neSystem Macros€}?VÂd@±G?VÂdI.W€oe€}ÀÏVÂd@³GÀÏVÂdI.W€pe€}f?@µG€v€zf?I/W€qeMacro Name€}?fH@·G€y!?fHI/W€re Replace With€}ÀÏfH@¹G!€|ÀÏfHI/W€se Comments€}r?@»G€{€}r?I1W€teStartOfDoc€}?rH@½G€|"?rHI1W€ue€}ÀÏrH@¿G"€ÀÏrHI1W€ve€}~?@ÁG€~~?I3W€we EndOfDoc€}?~H@ÃG€U?~HI3W€xe€}ÀÏ~H@ÅGUÀÏ~HI3W€ye€}ÀŠ?@ÇGÀŠ?I4€z%StartOfSubPEDoc€}?ÀŠH@ÉGV?ÀŠHI4W€{e€}ÀÏÀŠH@ËGVÀÏÀŠHI4W€|e€}À¤?@ÍGÀ¤?I5€}% EndOfSubPEDoc€}?À¤H@ÏGW?À¤HI5W€~e€}ÀÏÀ¤H@ÑGWÀÏÀ¤HI5W€e€}À¾?@ÓG À¾?I6% StartOfFirstPESubDoc€}?À¾H@ÕGX?À¾HI6We€}ÀÏÀ¾H@×GXÀÏÀ¾HI6We€}ÀØ?@ÙG ÀØ?I7%EndOfFirstPESubDoc€}?ÀØH@ÛGY?ÀØHI7We€}ÀÏÀØH@ÝGYÀÏÀØHI7We€}Àò?@ßG Àò?I9 %StartOfLastPESubDoc€}?ÀòH@áGZ?ÀòHI9W e€}ÀÏÀòH@ãGZÀÏÀòHI9We€}Á?@åGÁ?I:% EndOfLastPESubDoc€}?ÁH@çG[?ÁHI:W e€}ÀÏÁH@éG[ÀÏÁHI:We€}HH$GbHI;Ge C:Symbol€}HH&GHI;GteEM€}HH(G\HI;GueN€}Á,Âd@òGÁ,ÂdI<WeCross-Reference Macros€}?Á,Âd@ôG?Á,ÂdIWe See Also€}?ÁHHAG?ÁHHI>% See Also: PE<$paratext>€}À‡ÁHHAG#À‡ÁHHI>We€}À‡VÂdEjGÀ‡VÂdI.We€}À‡fHElG€z€{À‡fHI/WeHead€}À‡rHEnG€}€~À‡rHI1We€}ÁhÂdAG'ÁhÂdI@WeGeneral Macros€}?ÁhÂdA G?ÁhÂdI@We€}À‡ÁhÂdAGÀ‡ÁhÂdI@W e€}ÀÏÁhÂdAGÀÏÁhÂdI@W!e€}Áx?AG#(Áx?IAW"eMacro Name€}?ÁxHAG')?ÁxHIAW#e Replace With€}À‡ÁxHAG(*À‡ÁxHIAW$eHead€}ÀÏÁxHAG)+ÀÏÁxHIAW%e Comments€}Á„?AG*,Á„?IBW&e€}?Á„HAG+-?Á„HIBW'e€}À‡Á„HAG,.À‡Á„HIBW(e€}ÀÏÁ„HA!G-ÀÏÁ„HIBW)e€}Á–ÂdA$|AÁ–Âd}CW*eCharacter Macros€}?Á–ÂdA&|?Á–Âd}CW+e€}À‡Á–ÂdA(|À‡Á–Âd}CW,eHHÁÔÂˆDHHÁÔÂˆ€I€IŽÿðl€}Áú?Dî|84Áú?}FWIeÉ€}?ÁúHDð|35?ÁúH}FW\e...€}À‡ÁúHDò|4À‡ÁúH}FW]e€}Áî?Dô|K7Áî?}GW^eÐ€}?ÁîHDö|68?ÁîH}GW_e-€}À‡ÁîHDø|73À‡ÁîH}GW`e€}Áâ?Dú|NJÁâ?}HWaeÑÂdÃ>÷;?H$ÁÔ >ø:=H$ÁÔ <<ŽÿðlH$ÁÔ >ù:H$ÁÔ –;W †ªª†ªªl4May 18, 2000ECS 253 Ð Spring 2000Page Ç1 ÑHÂíUVÁÔ >ú:;?HÂíUVÁÔ >>ŽÿðlHÂíUVÁÔ >û:HÂíUVÁÔ ‰ÿÿ=W †ªª†ªªl?Last modified at Ò11:54 am on Thursday, May 18, 2000 ÓHHÁÔÂˆ>ü:=HHÁÔÂˆ@@ ŽÿðlHHÁÔÂˆ>ý:HHÁÔÂˆ‰ÿÿ?W†ªª†ªª`€}Á¦?A*|/BÁ¦?}DW-e Character€}?Á¦HA,|AC?Á¦H}DW.e Replace With€}À‡Á¦HA.|BDÀ‡Á¦H}DW/e Comments€}Á²?A0|CEÁ²?}EW0e¢€}?Á²HA2|DF?Á²H}EW1e¢€}À‡Á²HA4|ERÀ‡Á²H}EW2eÂdÃA8HHÂdÃA9GÂdÃ~II ŽÿðlÂdÃA:GÂdÃÃ m.Hmhc^€^€a€d€g€j€m€p‚€v€y€|€#'+ /ADROL963€}?ÁâHDü|9K?ÁâH}HWbe--€}À‡ÁâHDþ|J6À‡ÁâH}HWce€}ÁÖ?E|QMÁÖ?}IWde¡€}?ÁÖHE|LN?ÁÖH}IWee°€}À‡ÁÖHE|M9À‡ÁÖH}IWfe€}ÁÊ?E|TPÁÊ?}JWge¨€}?ÁÊHE|OQ?ÁÊH}JWhe®€}À‡ÁÊHE |PLÀ‡ÁÊH}JWie€}Á¾?E|FSÁ¾?}KWje©€}?Á¾HE|RT?Á¾H}KWke©€}À‡Á¾HE|SOÀ‡Á¾H}KWle€}À‡~HEpGÀ‡~HI3Wme€}À‡ÀŠHErGÀ‡ÀŠHI4Wne€}À‡À¤HEtGÀ‡À¤HI5Woe€}À‡À¾HEvG À‡À¾HI6Wpe€}À‡ÀØHExG À‡ÀØHI7Wqe€}À‡ÀòHEzGÀ‡ÀòHI9Wre€}À‡ÁHE|GÀ‡ÁHI:Wse€}HH*G]HI;GveN€}HH,G\€^HI;Gxe€}HH.Gg_HI?GyeC:Subscript€}HH0G^`HI?GzeEM€}HH2G_aHI?G{eN€}HH4G`bHI?G|eN€}HH6GaHI?G}e€}HH8GldHILG~eC:Emphasis€}HH:GceHILGeEM€}HH<GdfHILG‚eN€}HH>GegHILG‚eN€}HH@Gf^HILG‚e€}H(HBGqiH(IMG‚e P:Signup€}H(HDGhjH((IM‚eLI ‚eParent = OL A‚e Depth = 0€}H(HFGikH(IMG‚eN€}H(HHGjlH(IMG‚eN€}H(HJGkcH(IMG‚e€}H(HLGnH(ING‚e P:Numbered-a€}H(HNGmoH((IN‚ eLI ‚eParent = OL A‚e Depth = 0€}H(HPGnpH(ING‚ eN€}H(HRGoqH(ING‚eN€}H(HTGphH(ING‚e€}H(HV{sH(OG‚ eP:Numbered-€}H(HXrtH((O‚eLI ‚eParent = OL A‚e Depth = 0€}H(HZsuH(OG‚eN€}H(H\tvH(OG‚eN€}H(H^uH(OG‚e€}HH`€]xHPG‚eP:Line€}HHbwyHPG‚eP€}HHdxzHPG‚eN€}HHfy{HPG‚eN€}HHhzrHPG‚eÂdÃI ~~ ÂdÃI|ÂdÃp /5~ /ADROL963ÂdÃI |ÂdÃH}} Žÿðl€}DIG‚‚DIQg‚%CSS Export E Encoding€}HIG‚HIQG‚e€}HIG‚€vHIQG‚e€}DIG€r‚DIRg‚ % Export EnEcoding€}HIG‚‚HIRG‚!e€}HIG‚HIRG‚"e ÂdÃLeftÂdÃ:RightÂdÃ ReferenceÂdÃÂdÃHTMLÂdÃ € HeadingsÂdÃ GHTMLÂdÃÂdÃ|HTML •™™€æf™€@€€€™U [. Numbered< =0>.Letter. €À@€@€€€™ [Body. À€æf™€@€€€™ 2@.@.À@. Date LineSingle Line. €À@€@€€€™[Mapping Table Cell. €À@€@€€€™ [ÀêÁÔFooter. •™™€æf™€@€€€™U [. Numbered< =0>.Letter. €À@€@€€€™ [Mapping Table Title. §™™•™™€æf™€@€€€™e [§™™. Letter < >. Numbered-. €À@€@€€€™ 2ÀêÁÔFooter. €À@€@€€€™[Mapping Table Cell. €À@€@€€€™2Mapping Table Cell. $€æf™€@€€€™2$. Numbered-.\t. §™™•™™€æf™€@€€€™e [§™™. ?Letter < >. Numbered-. €æf™€@€€€™T[! TableTitleT:Table : . €æf™€@€€€™ [CellHeading. €æf™€@€€€™ [CellBody. €æf™€@€€€™ [CellFooting. €æf™€@€€€™ 2.ÁÔ..Signup.\t. §™™•™™€æf™€@€€€™e [§™™. Letter < >.Letter. €æf™€@€€€™E [ Numbered1.\tNumbered. €À@€@€€€™2 Mapping Table Cell. €À@€@€€€™[ Mapping Table Cell. $€æf™€@€€€™E2$. Numbered-a.\t Numbered-. €æf™€@€€€™ [Body. §™™•™™€æf™€@€€€™e [§™™. ²ff.6.Letter < >.Letter. €À@€@€€€™ [ÀêÁÔHeaderDouble Line. €æf™€@€€€™P[ TitleBody. €æf™€@€€€™ [Body. €æf™€@€€€™ [ BodySpaced. €æf™€@€€€™ [ Bulleted¥\t. À€æf™€@€€€™ [..À.Date. Àm¶Ò€æf™€@€€€™ [Àlÿö.DateProject. €À@€@€€€™ [ÀêÁÔHeaderDouble Line. €æf™€@€€€™T[Heading1Body. €æf™€@€€€™E [ Numbered1.\tNumbered. €æf™€@€€€™ [ NumberedSpaced.\t. À½À€æf™€@€€€™ [À½.Reading. €æf™€@€€€™P[TitleBody. €æf™€@€€€™$ [À½.LineSingle Line. €æf™€@€€€™ [CellBody. €æf™€@€€€™ [CellHeading. ž€æf™€@€€€™ [ž Footnote. €æf™€@€€€™T[Heading2Body. €æf™€@€€€™T[HeadingRunInBody. €æf™€@€€€™ [ Indented. ž€æf™€@€€€™ [ž TableFootnote. €æf™€@€€€™T[ TableTitleT:Table : . [ [óô Subscript[þþþ [[þþþ[2þþþ2þþþ 2þþþ[þþþ 2ÿóàWþþþSymbol[22[ [€[þþþEmphasis€[þþþEquationVariables ÿóà2 þþþ BoldItalic ÿóü[Italic ÿóà[Bold[[ÿÿÿÿÿÿÿÿÿÿÿÿ€€ÿÿÿÿ€€ÿÿÿÿ—Zÿÿÿÿ—Zÿÿÿÿ€€ThinMedium€€DoubleThick€@ Very ThinHHHHHFormat AH Mapping TableHHHHHFormat BH Mapping TableÁh6Ã@;HHHHHÀÔÀà'QDHHÁÀ´.:?HHHÀÏ<>?HHÁ@B?HHHÀÏTCF?HHÀØ*0!2HHH7ÿÿÁhÃðˆ ŸÿÿÁhÃð‡!"#$%«ÿÿÁhÃð‡&'()*¹ÿÿÁhÃð‡+,-./ÀEÿÿÁhÃð‡01234ÀQÿÿÁhÃð‡56789À]ÿÿÁhÃð‹:;<=>ÀiÿÿÁh(Ãð ‡?@ABCÀ‘ÿÿÁhÃð ‡D E F G H ÀÿÿÁh(Ãð ‡I J K L M ÀÅÿÿÁhÃð ‹NOPQRÀÑÿÿÁhÃð ‡STUVWÀÝÿÿÁhÃð‡X Y Z [ \ ÀéÿÿÁh(Ãð ‡]^_`aÁÿÿÁhÃð‹bcdefÁÿÿÁhÃð‡ghijkÁ7ÿÿÁhÃð‡lmnopÁCÿÿÁhÃð‡qrstuÁ]ÿÿÁh(Ãð‹vwxyzÁ…ÿÿÁhÃð‡{|}~Á‘ÿÿÁhÃð‡€€€€€ÁÿÿÁh(Ãð‡€€€€€ ÁÅÿÿÁhÃð‹€ €€€€ÁÑÿÿÁhÃð‡€€€€€ÁÝÿÿÁhÃð‡€ €!€"€#€$Á÷ÿÿÁhÃð‡€%€&€'€(€)ÂÿÿÁhÃð‹€*€+€,€-€.ÂÿÿÁhÃð‡€/€0€1€2€3Â)ÿÿÁhÃð‡€4€5€6€7€8Â5ÿÿÁhÃð‡€9€:€;€<€=ÂOÿÿÁhÃð ‹€>€?€@€A€BÂ[ÿÿÁhÃð$‡€C €D €E €F €G ÿÿÀØÃð"€ˆ€!€!€!ŸÿÿÀØÃð!#€‡€"€"€"¹ÿÿÀØÃð"0€‡€#€#€#ÂuÿÿÁhÃð %‡€H$€J$€K$€L$€M$ÂÿÿÁhÃð$&‡€N%€R%€S%€T%€U%Â©ÿÿÁh(Ãð%P‹€V&€Z&€[&€\&€]&Â»ÿÿÀÔÃð(Iˆ€^'€_'€`'ÂËÿÿÀÔÃð')I‡€a(€b(€c(Â×ÿÿÀÔ6Ãð(*I‡€d)€e)€f)ÂãÿÿÀÔÃð)+I‡€g*€h*€i*ÂïÿÿÀÔÃð*,I‡€j+€k+€l+ÀÔ(Ãð+-I‹€m,€n,€o,DÀÔ(Ãð,RI‡€p-€q-€r-VÂdÃð/Iˆ€v.€w. .€x.fÁÃð.1I‡€y/€z/!/€{/ÀKÿÿÀØÃð#2€‡€O0€P0€Q0rÁÃð/3I‡€|1€}1"1€~1ÀWÿÿÀØÃð0€‡€W2€X2€Y2~ÁÃð14I‡€33U33ÀŠÁÃð35I‡44V44À¤ÁÃð46I‹55W55À¾ÁÃð57I‡6 6X6 6ÀØÁÃð69I‡77Y7 7ÀòÁÃð7:I‡99Z99ÁÁÃð9I‹::[::ÁhÃð?I‡;;;\;];Á,ÂdÃð=Iˆ<<<Á<ÀÏÃð<>I‡===ÁHÀÏÃð=I‡>>>ÁhÃðL;I‡^?_?`?a?b?ÁhÂdÃðAIˆ#@$@%@&@ÁxÁÃð@BI‡'A(A)A*AÁ„ÁÃðAI‡+B,B-B.BÁ–ÂdÃðD}ˆ/C0C1CÁ¦ÀÏÃðCE}‡ADBDCDÁ²ÀÏÃðDK}‡DEEEFEÁúÀÏÃðG}‡3F4F5FÁîÀÏÃðHF}‡6G7G8GÁâÀÏÃðIG}‡9HJHKHÁÖÀÏÃðJH}‹LIMINIÁÊÀÏÃðKI}‡OJPJQJÁ¾ÀÏÃðEJ}‡RKSKTKÁhÃðM?I‡cLdLeLfLgLÁh(ÃðNLI‹hMiMjMkMlMÁh(ÃðOMI‡mNnNoNpNqNÁh(ÃðPN‡rOsOtOuOvOÁhÃð&O‡wPxPyPzP{PÀÔÃðRI‡Q‚Q‚QÀÔÃð-QI‡‚R‚R‚RComment >ÿ?d€ ÿÿÿÿBlackT!ÿÿÿÿWhiteddAÿÿÿÿRedddÿÿÿÿGreendd ÿÿÿÿBlued€ÿÿÿÿCyand€ÿÿÿÿMagentad€ ÿÿÿÿYellowHeader/Footer $1Header/Footer $1Header/Footer $2Header/Footer $2IndexIndexCommentCommentSubjectSubjectAuthorAuthorGlossaryGlossaryEquationEquation Hypertext Hypertext Cross-Ref Cross-Ref Conditional TextConditional TextPositionFMPrivatePositionFMPrivateRangeEndFMPrivateRangeEndFMPrivate HTML Macro HTML Macro€ M.Times.PTimes-Roman FrameRoman M.Helvetica.P Helvetica FrameRoman M.Times.B Times-Bold FrameRoman M.Helvetica.BHelvetica-Bold FrameRoman M.Symbol.PSymbol FrameRoman M.Times.ITimes-Italic FrameRomanM.Helvetica.BIHelvetica-BoldOblique FrameRomanl1 HelveticaVSymbolZTimes#Regular$RomanMediumBoldRegular ObliqueItalic•d®9‡²Á®¼ñ‹H„Ïrý¦x¢iwÓæ[ÒÕÎ€"/øhØ›!äx.a”D—Ó¹…Xý2 ÿ”•" ¤ñ¿+Ì[yÿ‹Ôõ5Š™ÕÑ`s å³³WäÅZYé^U?óÅ¢Äa–˜eŽ0ÍÍÙ!¤ª²m‡½.nÂßÎÒ¬¯ÛÔŽðMÚîas8×&i‡‚B,jöÃF]¡ƒúèìí×y‡j ºñHíåµå\1|–ÛŽÀ8×