Manager

Custodian

Owner

Supervisor

Operating systems cannot create a trusted path between users and applications.

Operating systems are complex programs with millions of lines of code that make
vulnerabilities extremely difficult to recognize.

Operating systems do not isolate applications from each another so that one

application that is compromised can impact the entire computer.

Operating systems by default use the principle of least privilege.

Bank automatic teller machine (ATM)

Verifying a user password entered on a Linux system

Determining the integrity of a message

Encrypting and decrypting e-mail attachments

Orphaned

Static

Limbo

Dormant

SQL/LDAP insert attack

RBASE plug-in attack

Modified Trojan attack

LDAP injection attack

Manager

Owner

Supervisor

Custodian

In the directory structure of the file system

In areas that contain the content data itself

In the file header fields that describe the file

In data that is used to describe the content or structure of the actual data