From ebbcb5dc00f65d1d45c4f3dd6e593f36447da3ff Mon Sep 17 00:00:00 2001 From: "Z. Cliffe Schreuders" Date: Mon, 26 Apr 2021 21:40:51 +0100 Subject: [PATCH] CyBOK --- README-CyBOK-Lecture-Videos.md | 132 ++++++++++++------------- lib/CyBOK/template_CyBOK_videos.md.erb | 4 +- 2 files changed, 68 insertions(+), 68 deletions(-) diff --git a/README-CyBOK-Lecture-Videos.md b/README-CyBOK-Lecture-Videos.md index 19b3be5f1..1a68355f7 100644 --- a/README-CyBOK-Lecture-Videos.md +++ b/README-CyBOK-Lecture-Videos.md @@ -14,8 +14,8 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | OSV | OS Security Principles | security models | - + | OSV | OS Security Principles | security models | + ## A video! by Somebody @@ -26,8 +26,8 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | OSV | OS Security Principles | security models | - + | OSV | OS Security Principles | security models | + @@ -42,9 +42,9 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authentication | user authentication | - | OSVS | Primitives for Isolation and Mediation | ["authentication and identification", "Linux authentication", "Types of user accounts"] | - + | AAA | Authentication | user authentication | + | OSVS | Primitives for Isolation and Mediation | ["authentication and identification", "Linux authentication", "Types of user accounts"] | + @@ -59,9 +59,9 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authentication | ["user authentication", "Cryptography and authentication (hashes and attacks against authentication schemes / passwords)"] | - | OSVS | Primitives for Isolation and Mediation | ["authentication and identification", "Linux authentication"] | - + | AAA | Authentication | ["user authentication", "Cryptography and authentication (hashes and attacks against authentication schemes / passwords)"] | + | OSVS | Primitives for Isolation and Mediation | ["authentication and identification", "Linux authentication"] | + @@ -76,9 +76,9 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authentication | ["user authentication", "Cryptography and authentication (hashes and attacks against authentication schemes / passwords)"] | - | OSVS | Primitives for Isolation and Mediation | ["authentication and identification", "Linux authentication"] | - + | AAA | Authentication | ["user authentication", "Cryptography and authentication (hashes and attacks against authentication schemes / passwords)"] | + | OSVS | Primitives for Isolation and Mediation | ["authentication and identification", "Linux authentication"] | + @@ -93,9 +93,9 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authentication | ["user authentication", "Cryptography and authentication (hashes and attacks against authentication schemes / passwords)"] | - | OSVS | Primitives for Isolation and Mediation | ["authentication and identification", "Linux authentication"] | - + | AAA | Authentication | ["user authentication", "Cryptography and authentication (hashes and attacks against authentication schemes / passwords)"] | + | OSVS | Primitives for Isolation and Mediation | ["authentication and identification", "Linux authentication"] | + @@ -110,9 +110,9 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authentication | ["identity management", "user authentication", "facets of authentication"] | - | OSVS | Primitives for Isolation and Mediation | ["authentication and identification", "Linux authentication"] | - + | AAA | Authentication | ["identity management", "user authentication", "facets of authentication"] | + | OSVS | Primitives for Isolation and Mediation | ["authentication and identification", "Linux authentication"] | + @@ -127,8 +127,8 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authentication | ["identity management", "user authentication", "facets of authentication", "AUTHENTICATION - BIOMETRICS"] | - + | AAA | Authentication | ["identity management", "user authentication", "facets of authentication", "AUTHENTICATION - BIOMETRICS"] | + @@ -143,8 +143,8 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authentication | ["identity management", "user authentication", "facets of authentication", "AUTHENTICATION - OTP (ONE-TIME PASSWORD)", "AUTHENTICATION - TOKENS"] | - + | AAA | Authentication | ["identity management", "user authentication", "facets of authentication", "AUTHENTICATION - OTP (ONE-TIME PASSWORD)", "AUTHENTICATION - TOKENS"] | + @@ -159,10 +159,10 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authentication | ["identity management", "authentication in distributed systems", "user authentication", "Network based-authentication with heterogeneous Linux and Windows networks"] | - | AAA | Authorisation | ["AUTHORIZATION - SSO (SINGLE SIGN-ON)", "AUTHORIZATION - LDAP (LIGHTWEIGHT DIRECTORY ACCESS PROTOCOL)", "AUTHENTICATION - KERBEROS", "ACTIVE DIRECTORY DOMAIN SERVICES (ADDS)"] | - | AAA | Access Control in Distributed Systems | ["core concepts", "federated access control"] | - + | AAA | Authentication | ["identity management", "authentication in distributed systems", "user authentication", "Network based-authentication with heterogeneous Linux and Windows networks"] | + | AAA | Authorisation | ["AUTHORIZATION - SSO (SINGLE SIGN-ON)", "AUTHORIZATION - LDAP (LIGHTWEIGHT DIRECTORY ACCESS PROTOCOL)", "AUTHENTICATION - KERBEROS", "ACTIVE DIRECTORY DOMAIN SERVICES (ADDS)"] | + | AAA | Access Control in Distributed Systems | ["core concepts", "federated access control"] | + @@ -177,9 +177,9 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authentication | ["identity management", "authentication in distributed systems", "user authentication"] | - | AAA | Authorisation | ["theory", "Network based-authentication with heterogeneous Linux and Windows networks", "AUTHORIZATION - LDAP (LIGHTWEIGHT DIRECTORY ACCESS PROTOCOL)"] | - + | AAA | Authentication | ["identity management", "authentication in distributed systems", "user authentication"] | + | AAA | Authorisation | ["theory", "Network based-authentication with heterogeneous Linux and Windows networks", "AUTHORIZATION - LDAP (LIGHTWEIGHT DIRECTORY ACCESS PROTOCOL)"] | + @@ -194,9 +194,9 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authentication | ["identity management", "authentication in distributed systems", "user authentication", "Network based-authentication with heterogeneous Linux and Windows networks"] | - | AAA | Authorisation | AUTHENTICATION - KERBEROS | - + | AAA | Authentication | ["identity management", "authentication in distributed systems", "user authentication", "Network based-authentication with heterogeneous Linux and Windows networks"] | + | AAA | Authorisation | AUTHENTICATION - KERBEROS | + @@ -211,10 +211,10 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authentication | ["identity management", "authentication in distributed systems", "user authentication", "Network based-authentication with heterogeneous Linux and Windows networks"] | - | AAA | Authorisation | ["AUTHORIZATION - SSO (SINGLE SIGN-ON)", "AUTHORIZATION - LDAP (LIGHTWEIGHT DIRECTORY ACCESS PROTOCOL)", "AUTHENTICATION - KERBEROS", "ACTIVE DIRECTORY DOMAIN SERVICES (ADDS)"] | - | AAA | Access Control in Distributed Systems | ["core concepts", "federated access control"] | - + | AAA | Authentication | ["identity management", "authentication in distributed systems", "user authentication", "Network based-authentication with heterogeneous Linux and Windows networks"] | + | AAA | Authorisation | ["AUTHORIZATION - SSO (SINGLE SIGN-ON)", "AUTHORIZATION - LDAP (LIGHTWEIGHT DIRECTORY ACCESS PROTOCOL)", "AUTHENTICATION - KERBEROS", "ACTIVE DIRECTORY DOMAIN SERVICES (ADDS)"] | + | AAA | Access Control in Distributed Systems | ["core concepts", "federated access control"] | + @@ -229,10 +229,10 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authorisation | ["access control", "enforcing access control", "theory"] | - | OSVS | Primitives for Isolation and Mediation | Access controls and operating systems | - | OSVS | Role of Operating Systems | ["mediation", "TRUSTED COMPUTING BASE (TCB)", "REFERENCE MONITOR"] | - + | AAA | Authorisation | ["access control", "enforcing access control", "theory"] | + | OSVS | Primitives for Isolation and Mediation | Access controls and operating systems | + | OSVS | Role of Operating Systems | ["mediation", "TRUSTED COMPUTING BASE (TCB)", "REFERENCE MONITOR"] | + @@ -247,10 +247,10 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authorisation | ["access control", "enforcing access control", "ACCESS CONTROL - DAC (DISCRETIONARY ACCESS CONTROL)"] | - | OSVS | Primitives for Isolation and Mediation | ["Access controls and operating systems", "Linux security model", "Unix File Permissions", "filesystems, inodes, and commands"] | - | OSVS | Role of Operating Systems | mediation | - + | AAA | Authorisation | ["access control", "enforcing access control", "ACCESS CONTROL - DAC (DISCRETIONARY ACCESS CONTROL)"] | + | OSVS | Primitives for Isolation and Mediation | ["Access controls and operating systems", "Linux security model", "Unix File Permissions", "filesystems, inodes, and commands"] | + | OSVS | Role of Operating Systems | mediation | + @@ -265,9 +265,9 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authorisation | ["access control", "theory", "ACCESS CONTROL - DAC (DISCRETIONARY ACCESS CONTROL)", "ACCESS CONTROL - MAC (MANDATORY ACCESS CONTROL)", "ACCESS CONTROL - NDAC (NON-DISCRETIONARY ACCESS CONTROL)", "ACCESS CONTROL - ROLE-BASED"] | - | OSVS | OS Security Principles | security models | - + | AAA | Authorisation | ["access control", "theory", "ACCESS CONTROL - DAC (DISCRETIONARY ACCESS CONTROL)", "ACCESS CONTROL - MAC (MANDATORY ACCESS CONTROL)", "ACCESS CONTROL - NDAC (NON-DISCRETIONARY ACCESS CONTROL)", "ACCESS CONTROL - ROLE-BASED"] | + | OSVS | OS Security Principles | security models | + @@ -282,9 +282,9 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authorisation | ["access control", "Elevated privileges", "Real and effective identity", "Vulnerabilities and attacks on access control misconfigurations"] | - | OSVS | Primitives for Isolation and Mediation | ["Access controls and operating systems", "Linux security model", "Unix File Permissions", "setuid/setgid"] | - + | AAA | Authorisation | ["access control", "Elevated privileges", "Real and effective identity", "Vulnerabilities and attacks on access control misconfigurations"] | + | OSVS | Primitives for Isolation and Mediation | ["Access controls and operating systems", "Linux security model", "Unix File Permissions", "setuid/setgid"] | + @@ -299,9 +299,9 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authorisation | ["access control", "ACCESS CONTROL - MATRIX", "ACCESS CONTROL LIST (ACL)", "Vulnerabilities and attacks on access control misconfigurations"] | - | OSVS | Primitives for Isolation and Mediation | capabilities | - + | AAA | Authorisation | ["access control", "ACCESS CONTROL - MATRIX", "ACCESS CONTROL LIST (ACL)", "Vulnerabilities and attacks on access control misconfigurations"] | + | OSVS | Primitives for Isolation and Mediation | capabilities | + @@ -316,9 +316,9 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authorisation | ["access control", "ACCESS CONTROL LIST (ACL)", "Vulnerabilities and attacks on access control misconfigurations"] | - | OSVS | Primitives for Isolation and Mediation | ["Access controls and operating systems", "Linux security model", "Linux Extended Access Control Lists (facl)"] | - + | AAA | Authorisation | ["access control", "ACCESS CONTROL LIST (ACL)", "Vulnerabilities and attacks on access control misconfigurations"] | + | OSVS | Primitives for Isolation and Mediation | ["Access controls and operating systems", "Linux security model", "Linux Extended Access Control Lists (facl)"] | + @@ -333,11 +333,11 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authorisation | ["SANDBOX", "Application-based access controls: user-based access controls insufficiently limit privileges"] | - | OSVS | Primitives for Isolation and Mediation | ["capabilities", "Container-based sandboxes: chroot, Docker", "Rule-based controls: Course grained: Linux capabilities", "System-level sandboxes (complete OS, Qubes), hardware-emulation and paravirtualisation", "Copy on write sandboxes"] | - | OSVS | Role of Operating Systems | ["isolation", "CONTAINERS"] | - | WMS | Fundamental Concepts and Approaches | ["sandboxing", "permission dialog based access control"] | - + | AAA | Authorisation | ["SANDBOX", "Application-based access controls: user-based access controls insufficiently limit privileges"] | + | OSVS | Primitives for Isolation and Mediation | ["capabilities", "Container-based sandboxes: chroot, Docker", "Rule-based controls: Course grained: Linux capabilities", "System-level sandboxes (complete OS, Qubes), hardware-emulation and paravirtualisation", "Copy on write sandboxes"] | + | OSVS | Role of Operating Systems | ["isolation", "CONTAINERS"] | + | WMS | Fundamental Concepts and Approaches | ["sandboxing", "permission dialog based access control"] | + @@ -352,9 +352,9 @@ This file is an autogenerated index of the lecture videos referenced by scenario | KA | Topics | Keywords | | --- | --- | --- | - | AAA | Authorisation | ["ACCESS CONTROL - MAC (MANDATORY ACCESS CONTROL)", "ACCESS CONTROL - NDAC (NON-DISCRETIONARY ACCESS CONTROL)", "Application-based access controls: user-based access controls insufficiently limit privileges", "Rule-based sandboxes", "System call interposition", "Integrity level access controls"] | - | OSVS | Primitives for Isolation and Mediation | Rule-based controls: Fine grained: AppArmor | - | SS | Mitigating Exploitation | limiting privileges | - + | AAA | Authorisation | ["ACCESS CONTROL - MAC (MANDATORY ACCESS CONTROL)", "ACCESS CONTROL - NDAC (NON-DISCRETIONARY ACCESS CONTROL)", "Application-based access controls: user-based access controls insufficiently limit privileges", "Rule-based sandboxes", "System call interposition", "Integrity level access controls"] | + | OSVS | Primitives for Isolation and Mediation | Rule-based controls: Fine grained: AppArmor | + | SS | Mitigating Exploitation | limiting privileges | + diff --git a/lib/CyBOK/template_CyBOK_videos.md.erb b/lib/CyBOK/template_CyBOK_videos.md.erb index ccd3dc6ee..b7c991c6b 100644 --- a/lib/CyBOK/template_CyBOK_videos.md.erb +++ b/lib/CyBOK/template_CyBOK_videos.md.erb @@ -23,9 +23,9 @@ end end %> | KA | Topics | Keywords | | --- | --- | --- | - <% arr['CyBOK'].each {|cybok| -%> +<% arr['CyBOK'].each {|cybok| -%> | <%= cybok["@KA"] %> | <%= cybok["@topic"] %> | <%= cybok["keyword"] %> | - <% } -%> +<% } -%> <% } %> <%