操作系统与虚拟化安全

操作系统与虚拟化安全

Instructor: Prof. 沈晴霓 (Shen Qingni), Ph.D.

3,663 already enrolled

Included with Coursera Plus

Learn more

13 modules

Gain insight into a topic and learn the fundamentals.

3.8

(12 reviews)

Intermediate level

Some related experience required

27 hours to complete

3 weeks at 9 hours a week

Flexible schedule

Learn at your own pace

13 modules

Gain insight into a topic and learn the fundamentals.

3.8

(12 reviews)

Intermediate level

Some related experience required

27 hours to complete

3 weeks at 9 hours a week

Flexible schedule

Learn at your own pace

Skills you'll gain

Details to know

Shareable certificate

Add to your LinkedIn profile

Assessments

16 assignments

Taught in Chinese (Simplified)

See how employees at top companies are mastering in-demand skills

Learn more about Coursera for Business

logos of Petrobras, TATA, Danone, Capgemini, P&G and L'Oreal

Earn a career certificate

Add this credential to your LinkedIn profile, resume, or CV

Share it on social media and in your performance review

There are 13 modules in this course

操作系统是计算机系统的基础软件，而系统虚拟化已成为云计算平台的核心技术，没有它们提供的安全性，这些计算机系统及其上数据的安全性都将无法保障。本课程将从理论与工程实践相结合的角度，介绍操作系统(Linux)与系统虚拟化(Xen)安全相关理论、技术和方法，包括：安全概念、安全机制、安全模型、安全体系结构、安全开发方法、安全标准与评测方法等，帮助你深入学习和理解该领域的知识体系、实践技术和方法。

What's included

8 videos1 assignment

8 videosTotal 76 minutes

1.1 课程简介10 minutesPreview module
1.2 计算机系统的安全性11 minutes
1.3 操作系统安全的重要性11 minutes
1.4 安全与可信的区别6 minutes
1.5 安全操作系统的国内外研发现状8 minutes
1.6 美国TCSEC标准与可信评估等级6 minutes
1.7 欧盟ITSEC标准与CC标准的产生6 minutes
1.8 国际CC标准的主要内容及其应用14 minutes

1 assignmentTotal 30 minutes

第一周测试30 minutes

What's included

5 videos1 assignment

What's included

8 videos2 assignments

8 videosTotal 76 minutes

3.1 访问控制任务与自主访问控制定义5 minutesPreview module
3.2 自主访问控制机制实现技术分类7 minutes
3.3 自主访问控制机制实例-9bit模式和ACL模式（含演示）18 minutes
3.4 特洛伊木马与强制访问控制定义6 minutes
3.5 多级安全思想与BLP机密性强制访问控制规则9 minutes
3.6 强制访问控制机制实例-安全级的标识与赋值（含演示）15 minutes
3.7 强制访问控制机制实例-安全规则的实现6 minutes
3.8 客体重用机制5 minutes

2 assignmentsTotal 60 minutes

第三周测试30 minutes
第1-3周阶段测试30 minutes

What's included

4 videos1 assignment

What's included

4 videos1 assignment

What's included

9 videos2 assignments

9 videosTotal 131 minutes

6.1 隐蔽通道的概念（06:10）6 minutesPreview module
6.2 隐蔽通道的分类与判别方法（17:31）17 minutes
6.3 隐蔽通道的标识方法概述（07:26）7 minutes
6.4 规范级隐蔽通道标识方法-Kermerer共享资源矩阵法（23:14）23 minutes
6.5 代码级隐蔽通道标识方法-Tsai语义信息流分析法（07:35）7 minutes
6.6 隐蔽通道带宽计算方法（12:13）12 minutes
6.7 隐蔽通道处理方法（12:57）12 minutes
6.8 隐蔽通道构造场景与实例分析（含演示）（28:28）28 minutes
6.9 可信恢复机制（15:32）15 minutes

2 assignmentsTotal 70 minutes

第六周测试30 minutes
期中测试40 minutes

What's included

13 videos1 assignment

13 videosTotal 137 minutes

7.1 安全模型基本要求（08:07）8 minutesPreview module
7.2 安全模型状态机开发方法（07:13）7 minutes
7.3 BLP经典安全模型-模型元素（12:39）12 minutes
7.4 BLP经典机密性安全模型-安全状态、安全属性、安全规则和定理（21:23）21 minutes
7.5 BLP模型的不足与改进（11:03）11 minutes
7.6 完整性涵义及其三个基本操作原则（06:33）6 minutes
7.7 BIBA经典完整性安全模型-完整性级别与信息传输路径（08:58）8 minutes
7.8 BIBA经典完整性安全模型-低水印策略、环策略和严格策略（11:50）11 minutes
7.9 Chinese Wall 中国墙混合安全模型思想及其安全规则（10:49）10 minutes
7.10 RBAC经典中立安全模型的概念与基本性质（08:46）8 minutes
7.11 RBAC96模型实体与相互关系（12:09）12 minutes
7.12 NIST RBAC模型实体与相互关系（07:03）7 minutes
7.13 DTE/TE经典中立安全策略（10:46）10 minutes

1 assignmentTotal 30 minutes

第七周测试30 minutes

What's included

6 videos1 assignment

6 videosTotal 76 minutes

8.1 安全体系结构概念与分类（11:45）11 minutesPreview module
8.2 多策略支持与GFAC广义存取控制框架（09:49）9 minutes
8.3 Flask安全体系结构-客体管理器（22:18）22 minutes
8.4 Flask安全体系结构-安全服务器（06:50）6 minutes
8.5 基于Flask的Linux安全模块框架LSM（I）-Linux体系结构、数据结构、钩子函数（18:23）18 minutes
8.6 基于Flask的Linux安全模块框架LSM（2）-安全系统调用、模块管理、权能模块独立与讨论（07:08）7 minutes

1 assignmentTotal 30 minutes

第八周测试30 minutes

What's included

12 videos2 assignments

12 videosTotal 180 minutes

9.1 可信计算概念（08:41）8 minutesPreview module
9.2 可信计算组织（12:10）12 minutes
9.3 TPM设计原则与体系结构（13:27）13 minutes
9.4 TPM密钥、信任状和所有权（12:22）12 minutes
9.5 TPM的Privacy CA和DAA认证方案（11:48）11 minutes
9.6 TPM的完整性度量、存储和报告机制（14:30）14 minutes
9.7 可信基础设施、可信软件栈和可信网络连接（08:39）8 minutes
9.8 可信计算技术的主要研究工作（15:29）15 minutes
9.9 访谈王绍斌博士（1）-可信计算技术国际化标准进程与应用案例（23:06）23 minutes
9.10 访谈王绍斌博士（2）-可信计算在移动终端、云计算等新型领域的应用趋势（15:39）15 minutes
9.11 访谈卿斯汉教授（1）-微软的可信赖计算概念（17:31）17 minutes
9.12 访谈卿斯汉教授（2）-TPM2.0的重要改进（27:27）27 minutes

2 assignmentsTotal 60 minutes

第九周测试30 minutes
第7-9周阶段测试30 minutes

What's included

6 videos1 assignment

6 videosTotal 84 minutes

10.1 安全操作系统的开发方法（20:33）20 minutesPreview module
10.2 安全操作系统设计实例-背景与目标（访谈卿斯汉教授）（08:43）8 minutes
10.3 安全操作系统设计实例-总体设计（09:22）9 minutes
10.4 安全操作系统设计实例-安全模型的建立（10:46）10 minutes
10.5 安全操作系统设计实例-安全体系结构的设计（09:43）9 minutes
10.6 安全操作系统设计实例-安全机制的实现方法（24:54）24 minutes

1 assignmentTotal 30 minutes

第十周测试30 minutes

What's included

7 videos1 assignment

7 videosTotal 112 minutes

11.1 数据库安全概述（11:19）11 minutesPreview module
11.2 安全数据库管理系统（13:36）13 minutes
11.3 多级安全数据库管理系统关键技术之一多级数据模型（15:06）15 minutes
11.4 多级安全数据库管理系统关键技术之二数据库隐通道（08:30）8 minutes
11.5 多级安全数据库管理系统关键技术之三数据库体系结构（17:31）17 minutes
11.6 外包数据库安全关键技术（28:57）28 minutes
11.7 云计算与大数据时代的数据库安全（17:33）17 minutes

1 assignmentTotal 30 minutes

第十一周测试30 minutes

What's included

13 videos1 assignment

13 videosTotal 178 minutes

12.1 虚拟化技术概述与分类（19:07）19 minutesPreview module
12.2 虚拟机监控器的实现方法-泛虚拟化、全虚拟化和硬件辅助虚拟化（16:27）16 minutes
12.3 虚拟机监控器的CPU虚拟化、内存虚拟化和I/O虚拟化技术（12:02）12 minutes
12.4 系统虚拟化平台安全性分析（13:34）13 minutes
12.5 虚拟机监控器安全--XSM框架的使用模型（11:08）11 minutes
12.6 虚拟机监控器安全--XSM框架的具体实现（14:24）14 minutes
12.7 虚拟机监控器安全--ACM和Flask策略实现（12:04）12 minutes
12.8 虚拟机迁移与安全控制（12:47）12 minutes
12.9 虚拟机的安全监控技术（08:08）8 minutes
12.10 虚拟机之间的隐蔽通道分析与标识21 minutes
12.11 虚拟可信平台架构设计14 minutes
12.12 虚拟可信平台关键技术--虚拟TPM信任链扩展12 minutes
12.13 虚拟可信平台关键技术--远程证实和可信迁移9 minutes

1 assignmentTotal 30 minutes

第十二周测试30 minutes

What's included

1 assignment

Instructor

Prof. 沈晴霓 (Shen Qingni), Ph.D.

Peking University

1 Course3,663 learners

Offered by

Peking University

Why people choose Coursera for their career

Felipe M.

Learner since 2018

"To be able to take courses at my own pace and rhythm has been an amazing experience. I can learn whenever it fits my schedule and mood."

Jennifer J.

Learner since 2020

"I directly applied the concepts and skills I learned from my courses to an exciting new project at work."

Larry W.

Learner since 2021

"When I need courses on topics that my university doesn't offer, Coursera is one of the best places to go."

Chaitanya A.

"Learning isn't just about being better at your job: it's so much more than that. Coursera allows me to learn without limits."

New to Computer Security and Networks? Start here.

Open new doors with Coursera Plus

Unlimited access to 10,000+ world-class courses, hands-on projects, and job-ready certificate programs - all included in your subscription

Learn more

Advance your career with an online degree

Earn a degree from world-class universities - 100% online

Explore degrees

Join over 3,400 global companies that choose Coursera for Business

Upskill your employees to excel in the digital economy

Learn more

Frequently asked questions

Access to lectures and assignments depends on your type of enrollment. If you take a course in audit mode, you will be able to see most course materials for free. To access graded assignments and to earn a Certificate, you will need to purchase the Certificate experience, during or after your audit. If you don't see the audit option:

The course may not offer an audit option. You can try a Free Trial instead, or apply for Financial Aid.
The course may offer 'Full Course, No Certificate' instead. This option lets you see all course materials, submit required assessments, and get a final grade. This also means that you will not be able to purchase a Certificate experience.

When you purchase a Certificate you get access to all course materials, including graded assignments. Upon completing the course, your electronic Certificate will be added to your Accomplishments page - from there, you can print your Certificate or add it to your LinkedIn profile. If you only want to read and view the course content, you can audit the course for free.

You will be eligible for a full refund until two weeks after your payment date, or (for courses that have just launched) until two weeks after the first session of the course begins, whichever is later. You cannot receive a refund once you’ve earned a Course Certificate, even if you complete the course within the two-week refund period. See our full refund policy.

操作系统与虚拟化安全

Skills you'll gain

Details to know

See how employees at top companies are mastering in-demand skills

Earn a career certificate

There are 13 modules in this course

计算机系统安全的重要性与评测标准

What's included

计算机系统基本安全概念和设计思想

What's included

访问控制机制

What's included

可追究机制

What's included

连续保护机制（I）

What's included

连续保护机制（II）

What's included

安全模型（I）

What's included

安全体系结构

What's included

可信计算技术

What's included

安全操作系统的设计与实现技术案例

What's included

基于安全操作系统的应用-数据库安全

What's included

系统虚拟化安全与虚拟可信平台技术

What's included

期末考试

What's included

Instructor

Offered by

Why people choose Coursera for their career

New to Computer Security and Networks? Start here.

Open new doors with Coursera Plus

Advance your career with an online degree

Join over 3,400 global companies that choose Coursera for Business

Frequently asked questions

When will I have access to the lectures and assignments?

What will I get if I purchase the Certificate?

What is the refund policy?

More questions