Introduction to Information System Components Systems Software
Chapter 1 Part 2 of 4
CA M S Mehta, FCA
Systems Software
Task Statements
1.1 Identify deployment of different components of IT and their functions…Operating system
software …
Knowledge Statements
1.2 Fundamental concepts of different components of IT and their functions…Operating System Software…
Learning Objects
Systems Software
Operating Systems
Access Control in Windows
Other Types of System Software Software Asset Management
Topics Covered
What Is Systems Software?
Set of instructions
Tells the computer what to do
Accomplishes desired task when executed in a sequence
Most critical function- directs the working of computer hardware and causes a computer to perform useful tasks
Software
Hardware - Firmware Operating System
Access Control software
DEVLOPMENT PACKAGES
Visual Basic, Java, VC++, …etc UTILITIES etc…
APPLICATION PACKAGES
MS-OFFICE (Word, Excel, Access),Payroll, Sales…etc S
Y S T E M S O F T W A R E
Users interact with Application Packages System Software
• Operating System
• Data communication
• Data Base management software (DBMS)
• Access control
• Tape and disk management systems
• Program library management systems
• Network management software
• Program Development Tools
• Job scheduling
• Middleware
• Utility programs
System software is a collection of computer programs used in design, processing
and control of application packages
Software Architecture
6
Operating Systems
Set of programs which acts as
intermediary agent between the user and the computer hardware permits
sharing and use of resources. It
controls and manages the computer hardware resources among various
processes.
Types of Operating Systems
• One user uses System at a time- single or multi tasking
Single User OS
• Several users use System at a time
Multi User OS
• OS operates on system with more than one processor
Multi
Processing OS
• Used in embedded systems with only small set of tasks
Real time OS
Need For Systems Software
OS Capabilities
• allows computing systems to run two or more applications concurrently.
Multitasking
• links more than one processor (CPU)
Multiprocessing
• runs several processes or threads of a program simultaneously.
Multithreading
Core Tasks of OS
Processor Management Memory Management Device Management File Management
Secondary Storage Management Networking
Application Programme Interface
User Interfaces With System
Operating Systems
Resource
Manager Perform Hardware Function Providing user interfaces.
Hardware independence through API Memory Management, Virtual Memory
Networking-Permits users to share hardware and data.
Time Sharing-Schedules resources among users.
Manage resources and processing.
User Interface
What is the price of RIL
(RIL$)
Fetch RIL$ from hard disk,track1
sector 7
Application software Operating System software
Application Program Interface
One of the most important functions of OS is to provide user interface
Memory and Processor Management
Core components of an OS
Kernel Layer
• Controls Access to Hardware
• Schedules System resources ..
Memory, CPU,..
• Enforces Security to System Resources
Shell Layer
• Surrounds kernel
• Provides Interface
for Applications
OS holds a computer together- Glue binds H/w with S/w
Programming Languages
The instruction “ADD 2 and 5 and assign the result to variable y” written in different programming languages
What to do
&
How to do
What to do
Programming Software
Assembler Assembly level code Machine
code
Language Compiler
3GL Code(As a single unit)
Machine code
Checks for errors in 3GL code
Language Interpreter
3GL Code (Each program statement)
Machine code
Easier to debug Slow execution
SQL Engine SQL Statement
Machine code
Program Development Software
• Process of combining various pieces of code and data together to form single executable unit that can be loaded in memory.
Linker
• Loads code & data of executable code memoryexecutes program
Loader
• Identify problem occurring during execution….help locate bugs Debugger
• Allows user to create & Edit files w/out special characters…Write source code
Editors
Some more System Software
Access Control Software
Data Communication Software Utility Programs
Tape and Disk Management Software
Access Control Software
Access Control Software is used for
Secure access to data, files, system resources
Assign ownership of all data for accountability
Logging Access Activity
Data Communication Software
Communications software is generally embedded in the computer operating system.
Communications software assists Operating System in managing local and remote terminal access
• to host resources
• to manage security
E.g. terminal emulators, file transfer programs
Utility Programs
Functions To manage a computer's functioning
To improve operational efficiency e.g. Defragmenters To understand application systems.
To facilitate assessing or testing data quality.
To test a program’s ability to function correctly and maintain data integrity.
To assist in fast program development.
Security & Controls Relating to
Operating System
OS Security
OS should be Robust Reliable, and free of Integrity flaws.
Operating system's processes and kernel do the designated task as instructed. A malicious program could make these process do malicious tasks
OS can be secured through proper user access and it has to be protected through anti-virus, firewalls, Anti spyware and
patch management
Access Control in OS
Operating system access controls First layer of access controls
Rely on hardware features of processor or Associated memory management
Basically control which memory addresses a process can access.
Access control is the process of authorizing users, groups and
computers to access objects on the computer or network
Access Control in OS - ACL
ACLs are widely used in environments where users manage their own file security, such as the Unix
File is the smallest object in OS
Access control deals with files
ACL is a matrix of access permissions, with columns
for files and rows for users
Access Control List (ACL)
File A File B Prog X Role A Read
Write
Write
Role B Read Read
Write
Role C Execute
Match User/Role with Object
Specifying Capabilities
Access Control in OS ACLs are used in OS with Roles.
Role= set of Users Administrator, Guest
Assign permissions to roles
Each user gets permission through Role
Access Controls in UNIX
Each file(Object) has owner and group Permissions set by owner
Could be Read, write, execute to Owner, group, other
Only owner, root can change permissions
Access Control in Windows - Steps
User Creation Create Password Assign Roles
User rights & privilege Permissions
Security Auditing
Create User
In Windows 7 Go to Control Panel > User Accounts > Manage accounts
Create Password
In Windows 7 Go to Control Panel > User Accounts > Manage accounts
Assign Role
In Windows 7 Go to Control Panel > User Accounts > Manage accounts Default Roles could Be Standard User or Administrator
User Rights & Permissions
User Rights apply to user accounts, and Permissions attached to objects
Assigning User Rights Start> Control Panel>System and security>Administrative Tools> Local Security Policy
User Rights
Assigning User Rights Start> Control Panel>System and security>Administrative Tools> Local Security Policy
Click on User Rights assignment
Permissions
Permissions are attached to objects
Right Click on Properties > Security Tab > Advanced or Edit
Auditing User Access
Audit access to Object, Logon, System events
Logging User Events Start> Control Panel>System and security> Administrative Tools>Local Security Policy>Local Policies> Audit Policy
Understanding Software Asset
Management
Software Asset Management
ITIL Definition
“Software Asset Management is all of the infrastructure and processes necessary for the effective management, control and protection of the software assets within an organization,
throughout all stages of their lifecycle.”
Software Asset Management
Covers: Purchasing
Deploying Managing And tracking
Software
from Purchase to
Retirement of the software
SAM is a key process for any organisation to meet its legal, financial and reputational responsibilities
SAM answers the following Questions
What is installed in the environment?
What is supposed to be installed?
Who is using the Software?
How much are they using it?
Are they supposed to be using it?
How are they using it?
Can they prove they’re allowed to use it?
Why SAM?
• Through Standardisation, Volume licensing Reducing Redundancy, Streamlined Operations
Cost Savings
• Reduce business, reputational and legal risks
Risk Management
• Trouble free Software, peace of mind
Streamlined Operations
• Better compliance, Good IT Governance
Good Governance
• Updated inventory, offsite backups
Disaster Protection
Software is an Asset - needs Management
Steps to SAM
Take Inventory Get organised
Policies & Standards
• Software acquisition
• Software storage
• Software Implementation, Use
• Software Retirement
Maintenance
Inventorisation
PC serial number:
Inventory date:
Department/ Business Unit:
PC used by:
Employee ID number or position:
Employee telephone extension:
Software Installations:
Publisher Software Title Version Number Number of Installations
Make an inventory by viewing the Add/Remove Programs list
As suggested by Microsoft
System Software Acquisition
Business, functional and technical needs and specifications
Cost and benefit(s) Obsolescence
Compatibility with existing systems Security
Demands on existing staff
Training and hiring requirements Future growth needs
Impact on system and the network performance
System Software Implementation
System Software Change Control Procedures Software Licensing Issues
System Software Implementation
Maintain Proof of ownership
The global piracy rate for PC software hovers at 42 percent.
http://globalstudy.bsa.org/2011
Proof of ownership
When we acquire software, it's important to keep the following:
• Software License Terms -End User License Agreement (EULA)
• Certificate of Authenticity (COA)
• Original media and manuals
• Purchase invoice and/or receipt
Application Software Acquisition
Compatibility Reliability
Benchmarks Version
Support
Considerations
Application Software Development
Requirement Definition
Requirement Analysis
Design
Coding Changeover &
Implementation Post Implementation
Review
Maintenance
What is an Endpoint
An endpoint device is an Internet-capable computer hardware device on a TCP/IP network. Where an information stream is generated or ends. Could be a:
• Computer
• Laptops
• smart phones
• Thin clients,
• POS terminals etc.
Endpoint Management
In any distributed Environment endpoints need to be deployed, configured, patched, secured and supported.
Endpoint Management Solutions encompass Patch Delivery
Inventory
Software distribution OS deployment
Remote control capabilities
Why End Point Management
Analyse vulnerabilities (patched or insecure configurations)
Easily and automatically remediate all the networked endpoints
Establish and enforce configuration policies across the endpoints
Distribute and update software packages
View, modify, and audit properties of the endpoints
Benefits of End Point Management
Cross platform support
Understanding what we have and where it is
Centralised management for
greater control
Standardised systems to drive
consistency
Simplify
compliance Improve service levels
Optimised client and server
software assets
Measured and improved IT performance
Automated IT
processes Enables end user self-service
Simplified software license
audits
What is Digital Rights Management (DRM)
Technologies and systems that prevent users doing thing with content that the content provider does not want
Removes usage control from the person in possession of digital content >
Computer program
Why DRM
To protect the property rights of an enterprise’s assets
To establish the awareness of
Intellectual Property Rights (IPR)
in society.
Digital Rights Management
Digital Rights Management is the process of
defining, tracking and enforcing permissions and conditions through electronic means and throughout the content
lifecycle.
DIGITAL CONTENT CREATION
DISTRIBUTI
ON STORAGE
RETRIEVAL USE DISPOSAL
Where is DRM used?
E-book server restricts copying of material
Software on DVD restricts copying
of content not more than twice
Auditing Software
Auditing System Software Acquisition
Review system software selection procedures
• As per I S requirements and business plan.
• Same selection criteria applied to all acquisitions
Review cost/benefit analysis
• Total Cost of Ownership considered while deciding.
• Impact on data security.
• Financial stability of the vendor’s operations
Auditing System Software
Review controls over the installation of changed system software
• Changes should be scheduled when they least impact routine working
• Fall-back or restoration procedures in place, on production failure.
Review Configuration Management
• Review of the pre-defined/default user accounts
• Review of Services enabled as per business requirements
• Review of Resources which are accessible by default by all users
• Review of Procedures for controlling application of patches
• Whether Admin/Super User accounts accessed through a secured access control mechanism?
• At a PC level, whether a personal firewall enabled?
Auditing System Software
Review system software maintenance activities
• Whether changes made to the system software documented.
• Vendor support for Current versions of the software
• Whether Vendor’s maintenance activities are logged.
Review systems documentation
• Parameter tables.
• Activity logs/reports.
Auditing System Software
Review authorisation documentation to determine whether:
• Changes to access authorisation documented.
• Attempted violation reported and follow-up
Review system software security to determine whether:
• Circumvention of logical security access control restricted.
• Vendor-supplied installation passwords changed during
installation
Systems Software
We have learnt about
