70004 & 70046: added friday ADSD lecture and advanced security

70004 - Advanced Computer Security/1975 Design Principles.md

@@ -8,4 +8,3 @@ Covers the evolution of basic computer security principles.
 > - Earl Boebert
 ## Commentary
 - *Defence in depth* seems often overlooked (having multiple layers of defences in a system), having *Compromise recording* seems to be in this vein also.
-- 

70004 - Advanced Computer Security/Accountability.md

@@ -0,0 +1,4 @@
+## Definition
+Being able to determine the attacker or [[Principle]].
+- Audit trails and logs, even in security failure there is a need to detect in order to react, and investigate after is system is re-secured.
+- Secure timestamping (e.g. using OS, or network, attacker may attempt to damage integrity of logs)

70004 - Advanced Computer Security/Availability.md

@@ -0,0 +1,5 @@
+## Definition
+The uptime of a system.
+- Maximum traffic, measured historically and guaranteed by SLAs with providers.
+- Using redundancy to reduce possible single points of failure (e.g. replicating databases, auto-scaling for load)
+Many attacks are [[Denial of Service]].

70004 - Advanced Computer Security/Defence in Depth.md

@@ -0,0 +1,8 @@
+## Definition
+Using multiple layers of security, and monitoring to remove single points of failure for security.
+## Example
+### Account monitoring
+- Using password authentication for accounts.
+- Monitor number of denied logins, conservatively blocking clients that fail to log in repeatedly.
+- Monitor logins for suspicious activity, and block judiciously.
+- Monitor suspected compromised accounts.

70004 - Advanced Computer Security/Denial of Service.md

@@ -0,0 +1,2 @@
+## Definition
+Overwhelming public services with large volumes of illegitimate traffic to prevent them servicing legitimate traffic.

70004 - Advanced Computer Security/Non-Reputation.md

@@ -0,0 +1,6 @@
+## Definition
+> *Alice wants to prove to Trent she did communicate with Bob*
+
+Collecting undeniable evidence of some transaction.
+- receipts, digitally signed logs
+- helps with [[Accountability]], and for investigations (e.g. determining if a transaction was fraudulent, or valid based on an untrusted customer's testimony).

70046 - Advanced Digital Systems Design/DMA.md

@@ -0,0 +1,10 @@
+## Definition
+Rather than using the CPU to transfer data from main memory to a peripheral (wastes cycles), a separate DMA module does this (needs to update cache also).
+
+*Note: Here we reference main memory but this could apply to any bus connected perhipheral or cache.*
+## Modes
+| Mode | Description | Speed |
+| ---- | ---- | ---- |
+| Burst | DMA gains access to system bus and releases it on task completion | Fastest |
+| Cycle Stealing | DMA forces CPU to release bus, makes small transfer. Repeats until task is complete. | Slow |
+| Transparent/Interleaving | DMA only takes control of the bus when the CPU does not need it. | Slowest |

70046 - Advanced Digital Systems Design/Roofline Model.md

@@ -0,0 +1,9 @@
+## Definition
+*From the paper: [Roofline: an insightful visual performance model for multicore architectures: Communications of the ACM: Vol 52, No 4](https://dl.acm.org/doi/10.1145/1498765.1498785)*
+
+![[roofile_model.drawio.svg]]
+
+For example the original paper compare floating point arithmetic performance, and memory bandwidth.
+- We graph the attainable performance (i.e. $flops/s$ ) against the operational intensity (i.e. $flops/byte$). 
+- The gradient is $bytes/s$ (the memory bandwidth)
+- We get an increase up to a point (where $flops/s$ remains constant and it is compute bound)

README.md

@@ -24,5 +24,6 @@ A collection of textbook-like revision books, and obsidian notes for a selection
 - [70023 - Scalable Software Verification](70023%20-%20Scalable%20Software%20Verification)
 - [70024 - Software Reliability](70024%20-%20Software%20Reliability)
 - [70025 - Software Engineering for Industry](70025%20-%20Software%20Engineering%20for%20Industry)
+- [70046 - Advanced Digital Systems Design](70046%20-%20Advanced%20Digital%20Systems%20Design)
 
 ### [I want to contribute!](./.github/CONTRIBUTING.md)