0% found this document useful (0 votes)

6 views

Essential Key Kernel Mode Components

The document discusses the organization and components of the Windows operating system. It describes the user mode and kernel mode components, and how applications access hardware via system services in user mode. It also outlines the major OS components like system processes, services processes, and user processes.

Uploaded by

Cường WIND

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

6 views

Essential Key Kernel Mode Components

Uploaded by

Cường WIND

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 24

Windows – Key

Essential User Mode

Windows Components
Kernel Mode Components

Overview

• Organization
• Model
• Components
• CPU Modes
• System processes
• Services processes
• Users processes
• Subsystems processes
• System services

www.winitor.com 1
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

OS Organization

• Access to hardware is not allowed

• Access to hardware is made via system services

Applications

Virtual machine

Real machine

www.winitor.com 2
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

OS Model

• Applications access the OS via one defined

Application Program Interface (API)

Application

API

www.winitor.com 3
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

OS Contexts

Applications

CPU runs in user mode

CPU runs in kernel mode

www.winitor.com 4
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

CPU Modes

• Protect critical system data from user applications

• User mode 3
2
• Kernel mode 1

www.winitor.com 5
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

CPU Modes - mechanism

• User programs typically run in both modes

• CPU mode switch <> CPU context switch

mode

time

www.winitor.com 6
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

CPU Modes - scenarios

user
kernel

www.winitor.com 7
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

TCB

• Context
• No CPU restriction in kernel
• No memory restriction in kernel
• No security check in kernel
• Definition administrators

• Portions of the system trusted to enforce applications

the security kernel

drivers
• Components
• Most hardware hardware

• All kernel code

• Some user code (SeTcbPrivilege)
• Administrators

www.winitor.com 8
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

Memory Layout

• Each application occupies 4 GB of address space

• All applications share system memory space
memory address
Unprivileged

0x00000000

Application A Application B Application C ... Application Z

0x7FFFFFFF
memory address
Privileged

0xFFFFFFFF

www.winitor.com 9
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

OS Major Components

System processes Services processes User processes Environment processes

Session manager POSIX

… …

Logon manager
alerter pinball
Security manager Win32

… explorer
Services manager

System services
user

kernel

Executive

Hardware Abstraction Layer

Hardware

www.winitor.com 10
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

Environment Subsystems

• Definition
• Role
• Types
.,,

... Win16 application

... Win32 application Win16 application

Posix application Win32 application Win16 application

Posix application Win32 application WOW DOS application DOS application

NTVDM NTVDM …

Posix Win32

www.winitor.com 11
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

Environment Subsystems - interfaces

• Subsystem
• Process runs in a private address space
• Application
• Sends messages to subsystem
• Unaware of messages
• Implicitely linked with systems‘s interfaces (image = code +
metadata)
application.exe

Functions calls

Win32 API

Kernel32.dll Gdi32.dll ... User32.dll

Native API

Ntdll.dll

www.winitor.com 12
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

Environment Subsystems - strategy

Application Subsystem

Win32 API

Subsystem DLLs

Executive

www.winitor.com 13
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

Environment Subsystems - strategy

Application Subsystem

Win32 API

Subsystem DLLs

Native API CPU mode switch

Executive

www.winitor.com 14
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

Environment Subsystems - strategy

Application Subsystem

API

message CPU context switch

Subsystem DLLs

Native API CPU mode switch

Executive

www.winitor.com 15
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

Environment Subsystems - strategy

Service implementation CPU mode switching CPU context switching Message sent

performance
User process No No No

Executive Yes No No

Server Yes Yes Yes

www.winitor.com 16
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

Win16 Support

• MS-DOS applications
• One-one relation
• Win16 applications
• Many-one relation
< NT > NT

Windows MS-DOS

MS-DOS Windows

www.winitor.com 17
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

System processes

• Are started by the system

• Are running on every system
• Cannot be stopped

www.winitor.com 18
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

Session Manager Subsystem

• Definition
• Role
• Particularities
• Part of the TCB
• Native user application

www.winitor.com 19
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

Logon Manager

• Definition
• Role
• Interactive logon request management
• Authentication User interface management
• User profile initialization
• Shell creation
• TASKMGR management
Who you are
(identification)

What you know What you are

(authentication) (authentication)

www.winitor.com 20
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

Local Security Authority Subsystem

• Definition
• Role

www.winitor.com 21
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

Service Control Manager

• Definition
• Role

www.winitor.com 22
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

User Processes - creation

System

Smss

Permanent
Winlogon Csrss

Services Lsass

Userinit

Volatile (interactive)
Shell

...

www.winitor.com 23
Windows – Key
Essential User Mode
Windows Components
Kernel Mode Components

Thanks!

www.winitor.com 24

Understanding Operating Systems Seventh Edition
No ratings yet
Understanding Operating Systems Seventh Edition
67 pages
Top 100 Digital Agencies 2019
No ratings yet
Top 100 Digital Agencies 2019
88 pages
OS - Windows and UNIX-Linux
No ratings yet
OS - Windows and UNIX-Linux
105 pages
Group 1 Plat Tech (Os)
No ratings yet
Group 1 Plat Tech (Os)
16 pages
Linux Internals & Networking: System Programming Using Kernel Interfaces
No ratings yet
Linux Internals & Networking: System Programming Using Kernel Interfaces
305 pages
LPG H56854
No ratings yet
LPG H56854
28 pages
Requerimientos ICM
No ratings yet
Requerimientos ICM
129 pages
EC-Win-Technical_V1.5_741615
No ratings yet
EC-Win-Technical_V1.5_741615
51 pages
User 1 User 2 User N: System Softwares Application Softwares
No ratings yet
User 1 User 2 User N: System Softwares Application Softwares
11 pages
FDSRPDF 2023 06 07
No ratings yet
FDSRPDF 2023 06 07
106 pages
Operating Systems
No ratings yet
Operating Systems
105 pages
Windows Kernel Internal Overview
No ratings yet
Windows Kernel Internal Overview
21 pages
Intro To Operating System
No ratings yet
Intro To Operating System
38 pages
Install Datastage
No ratings yet
Install Datastage
104 pages
Os 20210326114051
No ratings yet
Os 20210326114051
34 pages
OS Overview
No ratings yet
OS Overview
32 pages
3OS Architecture
No ratings yet
3OS Architecture
20 pages
Windows For Reverse Engineers OS Internals
No ratings yet
Windows For Reverse Engineers OS Internals
39 pages
L5 OS DS Arch
No ratings yet
L5 OS DS Arch
20 pages
Windows Essentials - 1
No ratings yet
Windows Essentials - 1
39 pages
Lesson 2: Managing Windows
No ratings yet
Lesson 2: Managing Windows
35 pages
ICS Lecture 05
No ratings yet
ICS Lecture 05
46 pages
Kernel Development in LINUX
100% (2)
Kernel Development in LINUX
29 pages
Lecturer: Muhammad Faizan Tahir
No ratings yet
Lecturer: Muhammad Faizan Tahir
46 pages
Single Node Deploy
No ratings yet
Single Node Deploy
61 pages
Dynatrace Associate VILT (Day 2)
No ratings yet
Dynatrace Associate VILT (Day 2)
115 pages
L3-OS-DS-Arch
No ratings yet
L3-OS-DS-Arch
17 pages
08-System Software Operating Systems and Utility Programs
No ratings yet
08-System Software Operating Systems and Utility Programs
49 pages
MDOP-Diagnostic-Recovery-Toolset
No ratings yet
MDOP-Diagnostic-Recovery-Toolset
21 pages
System&Applicationsoft
No ratings yet
System&Applicationsoft
48 pages
FDSRPDF 2023 05 29
No ratings yet
FDSRPDF 2023 05 29
184 pages
Software Architecture: CIS 376 Bruce R. Maxim UM-Dearborn
No ratings yet
Software Architecture: CIS 376 Bruce R. Maxim UM-Dearborn
60 pages
IT Essentials II: Network Operating Systems v3.0 Scope and Sequence
No ratings yet
IT Essentials II: Network Operating Systems v3.0 Scope and Sequence
29 pages
APznzaZDkrdeFZ-GUT2hfHgTyA_syztH7mppEGfUHV1bITRHj0SRMLnJ9HvT8uOK68lmyQksXiZlAla6QNkA7bpmr6ltQK1_BsJYnhnyOF0H4JB6GrzCk9vg9hEh4TZ7uw2XJ2cEGs1uHNAnDc-jxzt4wrlDq80N_v6yHcEZUwFLwLNPM-VdRuT_MaZtxnkUN3uwnsHOUA2-O0lcCUoco-
No ratings yet
APznzaZDkrdeFZ-GUT2hfHgTyA_syztH7mppEGfUHV1bITRHj0SRMLnJ9HvT8uOK68lmyQksXiZlAla6QNkA7bpmr6ltQK1_BsJYnhnyOF0H4JB6GrzCk9vg9hEh4TZ7uw2XJ2cEGs1uHNAnDc-jxzt4wrlDq80N_v6yHcEZUwFLwLNPM-VdRuT_MaZtxnkUN3uwnsHOUA2-O0lcCUoco-
15 pages
Lec 2 -System Software
No ratings yet
Lec 2 -System Software
34 pages
Windows 2008 Server
No ratings yet
Windows 2008 Server
485 pages
Operating System
No ratings yet
Operating System
25 pages
Introduction To OS
No ratings yet
Introduction To OS
19 pages
FDSRPDF 2023 05 29
No ratings yet
FDSRPDF 2023 05 29
255 pages
Windows Kernel Internals II: University of Tokyo - July 2004
No ratings yet
Windows Kernel Internals II: University of Tokyo - July 2004
16 pages
04 OS Architecture PDF
No ratings yet
04 OS Architecture PDF
28 pages
(Lecture 1) Windows 2000 OS Introduction
No ratings yet
(Lecture 1) Windows 2000 OS Introduction
25 pages
Module 05
No ratings yet
Module 05
51 pages
CH - 10 - Computer Software
No ratings yet
CH - 10 - Computer Software
48 pages
cs501 Archintro Pin2
No ratings yet
cs501 Archintro Pin2
44 pages
Revised - BBC1 - IT Essentials - COURSE OUTLINE AY 2024-2025
No ratings yet
Revised - BBC1 - IT Essentials - COURSE OUTLINE AY 2024-2025
5 pages
Chapter08 111101191426 Phpapp02
No ratings yet
Chapter08 111101191426 Phpapp02
51 pages
FDSRPDF 2023 05 29
No ratings yet
FDSRPDF 2023 05 29
339 pages
Chap 2 Lectures
No ratings yet
Chap 2 Lectures
48 pages
553l2
No ratings yet
553l2
47 pages
Ru CS Os 01
No ratings yet
Ru CS Os 01
24 pages
Week 1
No ratings yet
Week 1
66 pages
Lesson 8
No ratings yet
Lesson 8
17 pages
الملخص لنظم التشغيل من 1الى6
No ratings yet
الملخص لنظم التشغيل من 1الى6
64 pages
Week 2 - Operating System Structures
No ratings yet
Week 2 - Operating System Structures
28 pages
1, Introduction To Embeeded Systems
No ratings yet
1, Introduction To Embeeded Systems
24 pages
Lecture 5 (Computer) by "Hussain"
No ratings yet
Lecture 5 (Computer) by "Hussain"
40 pages
Os MD 1
No ratings yet
Os MD 1
137 pages
Symbian OS
No ratings yet
Symbian OS
5 pages
Auditing Information Systems
From Everand
Auditing Information Systems
Jack J. Champlain
No ratings yet
The ISM method Version 3
From Everand
The ISM method Version 3
Jan van Bon
No ratings yet
...
No ratings yet
...
10 pages
Dt1e DT1MX
No ratings yet
Dt1e DT1MX
52 pages
The English Corner: TOEFL Strategies Name: - Date
No ratings yet
The English Corner: TOEFL Strategies Name: - Date
6 pages
1769 Iq32t
No ratings yet
1769 Iq32t
20 pages
ĐỀ ĐỀ XUẤT CBH - HN lớp 10
No ratings yet
ĐỀ ĐỀ XUẤT CBH - HN lớp 10
9 pages
Om 1
No ratings yet
Om 1
44 pages
How Crisis Opportunity
No ratings yet
How Crisis Opportunity
3 pages
A20038 Leadership Communication - Assessments - v1.0
No ratings yet
A20038 Leadership Communication - Assessments - v1.0
10 pages
Human Parasitology Laboratory (Biol546) : Biology 546 Laboratory Manual - 2012 (.PDF Edition)
No ratings yet
Human Parasitology Laboratory (Biol546) : Biology 546 Laboratory Manual - 2012 (.PDF Edition)
41 pages
Gilbert and Janssen (1997) Management Strategies For PMF
No ratings yet
Gilbert and Janssen (1997) Management Strategies For PMF
52 pages
Competence-Based Assessment
No ratings yet
Competence-Based Assessment
2 pages
PROFILE-TELANGANA Remote Sensing Based
No ratings yet
PROFILE-TELANGANA Remote Sensing Based
32 pages
Accounting For Management
No ratings yet
Accounting For Management
1 page
Arunam
100% (2)
Arunam
5 pages
Surface Vehicle Standard: Guide For Rivet Selection and Design Consideration
No ratings yet
Surface Vehicle Standard: Guide For Rivet Selection and Design Consideration
14 pages
055508
No ratings yet
055508
8 pages
ESP and Assessment
100% (1)
ESP and Assessment
5 pages
Week 15 Sophie Calle Letter
No ratings yet
Week 15 Sophie Calle Letter
2 pages
Annexure - A, Equipment Deployment Break-Up PDF
No ratings yet
Annexure - A, Equipment Deployment Break-Up PDF
1 page
8-reporting-106-BS Information Technology-1st
No ratings yet
8-reporting-106-BS Information Technology-1st
13 pages
AWS Region:: Primary DB Instance - Supports Read and Write Operations, and Performs All of The Data
No ratings yet
AWS Region:: Primary DB Instance - Supports Read and Write Operations, and Performs All of The Data
16 pages
COOKERY
100% (1)
COOKERY
23 pages
Thirukural
100% (1)
Thirukural
30 pages
CUTEX-180 en Catalogue
No ratings yet
CUTEX-180 en Catalogue
20 pages
Project Documentation 1
No ratings yet
Project Documentation 1
5 pages
State Level 8 -PDF SPELL BEE
No ratings yet
State Level 8 -PDF SPELL BEE
40 pages
Operating System Lecture 4
No ratings yet
Operating System Lecture 4
30 pages
Diana Fosha AEDP 文章 Positive Affects and the Transformation 原始
No ratings yet
Diana Fosha AEDP 文章 Positive Affects and the Transformation 原始
23 pages
S.T.A. Branca Idealair S.A.S.: (Low Quantity or Low Pressures Require Air Condenser Installation)
No ratings yet
S.T.A. Branca Idealair S.A.S.: (Low Quantity or Low Pressures Require Air Condenser Installation)
2 pages