Secure attention key

From HandWiki

A secure attention key (SAK), special attention key,[1] or secure attention sequence (SAS)[2] is a special key, key combination or sequence to be pressed on a computer keyboard before a login screen which must, to the user, be completely trustworthy. The operating system kernel, which interacts directly with the hardware, or init system is able to detect whether the secure attention key has been pressed. When this event is detected, the trusted login processing is started.

The secure attention key is designed to make login spoofing impossible, as the kernel will suspend any program, including those masquerading as the computer's login process, before starting a trustable login operation.

Examples

Some examples are:

  • : Introduced in systemd v257 as a more reliable SAK for Linux distributions but may require support from the currently running desktop environment.[3] It is implemented as of gdm (GNOME display manager) 47.[4]
  • on X Window System immediately kills the X server (although the key combination can be disabled[5]) and can be used to quickly and easily get back to the login prompt.[6]
  • [[Magic SysRq key|]] default sequence for Linux.[7] Not a true C2-compliant SAK.[8]
  • then on AIX,[9] but it can be disabled.[10][11]
  • for PLATO IV in the 1970s.[12]
  • [[Control-Alt-Delete#Windows NT family|]] for Windows NT.[2][13]

See also

References

  1. Lennart Poettering (2024-11-07). "Lennart Poettterin on Mastodon". https://mastodon.social/@pid_eins/113441346864726148. Retrieved 2025-03-26. 
  2. 2.0 2.1 Microsoft (7 January 2021). "S (Security Glossary) - Win32 apps | Microsoft Learn". https://learn.microsoft.com/en-us/windows/win32/secgloss/s-gly#_SECURITY_SECURE_ATTENTION_SEQUENCE_GLY. 
  3. Lennart Poettering (2024-11-07). "Lennart Poettterin on Mastodon". https://mastodon.social/@pid_eins/113441386934639615. Retrieved 2025-03-26. 
  4. Ray Strode (2024-09-11). "47.rc". https://gitlab.gnome.org/GNOME/gdm/-/commit/969ffab4855b12d6901fc06d1a844583f294fb50. Retrieved 2025-03-26. 
  5. dhcp198-158 (2010-06-12). "XorgCtrlAltBackspace". https://wiki.ubuntu.com/XorgCtrlAltBackspace. Retrieved 2025-03-26. 
  6. "Enabling the Ctrl+Alt+Backspace Shortcut". https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/7/html/desktop_migration_and_administration_guide/enable-ctrl-alt-backspace#enable-ctrl-alt-backspace. Retrieved 2025-03-26. 
  7. Andrew Morton (2001-03-18). "Linux 2.4.2 Secure Attention Key (SAK) handling". Linux Kernel Organization. https://www.kernel.org/doc/Documentation/SAK.txt. Retrieved 2011-05-30. 
  8. "Linux Magic System Request Key Hacks". kernel.org. 2013-08-12. https://www.kernel.org/doc/html/latest/admin-guide/sysrq.html. Retrieved 2017-05-21. 
  9. IBM (2025-02-03). "Using the Secure Attention Key". https://www.ibm.com/docs/en/aix/7.3?topic=options-using-secure-attention-key. Retrieved 2025-03-26. 
  10. IBM (2025-02-03). "Configuring the Secure Attention Key". https://www.ibm.com/docs/en/aix/7.3?topic=options-configuring-secure-attention-key. Retrieved 2025-03-26. 
  11. IBM (2025-02-20). "AIX Default Attributes". https://www.ibm.com/docs/en/sig-and-i/10.0.2?topic=information-aix-default-attributes. Retrieved 2025-03-26. 
  12. Control Data Corporation (1981-04-30). "PLATO User's Guide". http://www.bitsavers.org/pdf/cdc/plato/97405900C_PLATO_Users_Guide_Apr81.pdf. Retrieved 2023-04-21. 
  13. "Secure Attention Sequence (SAS) - Network Encyclopedia". 6 January 2020. https://networkencyclopedia.com/secure-attention-sequence-sas/. 




Retrieved from "https://handwiki.org/wiki/index.php?title=Secure_attention_key&oldid=3976807"