| BIOS恶意代码实现及其检测系统设计 |
| |
| 引用本文: | 王晓箴,刘宝旭,潘林.BIOS恶意代码实现及其检测系统设计[J].计算机工程,2010,36(21):17-18,21. |
| |
| 作者姓名: | 王晓箴 刘宝旭 潘林 |
| |
| 作者单位: | (1. 中国科学院高能物理研究所计算中心,北京 100049;2. 中国科学院研究生院,北京 100049) |
| |
| 基金项目: | 国家科技支撑计划基金资助重点项目,北京市自然科学基金资助面上项目 |
| |
| 摘 要: | 根据基本输入输出系统(BIOS)恶意代码的植入方式,将其分为工业标准体系结构、高级配置和电源管理接口、外部设备互连模块恶意代码3类,分别对其实现过程进行研究。在此基础上,设计一种BIOS恶意代码检测系统,包括采样、模块分解、解压缩、恶意代码分析模块。应用结果表明,该系统能检测出BIOS镜像文件中植入的恶意代码,可有效增强BIOS的安全性。
|
| 关 键 词: | 基本输入输出系统 恶意代码 安全检测 |
BIOS Malicious Code Implementation and Its Detection System Design |
| |
| WANG Xiao-zhen,LIU Bao-xu,PAN Lin.BIOS Malicious Code Implementation and Its Detection System Design[J].Computer Engineering,2010,36(21):17-18,21. |
| |
| Authors: | WANG Xiao-zhen LIU Bao-xu PAN Lin |
| |
| Affiliation: | (1. Computing Center, Institute of High Energy Physics, Chinese Academy of Sciences, Beijing 100049, China; 2. Graduate University of Chinese Academy of Sciences, Beijing 100049, China) |
| |
| Abstract: | Based on the implantation method of Basic Input Output System(BIOS) malicious code, this paper divides the malicious code into Industry Standard Architecture(ISA), Advanced Configuration and Power management Interface(ACPI) and Peripheral Component Interconnect (PCI) module malicious code, and analyzes the implementation processes of three types of BIOS malicious code. It designs a BIOS malicious code detection system which includes the modules of sampling, module disassembling, decompressing and malicious code analyzing. Application results show that this system can detect the malicious code in BIOS image file, and it can effectively enhance the security of BIOS. |
| |
| Keywords: | Basic Input Output System(BIOS) malicious code security detection |
| 本文献已被 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程》浏览原始摘要信息 |
|
点击此处可从《计算机工程》下载全文 |
|
