|
|||||
|
|
| 恶意代码的机理与模型研究 | |
| 引用本文: | 刘毅,陈泽茂,沈昌祥.恶意代码的机理与模型研究[J].计算机工程与设计,2008,29(22). |
| 作者姓名: | 刘毅 陈泽茂 沈昌祥 |
| 作者单位: | 1. 解放军信息工程大学,河南,郑州,450002 2. 海军工程大学,信息安全系,湖北,武汉,430033 3. 北京工业大学,计算机科学与技术学院,北京,100022 |
| 基金项目: | 国家重点基础研究发展计划(973计划),国家重点基础研究发展计划(973计划) |
| 摘 要: | 恶意代码是信息系统安全的主要威胁之一.从操作系统体系结构的角度研究了恶意代码的产生根源,指出PC操作系统中存在特权主体、内核扩展机制不安全,程序执行环境保护不力等弱点是造成恶意代码泛滥的本质原因.基于F.Cohen的计算机病毒定义,对计算机病毒的传播机理进行了形式化描述.研究了蠕虫程序的模块结构.建立了数据驱动型软件攻击的理论模型,分析了其构成威胁的本质原因. |
| 关 键 词: | 恶意代码 计算机病毒模型 蠕虫程序模型 数据驱动攻击 软件攻击 操作系统安全 |
Research on origin and mechanism of malicious code |
|
| LIU Yi,CHEN Ze-mao,SHEN Chang-xiang.Research on origin and mechanism of malicious code[J].Computer Engineering and Design,2008,29(22). | |
| Authors: | LIU Yi CHEN Ze-mao SHEN Chang-xiang |
| Affiliation: | LIU Yi1,CHEN Ze-mao2,SHEN Chang-xiang3(1.PLA University of Information Engineering,Zhengzhou 450002,China,2.Department of Information Security,Naval University of Engineering,Wuhan 430033,3.College of Computer Science , Technology,Beijing Industry University,Beijing 100022,China) |
| Abstract: | Malicious code is one of the major threats to information system security.The origin of malicious codes is investigated by the aspect of operating system architecture.Existence of privileged subjects,non-secure kernel extensions,and code execution envi-ronment not effectively protected are concluded as the essential reasons for the origin of various malicious codes.Based on F.Cohen's definition of computer virus,propagation of computer virus is formally described.Model of data-driven software attack,which i... |
| Keywords: | malicious code computer virus model worm program model data-driven attack software attack operating system security |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! | |