| 一种借助系统调用实现基于信息流的完整性度量的方法 |
| |
| 引用本文: | 李翰超,李伟楠,石文昌.一种借助系统调用实现基于信息流的完整性度量的方法[J].计算机与数字工程,2010,38(8):1-5. |
| |
| 作者姓名: | 李翰超 李伟楠 石文昌 |
| |
| 作者单位: | 中国人民大学数据工程与知识工程教育部重点实验室,北京,100872;中国人民大学信息学院,北京,100872 |
| |
| 基金项目: | 国家863项目,国家自然科学基金项目,北京市自然科学基金项目 |
| |
| 摘 要: | 提出一种借助系统调用实现基于信息流的完整性度量的方法。该方法将度量过程分为离线阶段和运行阶段。在离线阶段,软件执行的系统调用被监控和记录,结合系统调用和信息流的关系抽象出软件的信息流基准值。在运行阶段,分析软件运行时的系统调用信息,获得软件运行时的信息流,根据信息流基准值检查软件的信息流是否出现异常,度量软件的完整性。为了验证方法的可行性,文章以Apache服务器为例,实现该方法的原型系统。实验表明该方法能够发现软件运行时完整性被破坏而出现的异常信息流。
|
| 关 键 词: | 完整性度量 信息流 系统调用 |
An Approach to Implementing Information-Flow-Based Integrity Measurement Via System Calls |
| |
| Li Hanchao,Li Weinan,Shi Wenchang.An Approach to Implementing Information-Flow-Based Integrity Measurement Via System Calls[J].Computer and Digital Engineering,2010,38(8):1-5. |
| |
| Authors: | Li Hanchao Li Weinan Shi Wenchang |
| |
| Affiliation: | Li Hanchao1),2) Li Weinan1),2) Shi Wenchang1),2)(Key Lab of Data Engineering and Knowledge Engineering of Ministry of Education,Renmin University of China1),Beijing 100872)(Information School,Renmin University of China2),Beijing 100872) |
| |
| Abstract: | An approach to implementing information-flow-based integrity measurement via system calls has been proposed.Our approach departs the measurement process into offline stage and online stage.On offline stage,system calls which are invoked by software have been monitored and recorded,then based on the relations between system calls and information flows,we Abstract the information flows baseline of the running software.On online stage,we obtain information flows by monitoring system calls executed by software,... |
| |
| Keywords: | integrity measurement information flow system calls |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
