首页 | 本学科首页   官方微博 | 高级检索  
     

基于WDK的过滤驱动反病毒技术研究
引用本文:陈睿,谢建全,张洪娜. 基于WDK的过滤驱动反病毒技术研究[J]. 现代计算机, 2011, 0(9): 16-19
作者姓名:陈睿  谢建全  张洪娜
作者单位:广东工业大学计算机学院,广州,510006
摘    要:提出利用工作在内核态的文件系统过滤驱动,捕获用户应用程序发往目标文件系统驱动的磁盘操作请求,直接对文件内容与特征码库中的病毒特征码进行匹配,检查是否含有病毒,有效地防止硬盘文件被病毒感染,降低系统调用的层数,避免状态的切换,因而有极高的效率,可以进行实时动态扫描。

关 键 词:文件系统过滤驱动  病毒特征码  病毒  实时动态扫描

Research on Filter Driver Anti-Virus Technology Based on WDK
CHEN Rui,XIE Jian-quan,ZHANG Hong-na. Research on Filter Driver Anti-Virus Technology Based on WDK[J]. Modem Computer, 2011, 0(9): 16-19
Authors:CHEN Rui  XIE Jian-quan  ZHANG Hong-na
Affiliation:(Department of Computer,Guangdong University of Technology,Guangzhou 510006)
Abstract:Uses file system filter driver to capture user application sent to the target file system driver disk operation requests,directly match the document with the signature library of virus signatures,check whether they contain viruses,it is effectively to prevent the hard disk file is infected,reduces the system call layer,avoids the state switch,which has high efficiency,can be real-time dynamic scanning.
Keywords:File System Filter Driver  Virus Signatures  Virus  Real-Time Dynamic Scanning
本文献已被 CNKI 万方数据 等数据库收录!
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号