一种融合用户级和内核级拦截的主动防御方案
发布时间:2019-06-12 21:08
【摘要】:通过对Windows环境下程序机理的分析研究,探索采用用户级别拦截、内核级别拦截相结合的主动防御技术实现对恶意入侵行为自动精确检测和自动识别,保障系统和网络的安全。实验结果表明,该技术对于未知恶意入侵及其变种的检测能力均优于单一方法和其他传统检测方法。
[Abstract]:Through the analysis and research of the program mechanism in Windows environment, the active defense technology of user level interception and kernel level interception is explored to realize the automatic and accurate detection and automatic identification of malicious intrusion behavior, so as to ensure the security of the system and the network. The experimental results show that the detection ability of this technique for unknown malicious intrusion and its variants is better than that of single method and other traditional detection methods.
【作者单位】: 浙江工业职业技术学院;浙江大学;
【基金】:国家自然科学基金资助项目(30900358/C100701) 浙江省教育厅科研资助项目(Y2011122724) 浙江省新世纪高等教育教学改革研究项目(yb09138)
【分类号】:TP393.08
[Abstract]:Through the analysis and research of the program mechanism in Windows environment, the active defense technology of user level interception and kernel level interception is explored to realize the automatic and accurate detection and automatic identification of malicious intrusion behavior, so as to ensure the security of the system and the network. The experimental results show that the detection ability of this technique for unknown malicious intrusion and its variants is better than that of single method and other traditional detection methods.
【作者单位】: 浙江工业职业技术学院;浙江大学;
【基金】:国家自然科学基金资助项目(30900358/C100701) 浙江省教育厅科研资助项目(Y2011122724) 浙江省新世纪高等教育教学改革研究项目(yb09138)
【分类号】:TP393.08
【相似文献】
相关期刊论文 前10条
1 陈顼颢;王志英;任江春;郑重;黄,
本文编号:2498301
本文链接:https://www.wllwen.com/guanlilunwen/ydhl/2498301.html
