ARM11的嵌入式免疫Linux内核研究

发布时间：2018-06-26 05:11

本文选题：嵌入式Linux + ARM11　；参考：《东华大学》2013年硕士论文

【摘要】：随着信息化、智能化、网络化的发展,嵌入式系统技术获得了广阔的发展空间,嵌入式系统已经遍及我们生活的方方面面,从工业控制到交通管理,从信息、家电到环境工程与自然,无不渗透着嵌入式系统技术。但嵌入式系统应用的广泛性也给其安全性、稳定性提出了新的挑战,近年来,嵌入式系统安全的问题频繁发生。本文从嵌入式操作系统的角度出发,并结合人工免疫的发展,利用操作系统免疫来提高嵌入式系统的安全性、稳定性、鲁棒性,首次提出了操作系统免疫的崭新概念。具体以S3C6410为处理器,嵌入式Linux内核为研究对象,完成了整个嵌入式系统的构建过程,即Uboot移植、Linux内核移植和文件系统的构建；分析了Linux内核进程调度机制,利用对自体进程和异体进程的划分,建立了进程调度免疫模型；初步分析了Linux内存管理的基本机理；分析了Linux系统调用机制、中断和异常处理机制；最后从文件系统的角度建立了基于正常模型的人工免疫系统,设计了正常模型的构建算法、自体／异体识别与消除算法、故障诊断与系统自修复算法。进程免疫实验结果表明,通过对就绪队列进行自体／异体进程的检测,能够有效阻止异体进程的执行,提高了系统的安全性,为下一步研究打下了良好的基础；文件系统上的人工免疫实验结果表明,基于正常模型的人工免疫系统能够有效识别自体和异体而不占用太多系统资源,识别算法快速而高效,对于外来异体包括病毒具有较好的免疫力；文件丢失检测与故障自修复算法能够有效修复系统受损自体,并恢复丢失的文件,保证了系统的完整性与鲁棒性。
[Abstract]:With the development of information, intelligence and networking, embedded system technology has gained a broad development space. Embedded system has spread all aspects of our life, from industrial control to traffic management, from information, Home appliances to environmental engineering and nature, all permeate embedded system technology. However, the security and stability of embedded systems are challenged by the wide application of embedded systems. In recent years, the security problems of embedded systems occur frequently. From the point of view of embedded operating system and the development of artificial immunity, this paper uses OS immunity to improve the security, stability and robustness of embedded system, and puts forward the new concept of OS immunity for the first time. Taking S3C6410 as the processor and the embedded Linux kernel as the research object, the whole embedded system construction process is completed, that is, the Uboot porting Linux kernel transplantation and the file system construction, the Linux kernel process scheduling mechanism is analyzed. The immune model of process scheduling is established by dividing autologous process and allogeneic process, the basic mechanism of Linux memory management is analyzed, the mechanism of Linux system call, interrupt and exception handling are analyzed. Finally, an artificial immune system based on normal model is established from the point of view of file system, and the normal model construction algorithm, auto-/ allogeneic recognition and elimination algorithm, fault diagnosis and system self-repair algorithm are designed. The experimental results of process immunity show that the detection of autologous / allogeneic processes in the ready queue can effectively prevent the execution of the allogeneic processes, improve the security of the system, and lay a good foundation for the next research. The experimental results of artificial immune system on file system show that the artificial immune system based on normal model can effectively identify autologous and allogeneic without taking up too many system resources, and the recognition algorithm is fast and efficient. The algorithm of file loss detection and fault self-repair can effectively repair the damaged self and restore the lost files, thus ensuring the integrity and robustness of the system.
【学位授予单位】：东华大学
【学位级别】：硕士
【学位授予年份】：2013
【分类号】：TP316.81;TP368.12

【参考文献】