首页 | 官方网站   微博 | 高级检索  
     

一种基于数据流依赖关系的可信恢复方法
引用本文:包必显,曾庆凯.一种基于数据流依赖关系的可信恢复方法[J].计算机应用,2008,28(10):2467-2470.
作者姓名:包必显  曾庆凯
作者单位:南京大学,计算机软件新技术国家重点实验室,南京,210093;南京大学,计算机科学与技术系,南京,210093
基金项目:国家自然科学基金,国家高技术研究发展计划(863计划)
摘    要:提出了一种基于进程间数据流依赖关系的可信恢复方法,通过对进程系统调用的实时监控发现系统异常行为,并评估系统受到的破坏,进行系统恢复。基于该方法,实现了一个原型系统DFDTR。与传统恢复方法相比,它在恢复系统的同时保留了系统的合法操作,提高了恢复的精度和效率。实验表明,本恢复功能增加系统约10%的CPU负载,所耗费的存储开销也是合理的。

关 键 词:安全操作系统  可信恢复  数据流依赖  入侵检测
收稿时间:2008-04-14

Data-flow dependency-based trusted recovery method
BAO Bi-xian,ZENG Qing-kai.Data-flow dependency-based trusted recovery method[J].journal of Computer Applications,2008,28(10):2467-2470.
Authors:BAO Bi-xian  ZENG Qing-kai
Affiliation:BAO Bi-xian1,2,ZENG Qing-kai1,2 (1. State Key Laboratory for Novel Software Technology,Nanjing University,Nanjing Jiangsu 210093,China,2. Department of Computer Science , Technology,China)
Abstract:To effectively recover system states under intrusion situation, an inter-process system recovery method based on data-flow dependency was presented. By real-time monitoring of system calls, abnormal behaviors were detected and damages of the protected system were evaluated. According to the evaluation, the system was recovered. Legal operations were preserved to improve the accuracy and efficiency of recovery. A prototype system was implemented by the method. Experimental results show that the method has be...
Keywords:secure operating system  trusted recovery  data-flow dependency  intrusion detection
本文献已被 CNKI 维普 万方数据 等数据库收录!
点击此处可从《计算机应用》浏览原始摘要信息
点击此处可从《计算机应用》下载全文
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司    京ICP备09084417号-23

京公网安备 11010802026262号