Unlock instant, AI-driven research and patent intelligence for your innovation.

Method for embedding inner core drive program in Window operation system by optical disk start-up

A driver and operating system technology, applied in the field of computer security, can solve problems such as data changes and data not allowed to be modified, and achieve novel design effects

Inactive Publication Date: 2008-08-06
BEIJING INSTITUTE OF TECHNOLOGYGY
View PDF0 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

This method modifies the registry and file system. Even if these modifications are deleted from the registry and file system later, the local hard disk will still retain the modified traces; copying the driver and modifying the registry will overwrite the original sectors on the hard disk The data in the hard disk, resulting in the change of the data on the hard disk
In applications such as computer crime and forensics, it is necessary to embed the kernel driver into the Windows operating system to complete certain functions, but the data on the hard disk is not allowed to be modified

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method for embedding inner core drive program in Window operation system by optical disk start-up
  • Method for embedding inner core drive program in Window operation system by optical disk start-up

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0014] The present invention will be further described in detail below in conjunction with the accompanying drawings and specific embodiments. The present invention is not limited to the following embodiments, and any designs that utilize the design ideas of the present invention and make some simple changes should fall within the scope of protection of the present invention.

[0015] The CD serves as the carrier for the loader and the kernel drivers used for demonstration, such as figure 1 . The loader is stored in the storage space from 0xA000 to 0xA7FF of the CD, and the kernel driver used for demonstration is stored in the storage space from 0x0000 to 0x7FFF of the CD.

[0016] The kernel drivers of the Windows operating system are divided into bus drivers, function drivers, and filter drivers. The bus driver is responsible for enumerating connected devices on the bus, such as USB bus driver (usbhub.sys), PCI bus driver (pci.sys); Windows also supports virtual bus driver...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention relates to the computer security field, and particularly provides a method of embedding kernel drivers in Windows operating systems. The present invention comprises a compact disc, a load program stored in memory spaces from 0xA000 to 0xA7FF of the compact disc, and a kernel driver for demonstration stored in memory spaces from 0x0000 to 0x7FFF of the compact disc. When a computer is started from the compact disc, a BIOS reads the load program into a memory for execution. The load program embeds the kernel driver for demonstration into a Windows operating system by modifying the data in the memories. The functions of the kernel driver for demonstration can be changed according to concrete needs. The method is novel in design, embeds the kernel driver into the Windows operating system during startup, does not need to copy the kernel driver onto a hard disk or modify the registry on the hard disk, has concealment property, and does not need to store the kernel driver on the hard disk.

Description

technical field [0001] The invention relates to the field of computer security, and specifically provides a method for embedding a kernel driver program in a Windows operating system. Background technique [0002] The common method of embedding the kernel driver program into the Windows operating system is to copy the kernel driver program to the system directory and modify the registry through the installation program. This method modifies the registry and file system. Even if these modifications are deleted from the registry and file system later, the local hard disk will still retain the modified traces; copying the driver and modifying the registry will overwrite the original sectors on the hard disk The data in the hard disk causes changes to the data on the hard disk. In applications such as computer crime and forensics, it is necessary to embed the kernel driver program in the Windows operating system to complete certain functions, but the data on the hard disk is no...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F9/445G06F21/00G06F21/52
Inventor 谭毓安王佐
Owner BEIJING INSTITUTE OF TECHNOLOGYGY