Application program execution permission control method for operating system

Abstract

The invention discloses an application program execution permission control method for an operating system. The application program execution permission control method for the operating system comprises the following implementation steps of: 1) classifying self-contain application programs and foreign application programs of the operating system; 2) setting running status information in the operating system, wherein the running statuses at least comprise two system running statuses, and respectively setting execution rules for controlling application program execution permissions according to the classification of the application programs for the system running statuses; and 3) after the operating system is started up, entering a default system running status according to default running status information, and switching the current system running status of the operating system during running according to user commands; and when an execution request of an application program is received, checking the current system running status of the operating system, permitting or forbidding the execution request of the application program according to the execution rule corresponding the current system running status and the classification of the application program. The application program execution permission control method for the operating system has the advantages that the malicious software preventing ability is strong, the security and the reliability are high, the stability is high, the generality is good and the extendibility is strong.

Description

technical field [0001] The invention relates to the field of computer security, in particular to an application program execution authority control method used in an operating system for preventing malicious software. Background technique [0002] At present, with the continuous deepening of informatization, computer viruses such as viruses, Trojan horses, and worms are increasingly damaging information systems. How to protect information systems from damage is imminent. Through analysis, it can be found that almost all computer viruses are caused by users executing malicious programs intentionally or unintentionally. Malicious programs usually pretend to be normal programs or are bound to normal programs, inducing users to execute tampered malicious programs to achieve the purpose of destruction. Therefore, the installation and operation of software with potential safety hazards can easily damage the security of the information system, at least it will damage the stability...

AI Technical Summary

Problems solved by technology

However, the integrity detection method based on trusted computing needs to be supported by trusted computing chips such as TPM, and the integrity detection based on trusted computing chips for all software will have a great impact on system performance.

At the same time, due to reconfiguration caused by software installation and software upgrades, illegal software that has previously entered the system may be able to run. Therefore, there are certain security risks in software execution control based on trusted computing, which cannot effectively protect system security.

Images