Method for protecting integrity of kernel of operating system

An integrity protection, operating system technology, applied in the field of integrity monitoring and protection of the operating system kernel, can solve problems such as reduced practicability, and achieve the effect of protecting security and executing safely and efficiently
CN104809401AActive Publication Date: 2015-07-29NANJING UNIV
5 Cites 41 Cited by

Patent Information

Authority / Receiving Office
CN Β· China
Current Assignee / Owner
NANJING UNIV
Publication Date
2015-07-29

Smart Images

  • Figure 1
    Figure 1
  • Figure 2
    Figure 2
  • Figure 3
    Figure 3
Patent Text Reader

Abstract

The invention relates to a method for protecting integrity of a kernel of an operating system. An operating system kernel integrity protecting system comprises integrity protection software (IPS), a kernel hook, skip codes, a target operating system (Target OS) and a monitor protector. The method comprises the following steps: (1) starting up and initializing the monitor protector; after initializing is completed, waiting for request operation of the IPS; (2) logging in the IPS and setting a monitoring and protecting environment; (3) monitoring and protecting the integrity of the kernel of the Target OS; when a hook, arranged in the kernel, of the IPS is triggered, checking the integrity of the kernel of the Target OS, protecting a kernel event from occurring, and then, switching into the IPS for corresponding processing; (4) logging off the IPS and clearing the monitoring and protecting environment; clearing the monitoring and protecting environment established in the step (2), and recovering the normal operation of the Target OS.
Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention relates to the safety protection of the operating system, in particular to a method for monitoring and protecting the integrity of the operating system kernel. Background technique

[0002] The kernel code of the operating system has a large scale and complex structure, and in order to ensure the operating efficiency of the system, it is usually written in an unsafe programming language, so there are a large number of loopholes and errors in it. Attackers can use these vulnerabilities to attack the kernel, modify the key state of the kernel, and execute arbitrary malicious codes. Therefore, the operating system kernel is facing very serious security problems. Monitoring and protecting the integrity of the operating system kernel can effectively improve its security.

[0003] The integrity protection of the existing operating system kernel mostly adopts the mechanism of the virtual machine monitor VMM. These VMMs must provide virtualizati...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More