Unlock instant, AI-driven research and patent intelligence for your innovation.

Windows system service descriptor table tamper-proofing apparatus and method

A system service description and service description technology, applied in the field of Windows system service descriptor table tamper-proof devices, can solve problems such as low security of Windows operating system, and achieve the effect of improving security

Inactive Publication Date: 2015-09-09
LANGCHAO ELECTRONIC INFORMATION IND CO LTD
View PDF8 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] For the method of tamper-proofing the system service descriptor table through the PatchGuard mechanism, when the Windows operating system is running in debug mode, the PatchGuard mechanism does not take effect, and hackers will put the operating mode of the Windows operating system in debug mode in the rootkit backdoor program , so that the system service descriptor table is tampered with, so the system service descriptor table is tamper-proof through the PatchGuard mechanism, and the security of the Windows operating system is low

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Windows system service descriptor table tamper-proofing apparatus and method
  • Windows system service descriptor table tamper-proofing apparatus and method
  • Windows system service descriptor table tamper-proofing apparatus and method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0032] The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the drawings in the embodiments of the present invention. Apparently, the described embodiments are only some of the embodiments of the present invention, but not all of them. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

[0033] Such as figure 1 As shown, an embodiment of the present invention provides a Windows system service descriptor table tamper-resistant device, including a main service process module 101, a CPU virtualization driver module 102 and an OS communication driver module 103;

[0034] The main service process module 101 is configured to install the CPU virtualization driver module 102 and the OS communication driver module 103;

[0035] The OS communica...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention provides a Windows system service descriptor table tamper-proofing apparatus and a Windows system service descriptor table tamper-proofing method. The apparatus comprises: a main service process module, a CPU virtualization driving module, and an OS communication driving module. The main service process module is configured to install the CPU virtualization driving module and the OS communication driving module; the OS communication driving module is configured to acquire a memory address range of a system service descriptor table; and the CPU virtualization driving module is configured to acquire a CPU command and intercept the CPU command tampering the system service descriptor table according to the memory address range of the system service descriptor table upon initialization. According to the present invention, secuirty of a Windows operating system can be improved.

Description

technical field [0001] The invention relates to the field of computer security, in particular to an anti-tampering device and method for a Windows system service descriptor table. Background technique [0002] With the continuous development of computer technology, users have higher and higher requirements for computer security. The operating system is the core part of the computer. Once the operating system is controlled and used by hackers or illegal users, the consequences will be disastrous. The system service descriptor table is a key component of the Windows operating system, and it is the unified entrance of all application layer APIs. Hackers often use their own Rootkit backdoor programs to tamper with the system service descriptor table in order to hide themselves and destroy the normal behavior of the system. , so preventing malicious tampering of the system service descriptor table is an urgent problem to be solved. [0003] At present, the anti-tampering methods...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/56
CPCG06F21/566G06F2221/034
Inventor 邢希双
Owner LANGCHAO ELECTRONIC INFORMATION IND CO LTD