Method and device for protecting driving program, and electronic device

A driver and process technology, applied in computer security devices, electrical digital data processing, instruments, etc., can solve the problems of Windows operating system attacks, low security, and low efficiency of Windows operating system security protection, so as to improve security protection Efficiency, enhanced safety effects

Active Publication Date: 2016-08-10
ZHUHAI BAOQU TECH CO LTD
View PDF3 Cites 10 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] But the method for protecting the driver is to intercept the loading of the malicious driver through the Hook kernel NtLoadDriver function, but in the Windows operating system, there is another hidden method of loading the driver through statistical analysis, so that the malicious application can Through this concealed method of loading the driver, the malicious driver is loaded, thereby attacking the Windows operating system, resulting in low security protection efficiency and low security of the Windows operating system

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method and device for protecting driving program, and electronic device
  • Method and device for protecting driving program, and electronic device
  • Method and device for protecting driving program, and electronic device

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0049] Embodiments of the present invention will be described in detail below in conjunction with the accompanying drawings.

[0050] It should be clear that the described embodiments are only some of the embodiments of the present invention, not all of them. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without creative efforts fall within the protection scope of the present invention.

[0051] figure 1 It is a schematic flowchart of a method for protecting a driver program according to an embodiment of the present invention. see figure 1 , the method includes:

[0052] Step 11, when the hook function pre-injected into the kernel layer detects that the application layer process calls the preset driver loading function, hook the driver loading function;

[0053] In this step, as an optional embodiment, the driver loading function includes, but is not limited to: one or any combination of a kernel d...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The embodiment of the invention discloses a method and device for protecting a driving program, and an electronic device. The method comprises: hooking a driving program loading function when a hook function pre-injected into an inner nuclear layer function monitors that an application layer process invokes the preset driving program loading function; extracting a file path information of the application layer process invoking the driving program loading function and acquiring a driving program mapped with the file path information; and refusing a driving program loading request of the application layer process if the acquired driving program is the same as any one driving program in a preset driving program characteristic database. By applying the method, device and the electronic device, safety protection efficiency of an operation system can be improved.

Description

technical field [0001] The invention relates to computer network communication security technology, in particular to a method, device and electronic equipment for protecting a driver program. Background technique [0002] With the gradual disclosure of the technical details of the kernel layer of the Windows operating system, more and more malicious applications such as Trojan horses have begun to use kernel layer drivers to protect their own processes. The processes of malicious applications protected by kernel layer drivers can be End (kill) other processes in the Windows operating system, so that the malicious application process can maliciously attack the user's process or system process according to the intention of the malicious application provider, which may cause the computer to run unstable, or even Very large economic losses are brought to the user, for example, a driver corresponding to a malicious application is loaded, so that the malicious application can atta...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F21/51
CPCG06F21/51
Inventor 杨峰
Owner ZHUHAI BAOQU TECH CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap