Virtual machine introspection-based virus detection system and method

A technology of virus detection and virtual machine, applied in the information field, to achieve the effect of good memory isolation, enhanced isolation, security and reliability guarantee

Inactive Publication Date: 2018-11-06
CHANGSHA WENDUN INFORMATION TECH
View PDF3 Cites 8 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0015] The purpose of the present invention is to provide a virus detection system and method based on virtual machine introspection to sol

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Virtual machine introspection-based virus detection system and method
  • Virtual machine introspection-based virus detection system and method
  • Virtual machine introspection-based virus detection system and method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0061] The embodiments of the present invention will be described in detail below with reference to the accompanying drawings, but the present invention can be implemented in various ways defined and covered by the claims.

[0062] see Figure 1 to Figure 5 , a virus detection system based on virtual machine introspection of the present invention, including two parts of a virus behavior feature library and a process behavior tracking data module based on a virtual machine introspection tool, which are respectively connected to the process behavior analysis module for comparison by the latter detection; wherein, the virus behavior signature library is connected to a virus behavior analysis module for automatic analysis of virus samples.

[0063] A virus detection method based on virtual machine introspection corresponding to the above system, including steps:

[0064] S1. Establish a virus sample library, use the virus behavior analysis module to automatically analyze the viru...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a virtual machine introspection-based virus detection system and method, and aims at detecting external parts of virtual machines so as to improve the integral safety of virtualization systems. The virus detection system comprises a virus behavior feature library and a process behavior tracing data module on the basis of a virtual machine introspection tool, wherein the virus behavior feature library and the process behavior tracing data module are respectively connected with a process behavior analysis module so that comparison and detection can be carried out by the process behavior analysis module; and the virus behavior feature library is connected with the virus behavior analysis module which is used for automatically analyzing virus samples. According to the system and method, operation states in virtual machines can be monitored without modifying virtual machine systems or installing any software and tool, process behaviors in the virtual machines are utilized to judge whether virus programs are operated or not, and operations such as shutdown and the like can be carried out on the virtual machines with safety threats.

Description

technical field [0001] The present invention relates to the field of information technology, in particular to a virus detection system and method based on virtual machine introspection. Background technique [0002] The computing world has undergone tremendous changes over the past few decades. With the change of computer application requirements, the Internet is gradually breaking the division of regions and becoming a unified large market. With the wave of "cloud computing", it can be said that information technology has gradually entered the era of cloud services. In the cloud environment, users do not need to purchase high-performance hardware and software with diverse functions. They only need to connect to the cloud and use various software or services provided by the cloud to directly process and store data. [0003] As the core technology of cloud computing, virtualization technology has developed and progressed to meet the needs of cloud computing technology. Thro...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): G06F9/455G06F21/56
CPCG06F9/45558G06F21/566G06F2009/45587
Inventor 任江春
Owner CHANGSHA WENDUN INFORMATION TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap