检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
机构地区:[1]南京航空航天大学计算机科学与技术学院,南京210016
出 处:《计算机科学》2012年第8期55-58,74,共5页Computer Science
基 金:基金项目(2009AA044601);国家863重大项目资助
摘 要:针对移动终端对病毒防治的高效率和轻量级需求,运用云安全技术对主机入侵防御系统(HIPS)进行改进,形成一种云监控模型。增加文件判断功能、将规则库和文件判断工作移至云端服务器,降低了系统占用,轻量化了客户端;改变规则制定策略,针对不同病毒制定不同规则,降低了规则的复杂性,提高了规则匹配效率;通过黑白名单技术和单步危险行为分析法,降低了客户端与服务器的通信代价,提高了文件判断效率;改变系统监测模式,变主动监控为被动监控,降低系统监测的工作时间,提高了云监控模型的工作效率。最后通过形式化方法证明了云监控模型的安全性。Aiming at the demand of the high efficiency and lightweight client of virus prevention for mobile terminal,this paper improved the HIPS by the technology of cloud security to form the cloud monitoring model.Through adding file property judge function and moving rule library and the work of file property judge to the server,the server system occupies was reduced.Through changing the strategy of rule-making,according to different virus set different rules,the complexity of the rules was reduced and the efficiency of rules matching was improved.Through the black and white list technology and a single step dangerous behavior analysis,the cost of communication between the client and server was reduced and the efficiency of file property judge was improved.Through changing monitoring mode,changing the active monitoring to passive,the working time was reduced and the working efficiency of the cloud monitoring model was improved.Finally,the formal method proves the security of the cloud monitoring model.
关 键 词:主机入侵防御系统 移动终端安全 实时监控 云安全
分 类 号:TP309.5[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:3.143.221.185
