TIAN Yu-hong,WANG Ze-bing,FENG Yan

DOI: https://doi.org/10.3969/j.issn.1000-7024.2006.24.029

2006-01-01

Abstract:The Java virtual machine(JVM)is used more frequently as the basic engine behind dynamic web services.With the proliferation of network attacks on these network resources,much work are done to provide security for the network environment.Little effort has been placed on securing a Java web server where the attacker has a valid login to the host machine.After describing the vulnerabilities in Java's security mechanisms,an extended security system based on Java 2 security architecture is introduced.It also explains the runtime status of system.The increased assurance of correct system operation and the integrity of Java application server are provided.

黄益民,平玲娣,潘雪增

DOI: https://doi.org/10.3785/j.issn.1008-973x.2001.06.005

2001-01-01

Abstract:After study of existing security models; analysis of information flow model, Bell-LaPadula(BLP) access control model and Biba access control model; and collation and comparison of their advantages and disadvantages, an improved model is put forward that satisfies the actual demands of information security. An implementation strategy is put forward that ensures information security, reliability, practicality and compatibility in the designed security system. An implementation scheme of this security system and its components and functions is provided. This system combines the following functions: mandatory access contro1, privilege separation, security audit, identity authentication and self-protection. It achieves the level 3 of national information security standard and level B1 of TCSEC standard. It was implemented in the Windows NT and Linux operating system and has yielded good resultsin application.

MAO Weifeng,PING Lingdi,JIANG Li,CHEN Xiaoping

DOI: https://doi.org/10.3969/j.issn.1000-3428.2006.12.068

2006-01-01

Abstract:SECOS is a secure operating system with independent intellectual property right,which accords with the requirements of level 4 secure operation system technology.This paper illustrates some key issues of the system,including design method for enchancement of security,improved model from the Bell-La Padula MAC(mandatory access control) implementation,the realization of the model,formal method during the system development,conversiion channel analysis and its prevention,and secure deletion.The performance evaluation shows the design and implementation of SECOS is effective.

FU Zhuo-yi,WANG Yi-jun,XUE Zhi

DOI: https://doi.org/10.3969/j.issn.1009-8054.2013.11.012

2013-01-01

Abstract:Windows operating system is a widely-used operating system,and its security mechanism is always a hot research field.The latest Windows 8 has received great improvement in its security mechanism,and thus draws much attention from the people.The article,starting from the security of user mode,kernel mode and hardware layer,combs up and summarizes Windows 8's security improvement. On this basis,this article puts forward some bypass and defensive measures.Finally,it discusses the future rsearch direction.

LU Ting-ting,WANG Jun-feng

DOI: https://doi.org/10.11959/j.issn.2096-109x.2017.00208

2017-01-01

Abstract:Over the past three decades,attacks exploiting Windows memory holes have emerged in an endless stream,and the usual means is to attack control-data to hijack the execution flow of the program.To this end,Microsoft has added layers of protection mechanisms to Windows to prevent such attacks.But at this stage,the defensive mechanisms deployed on Windows cannot prevent attacks against non-control-data.In view of the published articles lacking comprehensive study of Windows memory protection mechanism,a detailed introduction to Windows memory protection mechanism and its breakthrough techniques,and non-control-data protection research status was conducted.On this basis,the challenges of Windows memory protection were analyzed and the future of memory protection was discussed.

ZHOU Hu-sheng,WEN Wei-ping,YIN Liang,FU Jun

DOI: https://doi.org/10.3969/j.issn.1671-1122.2011.07.014

2011-01-01

Abstract:GS Stack Protection,SafeSEH,Heap Protection,DEP,ASLR are five key technologies for the memory protection mechanism of Windows 7,these technologies significantly contribute to mitigate buffer overflow attacks.Based on the analysis of these technologies,we also tested the possibility of bypassing the protection mechanisms in Windows 7.Evaluating the effect of resisting buffer overflow of Windows 7,we pointed out that Windows 7 couldn't resist the buffer overflow attacks absolutely.Finally several measures were introduced to improve system security more comprehensively.

HU Jie,WANG Jun-feng

DOI: https://doi.org/10.3969/j.issn.1674-6236.2013.08.013

2013-01-01

Abstract:The potential safety hazards of the operating system during the installation and operation have been analyzed.Some of the system default configuration usually had many unsafe factors,such as easy to collapse,susceptible to virus or Trojan virus and possible for outlaws to steal individual information if not modified by the users.Some corresponding precautionary measures,which were universal,were put forward to improve the system safety and antiviral ability.

魏强,韦韬,王嘉捷

DOI: https://doi.org/10.16511/j.cnki.qhdxxb.2011.10.015

2011-01-01

Abstract:Vulnerability exploitation and its mitigation technologies have always been important in vulnerability offense and defense research.Major operating systems and compilers provide support for exploit mitigation.This paper summarizes research on heap protection,address randomization,sandbox protection and other related technologies which have been developed.Among them,the three rounds of combat for GS and SafeSEH for stack protection focus on both offensive and defensive strategies.ROP,DeActive,Spray breakthroughs and counterattacking are analyzed to illustrate the evolution of data execution prevention.The truncation attack vector is used to monitor data integration destruction,undermine reliable exploitation,prevent control flow redirection,and isolate failure risk.Current exploit mitigation methods use data integrity testing protection,memory features removal based protection,execution control based protection,and fault isolation protection.The lack of bypass protection and other protection measure make existing mitigation methods less effective for protecting data flow hijacking and compound attack vectors.

MAO Ning-xiang,WEN Wei-ping,FU Jun

DOI: https://doi.org/10.3969/j.issn.1671-1122.2011.07.010

2011-01-01

Abstract:The harm caused by software vulnerabilities is increasing.To increase the difficulty of the attack launched by attacker,Windows gradually supports DEP and ASLR and other security mechanisms at the system level.Other software can apply these mechanisms easily.So IE browser can also apply these mechanisms to increase its security.However,there are still many methods which can bypass these mechanisms in IE browser.This paper provides details about DEP and ASLR protection mechanisms and also gives examples which demonstrate how Heap Spray and ROP attack happen.

CHEN Hui,ZHOU Xue-Hai,CHEN Xiang-Lan

DOI: https://doi.org/10.3969/j.issn.1003-3254.2010.12.003

2010-01-01

Abstract:Security is always a hot topic with the development of computer technologies.Currently,mechanisms like active defense,detection and anti-detection are proposed.They could be implemented on different levels such as application-level and kernel-level in the system.We manage to go to the system-level.Linux owns mature security-enhanced version SELinux.For Windows,we focus on mandatory access control and propose a mechanism with improved efficiency,compatibility and stability.

马一楠,张立和

DOI: https://doi.org/10.3969/j.issn.1000-3428.2010.17.050

2010-01-01

Abstract:In this paper,the main buffer overflow protection mechanism is summarized under the current Windows platform,and the method and technologies about bypassing these protection mechanisms are studied,which can increase the success rate of vulnerabilities analysis and use,and guide to improve the security of the operating system.The paper describes the development of the current main technologies on bypassing the buffer overflow protection mechanisms.The principles and methods about bypassing stack overflow protection,heap overflow protection Data Execution Prevention(DEP) are all given.Effectiveness of the methods of bypassing DEP is verified through an experiment.

刘尊,李伟华,王涛

DOI: https://doi.org/10.3724/sp.j.1087.2009.02319

2009-01-01

Abstract:A Usable Security Protected Model(USPM)for operating system was proposed and implemented.This model provided enough security for operating system with good compatibility and less special configuration.With this model,one can keep the secret of confidential documents and protect important files from being damaged even after a successful attack.The authors used a rule that limited the activities of processes who communicated with the remote system to ensure the security of the operating system and a number of exceptions that permitted particular activities of particular process to improve the usability of the system.A set of tests show that the model is easy to use,and it has good security,lower costs and good compatibility.

Chen Wen-Zhi,Zhu Hong-Wei,Huang Wei

DOI: https://doi.org/10.1109/CW.2008.110

2008-01-01

Abstract:The security problem became more severe since the security requirement of different applications may conflict with the others in distributed application or grid computing. Virtualization technology can improvethe system's security, but did not satisfy the requirement of virtual resource sharing and inner-domain communication in distributed services and grid computing. By dividing the virtual resources into sharing virtual resources and normal ones, SeVMM provided secure mechanism for inter-domain communication control, which formed the base of multi-level security control model for virtual machine monitors, operating systems and applications. Case study and application showed that SeVMM improved the system's security without causing significant performance penalty.

WEN Weiping,ZHANG Puhan,XU Youfu,YIN Liang

2011-01-01

Abstract:Windows is the world's most widely used desktop operating system,so security vulnerabilities in windows have an enormous impact on system security and exploiting vulnerabilities in the Windows operating system has great significance.At present,the discovery of software security vulnerabilities depends mainly on the experience and luck of security researchers since they lack systematic and effective methods to find vulnerabilities.To more quickly find a class of vulnerabilities,this paper focuses on patch vulnerability with four types of security threat modes introduced patches.Then this paper describes a software security vulnerability exploitation method based on patch comparison.This method can be used to solve the semi-automatically find Windows vulnerabilities with patches.This method found unknown Windows operating system vulnerabilities to verify its effectiveness.

Ashvini A Kulshrestha,Guanqun Song,Ting Zhu

DOI: https://doi.org/10.48550/arXiv.2312.15150

2023-12-23

Abstract:The year 2022 saw a significant increase in Microsoft vulnerabilities, reaching an all-time high in the past decade. With new vulnerabilities constantly emerging, there is an urgent need for proactive approaches to harden systems and protect them from potential cyber threats. This project aims to investigate the vulnerabilities of the Windows Operating System and explore the effectiveness of key security features such as BitLocker, Microsoft Defender, and Windows Firewall in addressing these threats. To achieve this, various security threats are simulated in controlled environments using coded examples, allowing for a thorough evaluation of the security solutions' effectiveness. Based on the results, this study will provide recommendations for mitigation strategies to enhance system security and strengthen the protection provided by Windows security features. By identifying potential weaknesses and areas of improvement in the Windows security infrastructure, this project will contribute to the development of more robust and resilient security solutions that can better safeguard systems against emerging cyber threats.

Cryptography and Security

陶照平,黄皓

2012-01-01

Abstract:Through analysis of the data management of windows operating system and the technology of hardware assist virtualization,a data protection model is developed to protect the sensitive data of the application program.Then a sensitive data protection system based on hypervisor is developed.The attacks for static data are effectively blocked by pretreatment encryption technology and the physical page frame encryption technology.Hiding the plaintext of the application is achieved by double shadow page table and data execution protection technology.The system monitors the access control of page table to prevent protected area of application to be maliciously modified.

Xiao-zhe LI,Mei-jun ZANG,Yi-qi DAI

DOI: https://doi.org/10.3969/j.issn.1672-464X.2008.04.015

2008-01-01

Abstract:Nowadays,Windows operating system is the most prevalent OS,and its security problem is widely concerned by users.System call interception is an efficient way to control accesses to the Windows system resource.This paper introduces and implements an API HOOK method to intercept Windows system calls,and exploits it to control host behaviors.By experiments,we prove that this system call interception method can control host access to system resources,which improves the security level of Windows OS.

YUAN Chun-Yang,LI Lin,SHI Wen-Chang,LIANG Hong-Liang,HE Ye-Ping

DOI: https://doi.org/10.3969/j.issn.1002-137X.2007.08.081

2007-01-01

Computer Science

Abstract:SECIMOS,a high-level secure operating system based on Linux is developed by the way of improve/enhance.Its design and implementation is discussed in this paper.The system framework and key techniques,including access control,accountability and assurance methods,are given.The problems of the "improve/enhance" approach are analyzed.It indicates new suitable approach to develop the highest-level secure operating system should be researched further.

HE Hong-jun,CAO Si-hua,CHU Zu-gao,LUO Li,NING Jing-xuan,DONG Li-ming,LI Peng,Zu G. Chu

DOI: https://doi.org/10.3969/j.issn.1001-2486.2008.03.014

2008-01-01

Abstract:Based on the presentation of the security vulnerability of the event-driven system,this paper points out the deep reasons for the vulnerability of system:(1) The system ignores the inherent correlation among events;(2) The system trusts events from any sources without condition.In view of these two reasons,this paper presents an analytical model for security of event sequence,and an evaluation model of trustworthiness based on event source. Furthermore,this paper constructs an improved event-driven system infrastructure based on the two models.

Ennan Zhai,Qingni Shen,Yonggang Wang,Tao Yang,Liping Ding,Sihan Qing

DOI: https://doi.org/10.1007/978-3-642-20291-9_38

2011-01-01

Abstract:Host compromise is a serious security problem for operating systems. Most previous solutions based on integrity protection models are difficult to use: on the other hand, usable integrity protection models can only provide limited protection. This paper presents SecGuard, a secure and practical integrity protection model. To ensure the security of systems. SecGuard provides provable guarantees for operating systems to defend against three categories of threats: network-based threat, IPC communication threat and contaminative file threat. To ensure practicability, SecGuard introduces several novel techniques. For example, SecGuard leverages the information of existing discretionary access control information to initialize integrity labels for subjects and objects in the system. We developed the prototype system of SecGuard based on Linux Security Modules framework (LSM), and evaluated the security and practicability of SecGuard.