虚拟化平台构建操作系统函数调用关系方法

Abstract

Abstract: To improve the compatibility of operating system kernel function call relations generation，a generation method based on hardware virtualization is proposed． This method replaces the kernel instructions in specific position with special instructions． These special instructions trigger virtualization interrupt trapping when the function is calling or called． So the virtual machine monitor can dynamically generate the operating system's kernel calling relations in the interrupt trapping． Experimental results show that this method can generate either open-source or closed-source，32 bit or 64 bit operating system's kernel function calling relations without relying on kernel source code or compilers． The accuracy of the generation is 100% and recall is 85%． This method can be used in the operating system kernel security analysis and whitelist generation．

Key words: function calling relation, operating system kernel, hardware virtualization

CLC Number:

TP399

LIU Wangtong, LUO Senlin, YAN Guanglu, PAN Limin, QAMAS GUL KHAN SAFI. Hardware Virtualization Based Operation System Kernel Function Call Ｒelations Generation Method[J].Journal of Jilin University (Information Science Edition), 2019, 37(1): 40-46.

[1]	TANG Bohao，CAI Lihua，GAO Ce，ZHANG Tao. Ｒesearch on Calibration of Course with Starfor Electro-Optical Theodolite [J]. Journal of Jilin University(Information Science Ed, 2018, 36(3): 246-251.
[2]	DU Hongjun, LI Wei, ZHAO Yongbin, JIN Chengming. Research on Cloud Computing Infrastructure Based on OpenStack System [J]. Journal of Jilin University(Information Science Ed, 2018, 36(2): 213-216.
[3]	ZHU Jin, LI Jiansong, JIANG Zilong, SHEN Li. Research on Methods and Characteristics of Dynamic Simulation Analysis of Spatial Distribution Patterns of Regional Population at Multiple Geographical Scales [J]. Journal of Jilin University(Information Science Ed, 2017, 35(5): 533-543.
[4]	YANG Yongjian, NIE Yu, WU Yang, SUN Guangzhi, YANG Zhongyao. New Emotional Evaluate Method Based on SVM [J]. Journal of Jilin University(Information Science Ed, 2017, 35(4): 438-442.
[5]	LI Yang,LAN Qingyuan,SUN Qian . Research of Information Frequency Effect on Stock Valuations Based on Chinese A-Share Stock Market [J]. Journal of Jilin University(Information Science Ed, 2017, 35(1): 98-103.
[6]	GAO Siyuan, WANG Yandong, ZHANG Hongwei. Analysis and Optimization of Real-Time Software in Data Recorder Based on UAV [J]. Journal of Jilin University(Information Science Ed, 2015, 33(3): 286-291.
[7]	WANG Qiong, WANG Lei, REN Weijian. Research on Estimating Parameters of Weibull Distribution Model Based on FPSO-SA [J]. Journal of Jilin University(Information Science Ed, 2014, 32(5): 476-483.
[8]	WEN Liangjun, ZHENG Hong. Multi-Stages Informative Gene Set Selection Algorithm in Microarray Expression Profiles [J]. Journal of Jilin University(Information Science Ed, 2014, 32(5): 550-555.
[9]	LI Yuan, JANG Heng, WANG Gang. Research on Cloud Computing Application Based on IDC [J]. Journal of Jilin University(Information Science Ed, 2014, 32(4): 446-449.
[10]	LI Lei. Study on Incentive Mechanism of Supply Chain Based on Rank-Order Tournaments [J]. Journal of Jilin University(Information Science Ed, 2013, 31(4): 425-431.
[11]	LIU Zhen, MAO Jun, CHEN Hong-yue. Multi-Rigid-Body System Dynamics in Dynamic Modeling Application of Bolting Machine [J]. Journal of Jilin University(Information Science Ed, 2013, 31(3): 290-296.
[12]	YANG Liu, LIU Tie-ying. GPU Architecture of Parallel Computing [J]. J4, 2012, 30(6): 630-633.
[13]	MENG Qing-xia\|XU Bao-lin. New Progress of \|siRNA Molecular Design [J]. J4, 2012, 30(2): 198-202.
[14]	XU Bao-Lin, XU Da-Chuan, GAO Dong, ZHANG Gao, LIU Yuan-Ning. Method for Prediction of RNA Interference Efficiency Based on Sirna Sequence Characteristics [J]. J4, 2011, 29(5): 436-443.
[15]	WANG Ying-shuang^1, ZHOU Yu-qin^2, HUANG Lan^2. Research on Prediction of Automobile Customer Behaviors Based on CRM [J]. J4, 2008, 26(06): 0-0.

Hardware Virtualization Based Operation System Kernel Function Call Ｒelations Generation Method

PDF (PC)

Like

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Metrics

Comments

Recommended 10