摘要
恶意代码的生存周期包括恶意代码的产生、传播、隐藏和破坏。其中,隐藏是恶意代码生存周期中极其重要的一环。研究恶意代码的隐藏技术,了解隐藏技术的原理和关键技术,才能更好地防御恶意代码的攻击。目前,恶意代码的深层隐藏与检测技术已经成为当前计算机安全领域的一个研究热点。为了更深入地研究恶意代码,首先分析恶意代码的模糊变换和分片插入技术,然后利用M序列的随机性和状态遍历特性,提出了一种基于M序列的恶意代码分片插入机制。实验证明该机制能够有效提高恶意代码的随机性和抗分析能力。
The life cycle of the malicious code includes generation,transmission,hidden and disrupt.Among there,hidden is extremely important in the life cycle.In order to prevent the attack of malicious code,the principle and key technology of the hiding technology must be researched.Now,the deep hiding and detecting technology of malicious code has already become one of the research hotspots in the field of computer security.In order to have a deep study on the malicious code,firstly introduces the technology of splitting and inserting and the technology of obfuscating transformation for malicious code.Then basic the randomicity and all condition reached characteristics of M sequence,a technology of splitting and inserting based on M sequence is proposed.Test showed this method can improve the randomicity and anti-analyze ability of malicious code.
出处
《计算机技术与发展》
2010年第10期194-197,共4页
Computer Technology and Development
基金
国家863计划(2007AA701302
2009AA701202)
关键词
恶意代码
模糊变换
分片插入
M序列
malicious code
obfuscating transformation
splitting and inserting
M sequence