博碩士論文 965202083 完整後設資料紀錄

DC 欄位 語言
DC.contributor資訊工程學系zh_TW
DC.creator葉怡群zh_TW
DC.creatorYi-chun Yehen_US
dc.date.accessioned2009-7-24T07:39:07Z
dc.date.available2009-7-24T07:39:07Z
dc.date.issued2009
dc.identifier.urihttp://ir.lib.ncu.edu.tw:88/thesis/view_etd.asp?URN=965202083
dc.contributor.department資訊工程學系zh_TW
DC.description國立中央大學zh_TW
DC.descriptionNational Central Universityen_US
dc.description.abstract近年來隨著行動裝置技術的快速進步,新的行動裝置在功能性方面遠遠超越過去,其中智慧型行動裝置所佔有的比重逐漸提高,今日的智慧型裝置如智慧型手機(smartphone)或個人行動助理(PDA)已普遍具備3.5G行動上網能力、GPS衛星定位系統、高解析度數位相機、無線網路、藍芽傳輸,這些特性讓裝置具備多樣化的資訊交換管道,使得智慧型裝置上所能進行的應用日漸豐富,也讓使用者能在裝置上進行更多的活動。而目前一台功能豐富的smartphone或PDA的價格相較過去也降低許多,因此智慧型行動裝置的普及率也大幅提昇。然而當行動裝置的功能越豐富,也將帶來更多可利用的弱點,其中包含了以往在個人電腦上出現的惡意程式威脅,如病毒(virus)、蠕蟲(worm)、木馬程式(trojan horse)、間諜程式(spyware)、隱匿程式(rootkit),可能造成裝置的破壞、受害者資料外洩、增加電信支出等等。因此有必要在裝置上建立偵測以及防禦的相關機制來加強裝置的安全性。 目前行動裝置主要所採用之系統包含iPhone、Android、Windows Mobile、Symbian,其中Windows Mobile系統是微軟公司以Windows CE核心為基礎,針對行動裝置的特性來設計的系統,Windows CE包含了桌上型電腦Windows系統之Win32 API的子集,提供了原先運行在Windows上程式的相容性,讓一般在PC執行的應用程式,只需對原始程式碼進行少部份修改再重新編譯後,即可移至Windows CE上執行;而在Windows CE上的32位元執行檔格式和Windows NT-based系統一樣,為PE(Portable Executable)格式,因此典型的檔案感染型之病毒程式,亦能輕易移植到Windows CE系統上執行,對其他執行檔進行感染。本論文提出一個在安裝Windows Mobile作業系統之smartphone或PDA上之檔案存取監控系統,透過在核心模式攔截系統呼叫,對檔案系統動作相關的服務處理函式進行監控,並針對病毒的擴散行為進行阻擋的動作。 zh_TW
dc.description.abstractIn recent years, as the result of the evolution of mobile device technology, newer mobile devices have gained much greater functionality continuously. Especially intelligent devices such as smart phones and personal digital assistants (PDAs) have ability to connect to 3.5G network, and they are equipped with GPS, high-resolution digital camera, WLAN, and Bluetooth in general. These features make devices can exchange information with other devices in many ways, perform more applications, and let users can use them to do more activities. Nowadays the price of them is not so expensive, so the popularity of intelligent devices is increasing quickly. However, the greater functionality gains, the more vulnerabilities on devices may appear. Those vulnerabilities are similar to which already existed in personal computer’s world, including malware threats. Malware includes virus, worm, trojan, spyware, rootkit, and so on. They may smash data on the device, monitor the user’s activities, steal important information, exhaust system resources, and generate more costs. Therefore, it is necessary to develop detecting and protecting approaches to enhance mobile devices’ security. Currently the most common operating systems used by mobile devices are iPhone, Android, Windows Mobile, and Symbian. The Windows Mobile system is based on Windows CE developed by Microsoft. Windows CE provides a subset of Win32 API which exists in desktop versions of Windows. This makes applications on desktop Windows compatible to Windows CE. The executable file format used on Windows CE is also Portable Executable as Windows NT-based system, therefore many traditional malware techniques can be ported to Windows CE easily. We aim at Windows Mobile devices and propose a kernel-mode file operation monitoring methods which can filter relative APIs to file operations in kernel space to prevent virus spreading. en_US
DC.subject行動裝置zh_TW
DC.subject惡意程式zh_TW
DC.subject感染執行檔zh_TW
DC.subjectfile infectoren_US
DC.subjectmalwareen_US
DC.subjectmobile deviceen_US
DC.title在行動裝置上以攔截檔案處理函式機制防止病毒擴散zh_TW
dc.language.isozh-TWzh-TW
DC.titleKernel-mode File Monitoring on Windows Mobile Deviceen_US
DC.type博碩士論文zh_TW
DC.typethesisen_US
DC.publisherNational Central Universityen_US

若有論文相關問題,請聯絡國立中央大學圖書館推廣服務組 TEL:(03)422-7151轉57407,或E-mail聯絡  - 隱私權政策聲明