| It becomes a very new method in research field that people get inspiration from the natural to solve the science problem, research the rules of the natural and in the end solve the problem that people faced.After studying the mechanism of the biologic immune system and referring the returns of computer immune system at home and abroad, the computer immune system model based on system call is put forward. In this model, some traits of the biologic immune system are utilizing to distinguish non-self from self, eliminate non-self and provide a frame for adjusting the intensity of self-response. And based on this, an autonomic and self-adapting information safety system is constructed. It can monitor the processes real-time by dynamic analytic mechanism and give the alarm in good time, which effectively compensates the shortage of the other static tools.This paper gives a simple and applied method of collecting the sequence of system calls. Lookahead pairs in analysis mechanism and Markov Chain in sand box are discussed in detail. In different detected stage ,two methods are adopted to improve the efficiency and performance of the system. In the end the implement method and program flow of this model are introduced.
|
PDF Full Text Request