| Authoritative survey showed that more than 80 percent of security threats come from internal staff or through internal criminal attacks. Internal staff is usually very easy to get complete control over a computer which stores secret information. Therefore, research of how to prevent internal crime in the third-party information security protection system is necesssayRootkit is a newly emerging technology that is used by hackers to avoid being detected by anti-virus softwares and system management applications. But rootkit is not inherently evil, it is only a technique, good or evil depends entirely on the people who use them. From another angel, we can consider rookit as something that can be used to retain the highest root access to a computer and achieve functions without beening detected by the normal users.Introduces several Windows kernel rootkit technologies which is suitable for use in information security system. Describes the applications of these rootkit technologies in the third-party information security protection system from the three aspects of system security, data security, network security, and analyzes their advantages compared to traditional methods, hence provides a kernel solution to the core issues of information security discipline: the system self-protection, file access control and encryption, network access control, etc. The results of experimental testing and analysis achieves the desired functional requirements, the information security measures are completely invisible to users and difficult to bypass, this can get an expected protective effect against information crime from internal personal. |
PDF Full Text Request