摘要
在病毒动不动就伪装成系统文件的今天,鉴别工作让人费神费力,如何快速鉴别有害程序成为关注焦点。本文介绍了数字签名验证技术,阐述了笔者利用微软的签名验证原理,开发了一款针对系统中的可疑进程、驱动、服务和文件进行快速、准确地勘察工具。
Today, the virus is apt to disguise to be system files, so it is boring and hard work to identify it, How to identify harmful programs become our concern. The paper introduces a digital signature verification technique, this paper expounds the principle of using Microsoft's signature verification, develop a suspicious process, according to the system, service and the driver files quickly and accurately survey tools.
出处
《信息网络安全》
2010年第11期40-42,共3页
Netinfo Security
关键词
签名验证
数字签名
进程
驱动
服务和文件
Signature verification
Digital signature
Process
Driver
Service and Files