气象灾害系统的恶意代码攻击自动化免疫方法

Automatic Immune Method of Malicious Code Attack in Meteorological Disaster System

对气象灾害系统的恶意代码防御是该领域中的重点内容,为了有效缓解和改善恶意代码给气象灾害系统带来的安全隐患,该文提出了气象灾害系统的恶意代码攻击自动化免疫方法,首先识别和提取恶意代码动态特征,针对动态特征实行编码操作,将编码结果当作未成熟识别器其中一个来源,未成熟的识别器历经阴性筛选得到成熟识别器,并对抗原亲和程度高且已经成熟的识别器实行克隆和变异等操作,获取具备高亲和度的识别器下一代,通过所得识别器检测出恶意代码。基于恶意代码检测结果,融合动态免疫规则,并引入联合式免疫算法,获得主客体集合与行为集合及安全政策相结合下的气象灾害系统的恶意代码自动化免疫模型,由此完成恶意代码攻击自动化免疫。

The prevention of malicious code in meteorological disaster system is the key content in this field.In order to effectively alleviate and improve the security risks brought by malicious code to meteorological disaster system, the automatic immune method of malicious code attack in meteorological disaster system is proposed.Firstly, we identify and extract the dynamic characteristics of malicious code, code the dynamic characteristics, regard the coding result as one of the sources of the immature recognizer, the immature recognizer gets the mature recognizer after negative screening, and clone and mutate against the original recognizer with high affinity, so as to obtain the next generation of recognizer with high affinity The obtained recognizer detected malicious code.Based on the results of malicious code detection, dynamic immune rules are integrated, and the combined immune algorithm is introduced to obtain the automatic immune model of malicious code in meteorological disaster system under the combination of host object set, behavior set and security policy, thus completing the automatic immune of malicious code.Experimental results show that the algorithm can effectively alleviate and improve the security risks brought by malicious code to meteorological disaster system, and has strong immune reliability.