|
|
计算机应用 2005
Analyses and research of the program behavior in computer system
|
Abstract:
Three methods of distillation in the program behavior were introduced, and the program behavior was distilled and analyzed in LKM. The system call arguments was anlalyzed from the length distribution of character string, characteristic distribution of character string and special system call arguments, which rich the technique to analyze the program behavior and improve the exactness of detection of program anomalism.
