一个异常的系统调用序列就是一个程序有漏洞或受到攻击的确凿证据。
An aberrant system call sequence would be a dead giveaway that the program has a bug or is being attacked.
典型的TCP客户机和服务器应用程序通过发布tcp系统调用序列来获取某些函数。
A typical TCP client and server application issues a sequence of TCP system calls to attain certain functions.
提出了一种基于系统调用序列的入侵检测模型,利用绝对安全环境下的应用程序系统调用序列建立正常行为模式。
In this paper an intrusion detection model based on system call sequences is proposed, and a normal activity mode of the system call sequences in absolute security environment is established.
图14显示了用于recvmsg系统调用的调用序列。
Figure 14 shows the sequence of calls for the recvmsg system call.
为了对节点构建序列进行解释,我们从菜单系统调用 node.module 中的 node_page()函数开始讨论。
We will start this explanation of the node building sequence at the point where the menu system calls the node_page() function in the node.module.
文章针对满足支持度要求的系统调用短序列,给出了特征模式的概念,并以此为基础提出了基于改进的隐马尔科夫方法(IHMM)。
In this model, the authors defined the short sequence of system calls as a character pattern if this sequence satisfied the certain support degree, and propose an improved HMM (IHMM) on this basis.
由授权进程产生的系统调用短序列可作为计算机免疫系统中的“自我”标识。
The short sequences of system calls made by privileged processes can be seen as symbols of"self"in com-puter immune system.
由授权进程产生的系统调用短序列可作为计算机免疫系统中的“自我”标识。
The short sequences of system calls made by privileged processes can be seen as symbols of"self"in com-puter immune system.
应用推荐