作者: Ralf Hund , Michael Becher
DOI:
关键词: Sandbox (computer security) 、 Reference monitor 、 Distributed computing 、 Computer science 、 Real-time computing 、 Security policy 、 Embedded operating system 、 Mobile device 、 Malware analysis 、 Windows CE 、 System call
摘要: The techniques of kernel-level system call interception are well known today for many different operating systems. This work starts with transferring these technique to the Windows CE type Afterwards, two current problems solved. first solution uses dynamic malware analysis a sandbox approach, extending previous solutions in terms effectiveness. second enhances expressiveness security policies by implementing concept reference monitor on level. based devices now enabled enforce sophisticated without need change underlying system.