|
Published Articles >> Table of Contents >> Abstract
27th Annual International Computer Software and Applications Conference
p. 158
A Protection Environment for Administrators of Windows 2000/XP Against Malicious Program Attacks
Adrian Spalka, University of Bonn, Germany
Marcel Winandy, University of Bonn, Germany
Full Article Text:
  
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CMPSAC.2003.1245336
Send link to a friend
| Abstract |
|
Malicious programs pose a serious threat to operating systems. If an operator can be tricked into running such a program its abilities to manipulate a system are unlimited. This work, which addresses Windows 2000/XP, is a part of our effort of creating a protected execution environment for applications with high security demands. We analyse attacks by malicious programs that manipulate system components during their installation by an administrator. It turns out that most of these manipulations are likely to remain unnoticed by the human user. However, we show that the operating system's protection mechanisms can be used to prevent or detect all manipulations that can endanger our protected environment. We combine these mechanisms in a restricted shell, which the administrator should use for the execution of possibly untrustworthy programs.
|
 Additional Information
|
Citation:
Adrian Spalka, Marcel Winandy,
"A Protection Environment for Administrators of Windows 2000/XP Against Malicious Program Attacks,"
compsac,
p. 158,
27th Annual International Computer Software and Applications Conference,
2003
|
|
