计算机应用 ›› 2012, Vol. 32 ›› Issue (12): 3445-3448.DOI: 10.3724/SP.J.1087.2012.03445

• 信息安全 • 上一篇    下一篇

新型虚拟桌面杀毒模型

展旭升1,高云伟2,冯百明1,蒋芸1,杨鹏斐1   

  1. 1. 西北师范大学 计算机科学与工程学院,兰州 730070
    2. 中国科学院 计算技术研究所,北京 100190
  • 收稿日期:2012-06-26 修回日期:2012-09-20 发布日期:2012-12-29 出版日期:2012-12-01
  • 通讯作者: 展旭升
  • 作者简介:展旭升(1989-),男,甘肃会宁人,硕士研究生,主要研究方向:分布式与并行计算;〓高云伟(1980-),男,山西忻州人,工程师,主要研究方向:虚拟化、系统安全;〓冯百明(1966-),男,甘肃武威人,教授,主要研究方向:分布式与并行计算;〓蒋芸(1970-),女,浙江绍兴人,副教授,主要研究方向:数据挖掘、粗糙集;〓杨鹏斐(1985-),男,甘肃定西人,硕士研究生,主要研究方向:分布式与并行计算。
  • 基金资助:
    国家自然科学基金资助项目;甘肃省科技支撑计划项目

New virtual desktop antivirus model

ZHAN Xu-sheng1,GAO Yun-wei2,FENG Bai-ming1,JIANG Yun1,YANG Peng-fei1   

  1. 1. College of Computer Science and Engineering, Northwest Normal University, Lanzhou Gansu 730070,China
    2. Institute of Computing Technology,Chinese Academy of Sciences, Beijing 100190,China
  • Received:2012-06-26 Revised:2012-09-20 Online:2012-12-29 Published:2012-12-01
  • Contact: ZHAN Xu-sheng

摘要: 针对现有杀毒方式系统开销大,占有网络带宽大,以及没有对未知程序的实时监测等缺点,通过对先前工作进行改进,提出了针对虚拟桌面框架的一种新型虚拟桌面杀毒模型,支持用户主动扫毒和程序启动过程的被动杀毒。特权虚拟机执行病毒检测和可信列表的管理,并将每个普通虚拟机中的文件签名传输到其他虚拟机;客户端分析待检测文件的签名和特性,优化网络传输的字节数,并在程序加载时实时查杀病毒。实验结果表明,该模型能够实时查杀病毒,减少系统开销和网络带宽的占用。

关键词: 虚拟桌面, 主动扫毒, 被动杀毒, 可信列表, 签名

Abstract: The existing antivirus methods take too much system overhead, consume a lot of network bandwidth and can not detect the unknown programs in time. Therefore, this paper improved the previous work and presented a new virtual desktop antivirus model regarding virtual desktop infrastructure. It supported active antivirus and passive antivirus moves. Privileged virtual machines were used to scan viruses, manage the trust-list and transmit signatures of every virtual machine to others. Agents were used to analyze the signatures and characteristics of files, optimize the bytes to be uploaded and scanned, and scan the programs timely when being loaded. The experimental results show that model can detect viruses in real-time, in the meantime reduce system overhead and network bandwidth usage.

Key words: virtual desktop, active antivirus, passive antivirus, trust-list, signature

中图分类号: