摘要： 尽管危害系统安全的程序的作用机理和实现方法差异很大，但在实现过程中，它们最底层的攻击行为统一表现为对系统文件的读取或写入。该文通过对系统非法文件的读取访问和写入访问的严密控制，提出了一种基于文件操作阻断的系统安全加固防护技术，分析了文件操作阻断技术的防护范围、防护时机、防护策略以及防护效果评估，建立起本地计算机系统的最终安全防线。

关键词: 文件操作阻断, 防护策略, 防护效果评估, 本地安全

Abstract: Although every working principle and realizing way affecting on system security is different, their bottommost action is reading and writing the system files in the performing process. Through strict control on illegal access to system files, a protective technology based on file access interdiction is put forward and its protection extension, protection time, protection strategies and protection effect evaluation are studied and analyzed systematically to build the final security line for the local computer systems.

Key words: file access interdiction, protection strategy, protection effect evaluation, local security

中图分类号: 

• TP393.08