摘要： 引入动态共享库机制能节约内存资源，并容易升级，但却带来安全隐患。针对该问题，研究动态链接机制，提出一种针对动态共享库的程序运行时监控和保护的方法。对共享库文件进行签名和验证，并对库函数调用实行监控。实验结果显示，该方法对于动态共享库的几种常见攻击方法有较好的防御作用。

关键词: 动态共享库, 数字签名, 程序监控

Abstract: Dynamic link mechanism for shared libraries brings some advantages, such as physical memory saving, facilitating the upgrade of libraries, etc. But it also leads to new security risks. Aiming at this problem, this paper studies the dynamic link mechanism in an attempt to bring up a run-time monitoring and protection method for dynamic shared libraries, which give each shared library file a digital signature and verify it in runtime, and monitor every library function call. Experimental results show that the method is effective for defending several common attacks to shared libraries.

Key words: dynamic shared library, digital signature, program monitoring

中图分类号: 

• TP309.2