Abstract: The security of Linux attracts a comprehensive attention with its application. The MAC computation and ELF file format are described, and the method that ensures the secure execution of ELF file is presented, the existing problems are analyzed and some possible solutions are given. Experimental results show that the method is feasible.

Key words: Message authentication code, Executable and linkable format(ELF), Loadable kernel module

摘要： 随着Linux操作系统的应用与普及，其安全性也受到人们的广泛关注。在描述了消息鉴别码(MAC)计算和ELF文件格式之后，提出了保证ELF文件安全执行的方法，并对存在的问题进行了分析，给出了可行的解决办法。实验结果表明该方法是实际可行的。

关键词: 消息鉴别码, ELF, 可加载内核模块

CLC Number: 

• TP391