Abstract: Trojan embedded in the Basic Input/Output System(BIOS) of computer has a tremendous hazard to the safety of computer system, and it is difficult to be discovered and removed. The structure, implanting methods and activation mechanism of BIOS Trojan are analyzed. The database of BIOS Trojan characters and standard BIOS samples are built, and a BIOS security detection system is designed and implemented in the paper so as to resolve the problem. The detection system can scan computer’s BIOS to defence BIOS Trojan and unknown malicious code, and it can enhance the security of the firmware in computer.

Key words: BIOS Trojan, Basic Input/Output System(BIOS), malicious code, security detection, terminal security

摘要： 针对嵌入在计算机底层固件的基本输入输出系统(BIOS)中，木马对计算机系统安全危害巨大、不易删除和不易发现的问题，分析BIOS木马封装结构、植入方法和激活机制，建立BIOS木马特征库和标准BIOS样本库，设计并实现一个BIOS安全检测系统。通过检测系统对计算机BIOS进行安全扫描，能有效防护BIOS木马和未知恶意代码，加强计算机底层固件的安全。

关键词: BIOS木马, 基本输入输出系统, 恶意代码, 安全检查, 终端安全

CLC Number: 

• TP393.08