A generic anti-spyware solution by access control list at kernel level

  • Authors:

  • Sherman S. M. Chow;Lucas C. K. Hui;S. M. Yiu;K. P. Chow;Richard W. C. Lui

  • Affiliations:

  • Department of Computer Science and Information Systems, The University of Hong Kong, Pokfulam Road, Pokfulam, Hong Kong;Department of Computer Science and Information Systems, The University of Hong Kong, Pokfulam Road, Pokfulam, Hong Kong;Department of Computer Science and Information Systems, The University of Hong Kong, Pokfulam Road, Pokfulam, Hong Kong;Department of Computer Science and Information Systems, The University of Hong Kong, Pokfulam Road, Pokfulam, Hong Kong;Department of Computer Science and Information Systems, The University of Hong Kong, Pokfulam Road, Pokfulam, Hong Kong

  • Venue:
  • Journal of Systems and Software - Special issue: Software engineering education and training
  • Year:
  • 2005

Quantified Score

Hi-index 0.00

Visualization

Abstract

Spyware refers to programs that steal the user information stored in the user's computer and transmit this information via the internet to a designated home server without the user being aware of this transmission. Existing anti-spyware solutions are not generic and flexible. These solutions either check for the existence of known spyware or try to block the transmission of the private information at the packet level. In this paper, we propose a more generic and flexible anti-spyware solution by utilizing an access control ist in kernel mode of the operating system. The major difference between our approach and the existing approaches is that instead of asking a guard to look for the theft (spyware) or control the exit of the computer (and hence giving the spyware enough time to hide the information to be transmitted). we put a guard besides the treasure (the private information) and carefully control the access to it in the kernel mode. We also show the details of an implementation that realizes our proposed solution.