Mapping kernel objects to enable systematic integrity checking

@inproceedings{Carbone2009MappingKO,
  title={Mapping kernel objects to enable systematic integrity checking},
  author={Martim Carbone and Weidong Cui and Long Lu and Wenke Lee and Marcus Peinado and Xuxian Jiang},
  booktitle={ACM Conference on Computer and Communications Security},
  year={2009}
}
Dynamic kernel data have become an attractive target for kernel-mode malware. However, previous solutions for checking kernel integrity either limit themselves to code and static data or can only inspect a fraction of dynamic data, resulting in limited protection. Our study shows that previous solutions may reach only 28% of the dynamic kernel data and thus may fail to identify function pointers manipulated by many kernel-mode malware. To enable systematic kernel integrity checking, in this… CONTINUE READING
Highly Influential
This paper has highly influenced 22 other papers. REVIEW HIGHLY INFLUENTIAL CITATIONS
Highly Cited
This paper has 173 citations. REVIEW CITATIONS

Citations

Publications citing this paper.
Showing 1-10 of 112 extracted citations

173 Citations

0102030'10'12'14'16'18
Citations per Year
Semantic Scholar estimates that this publication has 173 citations based on the available data.

See our FAQ for additional information.

References

Publications referenced by this paper.
Showing 1-7 of 7 references

Microsoft Windows Internals (4th Edition)

  • M. E. Russinovich, D. A. Solomon
  • 2005
Highly Influential
4 Excerpts

Similar Papers

Loading similar papers…