Netinfo Security ›› 2023, Vol. 23 ›› Issue (10): 31-38.doi: 10.3969/j.issn.1671-1122.2023.10.005

Previous Articles     Next Articles

Design of Ransomware Defense System Based on Fine-Grained Access Control Scheme

ZHU Yixin1,2(), MIAO Zhangwang3, GAN Jinghong4,5, MA Cunqing1   

  1. 1. State Key Laboratory of Information Security, Institute of Information Engineering, Chinese Academy of Sciences, Beijing 100093, China
    2. School of Cyber Security, University of Chinese Academy of Sciences, Beijing 100049, China
    3. National Information Center, Beijing 100045, China
    4. School of Information and Network Security, People’s Public Security University of China, Beijing 100038, China
    5. Network Security Brigade of Taiwan Security Investment Zone Branch of Zhangzhou Public Security Bureau, Zhangzhou 363000, China
  • Received:2023-06-26 Online:2023-10-10 Published:2023-10-11

Abstract:

Ransomware has become one of the most dominant forms of cybercrime, endangering the security of public society. The goal of this paper is to defend against ransomware to protect the security of host file resources, but current defense schemes using access control schemes still have defects such as too coarse authorization granularity, inflexible permission management, and inability to properly handle exceptions. In this paper, a ransomware defense scheme based on fine-grained access control, which includes three main functions, firstly, fine-grained dynamic access control to the file system was proposed. Secondly program intent analysis by context. Finally hierarchical confirmation of exceptions. This paper implements a prototype of the scheme, which can effectively intercept the file behavior of ransomware after analysis and reduce the damage caused by ransomware.

Key words: ransomware defense, access control, contextual analysis, hierarchical confirmation, fine-grained

CLC Number: