CN105574412A - Non-invasive virus detection method for Apple equipment - Google Patents
Non-invasive virus detection method for Apple equipment Download PDFInfo
- Publication number
- CN105574412A CN105574412A CN201610135400.2A CN201610135400A CN105574412A CN 105574412 A CN105574412 A CN 105574412A CN 201610135400 A CN201610135400 A CN 201610135400A CN 105574412 A CN105574412 A CN 105574412A
- Authority
- CN
- China
- Prior art keywords
- equipment
- apple
- detected
- checkout equipment
- detection method
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/50—Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
- G06F21/55—Detecting local intrusion or implementing counter-measures
- G06F21/56—Computer malware detection or handling, e.g. anti-virus arrangements
- G06F21/562—Static detection
Abstract
The invention discloses a virus detection method for Apple equipment by using an iOS system through a libimobiledevice. The method is different from the existing universal virus detection method mostly in that a virus detection program is required in the to-be-detected Apple equipment in the traditional method, and such a program is also called an invasion or implantation process; and the method disclosed by the invention does not bring any change to the to-be-detected Apple equipment and can finish virus detection without invading the Apple equipment.
Description
Technical field
The present invention relates to computer virus detection technology, propose a kind of for apple equipment under can not causing apple equipment to be detected that the prerequisite of any change occurs, non-intruding completes the method for Viral diagnosis.
Background technology
IOS is the same with the MacOSX operating system of apple (APPLE), belongs to the commercial operating systems of class Unix, applies on the smart machines such as Apple iPhone, iPad and iPodTouch.Along with the market share of Apple's smart machine remains high, the various virus for iOS also expands like the mushrooms after rain and grows up.From the route of transmission of virus, major part virus has downloaded the application software implanting virus by software download website, unofficial website, fishing website etc., thus suffers stolen, the monitored supervision of Net silver, for no reason deducts fees, privacy leakage, becomes many infringements such as viral propagating source.
The apple equipment killing viral methods of current main flow is all adopt to install antivirus software in apple equipment, can take equipment self storage space, also can accelerate the energy ezpenditure of equipment during operation.And by the restriction of device memory, complete virus base can not be preserved in a device, need networking when checking virus, consumer device data traffic carries out.The simultaneously part antivirus software risk that also has upload user information privately, cause privacy of user to be revealed.Antivirus software self, also may by virus infections as there being leak, after infection because user cannot judge antivirus software whether normal operation, and is in the illusion by safeguard protection always, thus suffers larger infringement.
Summary of the invention
The invention provides one and realize non-invasive method for detecting virus for apple equipment.Carry out Viral diagnosis by libimobiledevice to apple equipment by independent detection equipment, detection can not cause apple equipment to be detected that any change occurs, and namely can not increase new program in system, the amount of physical memory of equipment can not change.Concrete method for detecting virus following (process flow diagram is as shown in Figure 1):
A. checkout equipment and apple equipment to be detected is connected by data line;
B. information and the application list of apple equipment to be detected is obtained by libimobiledevice;
C. all application programs on equipment to be detected are copied on checkout equipment by libimobiledevice;
D. all application programs of checkout equipment to copy carry out virus scan, judge whether being virus;
E. checkout equipment returns testing result, and client confirms that all copies data deleted by rear, checkout equipment.
In described method, checkout equipment is connected by data line with apple equipment to be detected.
In described method, checkout equipment obtains information and the application list of apple equipment to be detected by libimobiledevice.
In described method, checkout equipment is installed complete virus characteristic storehouse, successively, intactly the feature in the application program of copy and virus characteristic storehouse has been mated.If the match is successful, then there is virus in the application software of Devices to test, and user can select whether to remove the Virus on Devices to test by checkout equipment; If mate unsuccessful, then Devices to test is very safe.
In described method, after checkout equipment returns testing result, client's confirmation, checkout equipment will delete all copies data, ensures that all information of user can not occur leaking by checkout equipment.
The inventive method is when detecting, and checkout equipment and apple equipment to be detected form a closed system by data line, without the need to using network, just realizing viral detection completely without the need to consumed flow again; Virus scan process all completes on checkout equipment, be not subject to the restriction that the storage space of apple equipment to be detected, processing speed are limited, more accurately can carry out sooner, the energy loss of apple equipment to be detected can not be increased simultaneously, improve the stand-by time of apple equipment; After detection completes, determined whether to delete the application program having confirmed as virus by client, confirm the Virus that after deleting, checkout equipment will be deleted on apple equipment; After client has confirmed, all data that complete deletion copies from apple equipment by checkout equipment, ensure that any leakage can not occur all information of client.
Present approach provides a kind of non-invasive method for detecting virus for apple equipment, can not cause apple equipment to be detected that any change occurs, namely can not increase new program in system, the amount of physical memory of equipment can not change.Checkout equipment the application program of apple equipment copied on checkout equipment by libimobiledevice carry out Viral diagnosis, work that virus confirms and deletes, and upon completion of the assays by the related data complete deletion that apple equipment copies, ensure that the information of client there will not be leakage.
Accompanying drawing explanation
Fig. 1 is a kind of process flow diagram realizing non-invasive method for detecting virus for apple equipment.
Embodiment
In order to make those skilled in the art person understand technical scheme in the embodiment of the present invention better, and enable above-mentioned purpose of the present invention, feature and advantage become apparent more, will be described in further detail technical scheme in the present invention below.
The invention provides one and realize non-invasive method for detecting virus for apple equipment.Concrete method for detecting virus following (process flow diagram is as shown in Figure 1):
A. checkout equipment and apple equipment to be detected is connected by data line;
B. checkout equipment uses ideviceinfo order in libimobiledevice to obtain the information of apple equipment to be detected;
C. checkout equipment uses ideviceinfo order in libimobiledevice to obtain the application list of apple equipment to be detected;
D. checkout equipment uses libimobiledevice, under the prerequisite of the system and storage space that do not change apple equipment, copies all application programs on equipment to be detected on checkout equipment;
E. all application programs of checkout equipment to copy carry out virus scan, judge whether being virus;
F. checkout equipment returns testing result, and client confirms that all copies data deleted by rear, checkout equipment.
Present approach provides a kind of non-invasive method for detecting virus for apple equipment, can not cause apple equipment to be detected that any change occurs, namely can not increase new program in system, the amount of physical memory of equipment can not change.Checkout equipment the application program of apple equipment copied on checkout equipment by libimobiledevice carry out Viral diagnosis, work that virus confirms and deletes, and upon completion of the assays by the related data complete deletion that apple equipment copies, ensure that the information of client there will not be leakage.
Known by the description of above embodiment, the mode that those skilled in the art can be well understood to the present invention can increase necessary general hardware platform by software realizes.Although describe the present invention by embodiment, those skilled in the art will appreciate that the present invention has a lot of distortion and changes and can not depart from spirit of the present invention, equally protect by claim of the present invention.
Claims (7)
1. realize a non-invasive method for detecting virus for apple equipment, it is characterized in that, by libimobiledevice the application software in apple equipment to be copied on checkout equipment by independent detection equipment and carry out Viral diagnosis.
2. non-intruding detection method as described in the appended claim 1, is characterized in that, comprising:
Checkout equipment and apple equipment to be detected is connected by data line;
Information and the application list of apple equipment to be detected is obtained by libimobiledevice;
All application programs on equipment to be detected are copied on checkout equipment by libimobiledevice;
The all application programs of checkout equipment to copy carry out virus scan, judge whether being virus;
Checkout equipment returns testing result, and client confirms that all copies data deleted by rear, checkout equipment.
3. non-intruding detection method as described in the appended claim 1, it is characterized in that, described apple equipment refers to the electronic equipment of apple iOS system, as equipment such as iPhone, iPad, iPodTouch and AppleTV.
4. non-intruding detection method as claimed in claim 2, it is characterized in that, checkout equipment exists independent of equipment to be detected, is connected between the two by data-interface.
5. non-intruding detection method as claimed in claim 2, it is characterized in that, checkout equipment realizes the facility information of apple equipment to be detected and the acquisition of the application list by libimobiledevice, and the copying of all application programs.
6. non-intruding detection method as claimed in claim 2, is characterized in that, carry out intactly virus checking and judgement, and return testing result by checkout equipment.
7. non-intruding detection method as claimed in claim 2, is characterized in that, after client confirms the testing result that checkout equipment provides, checkout equipment is by all data copied from equipment to be detected of deletion.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610135400.2A CN105574412A (en) | 2016-03-10 | 2016-03-10 | Non-invasive virus detection method for Apple equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610135400.2A CN105574412A (en) | 2016-03-10 | 2016-03-10 | Non-invasive virus detection method for Apple equipment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105574412A true CN105574412A (en) | 2016-05-11 |
Family
ID=55884531
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610135400.2A Pending CN105574412A (en) | 2016-03-10 | 2016-03-10 | Non-invasive virus detection method for Apple equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105574412A (en) |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102222184A (en) * | 2011-05-17 | 2011-10-19 | 中兴通讯股份有限公司 | Method and system for killing mobile terminal viruses |
| US20120304298A1 (en) * | 2011-05-27 | 2012-11-29 | Netqin Mobile (Beijing) Co., Ltd. | Method for antivirus in a mobile device by using a mobile storage and a system thereof |
| CN103902900A (en) * | 2013-05-03 | 2014-07-02 | 哈尔滨安天科技股份有限公司 | External extraction type detecting device and method for mobile terminal malicious code |
| CN105389510A (en) * | 2015-12-14 | 2016-03-09 | 江山市同舟数码科技有限公司 | Android mobile device malicious software detection method and system |
-
2016
- 2016-03-10 CN CN201610135400.2A patent/CN105574412A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102222184A (en) * | 2011-05-17 | 2011-10-19 | 中兴通讯股份有限公司 | Method and system for killing mobile terminal viruses |
| US20120304298A1 (en) * | 2011-05-27 | 2012-11-29 | Netqin Mobile (Beijing) Co., Ltd. | Method for antivirus in a mobile device by using a mobile storage and a system thereof |
| CN103902900A (en) * | 2013-05-03 | 2014-07-02 | 哈尔滨安天科技股份有限公司 | External extraction type detecting device and method for mobile terminal malicious code |
| CN105389510A (en) * | 2015-12-14 | 2016-03-09 | 江山市同舟数码科技有限公司 | Android mobile device malicious software detection method and system |
Non-Patent Citations (1)
| Title |
|---|
| CHUNG-NAN CHEN 等: "Design and Implementation of Digital Forensic Software for iPhone", 《2013 EIGHTH ASIA JOINT CONFERENCE ON INFORMATION SECURITY》 * |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10430586B1 (en) | Methods of identifying heap spray attacks using memory anomaly detection | |
| CN103207969B (en) | The device of detection Android malware and method | |
| CN102592103B (en) | Secure file processing method, equipment and system | |
| CN106133741A (en) | For scanning the system and method for packing program in response to detection questionable conduct | |
| JP2019536144A5 (en) | ||
| US10887331B2 (en) | Information processing apparatus and influence-process extraction method | |
| CN103116722A (en) | Processing method, processing device and processing system of notification board information | |
| Zhukovskyy et al. | Method of forensic analysis for compromising carrier-lock algorithm on 3G modem firmware | |
| JP2018528517A (en) | Method, apparatus and system for detecting fraudulent software promotions | |
| CN105024986A (en) | Account login method, device and system | |
| US8321940B1 (en) | Systems and methods for detecting data-stealing malware | |
| CN106415584A (en) | Systems and methods for pre-installation detection of malware on mobile devices | |
| CN103902900A (en) | External extraction type detecting device and method for mobile terminal malicious code | |
| WO2017107896A1 (en) | Document protection method and device | |
| JP5739034B1 (en) | Attack detection system, attack detection device, attack detection method, and attack detection program | |
| CN106709341A (en) | Virus processing method and device capable of aiming at file package | |
| CN103268448B (en) | The method and system of the security of detection of dynamic Mobile solution | |
| CN105678164A (en) | Method and device for detecting malicious software | |
| CN104751105A (en) | Fingerprint data verification method, fingerprint data verification device, related equipment and system | |
| CN107888715A (en) | A kind of binding method, device and the equipment of MAC Address and face characteristic | |
| EP2588984A1 (en) | Systems and methods for creating customized confidence bands for use in malware detection | |
| CN108376224A (en) | A kind of movable storage device and its encryption method and device | |
| US20180132103A1 (en) | Position and Authenticate Wi-Fi Users to Enhance Wi-Fi Security Control and Management | |
| CN103678125A (en) | Method and system for debugging codes | |
| CN104484484B (en) | Clear up the method and device of cache file |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20160511 |
|
| WD01 | Invention patent application deemed withdrawn after publication |