ISSN 0021-3454 (print version)
ISSN 2500-0381 (online version)
Menu

8
Issue
vol 63 / August, 2020
Article

DOI 10.17586/0021-3454- 2017-60-10-940-944

UDC 004.056.53

IMPLEMENTATION OF SANDBOX METHOD FOR POTENTIALLY MALICIOUS APPLICATIONS

K. A. Shcheglov
ITMO University, Saint Petersburg, 197101, Russian Federation; OOO «Scientific Production Enterprise «Information technologies in business»; postgraduate; development manager


A. Y. Shcheglov
ITMO University, Saint Petersburg, 197101, Russian Federation; OOO «Scientific Production Enterprise «Information technologies in business»; Professor; General Director


Read the full article 

Abstract. A method is proposed for sandbox implementation for potentially malicious applications including those which received malicious characteristics after infection. The method is based on redirection of access requests based on patented technical solution. The sandbox implementation method produces minimal impact on end machine productivity and is easily administrated; an example of practical interest application is presented. The described technical solution is tested in a commercial information security system.
Keywords: malicious application, sandbox, security method, access request redirection, information security system

References:
  1. Shcheglov A.Yu., Shcheglov K.A. Analiz i proektirovanie zashchity informatsionnykh sistem. Kontrol' dostupa k komp'yuternym resursam. Metody, modeli, tekhnicheskie resheniya (Analysis and Design of Information System Protection. Control Access to Computer Resources. Methods, Models, Technical Solutions), St. Petersburg, 2017, 416 р. (in Russ.)
  2. www.securrity.ru/articles/1116-antivirusnye-pesochnicy-vvedenie.html (in Russ.)
  3. http://it-news.complexdoc.ru/1071474.html(in Russ.)
  4. Patent RU 2538918, Sistema pereformirovaniya ob"ekta v zaprose dostupa (System Reformation of the Object in the Access Request), A.Yu. Shcheglov, K.A. Shcheglov, Published 10.01.2015. (in Russ.)
  5. Certificate on the state registration of the computer programs 2014660889, Kompleksnaya sistema zashchity informatsii "Pantsir'+" dlya OS Microsoft Windows (A Complex System of Information Protection " Pantsir'+" for Microsoft Windows), A.Yu. Shcheglov, I.P. Pavlichenko, S.V. Kornetov, K.A. Shcheglov,Published 20.11.2014.(in Russ.)
  6. Patent RU2524566, Sistema kontrolya dostupa k faylam na osnove ikh avtomaticheskoy razmetki (Control System to Access Files Based on Their Automatic Markup), A.Yu. Shcheglov, K.A. Shcheglov. Published 27.07.2014, Bulletin 21. (in Russ.)