[go: up one dir, main page]

CN103309769A - Operation system starting protection method and device - Google Patents

Operation system starting protection method and device Download PDF

Info

Publication number
CN103309769A
CN103309769A CN2013102136463A CN201310213646A CN103309769A CN 103309769 A CN103309769 A CN 103309769A CN 2013102136463 A CN2013102136463 A CN 2013102136463A CN 201310213646 A CN201310213646 A CN 201310213646A CN 103309769 A CN103309769 A CN 103309769A
Authority
CN
China
Prior art keywords
starting
security application
operating system
application
protection device
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN2013102136463A
Other languages
Chinese (zh)
Other versions
CN103309769B (en
Inventor
李涛
徐江涛
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing 360 Zhiling Technology Co ltd
Original Assignee
Beijing Qihoo Technology Co Ltd
Qizhi Software Beijing Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Qihoo Technology Co Ltd, Qizhi Software Beijing Co Ltd filed Critical Beijing Qihoo Technology Co Ltd
Priority to CN201310213646.3A priority Critical patent/CN103309769B/en
Priority claimed from CN 201110166662 external-priority patent/CN102262574B/en
Publication of CN103309769A publication Critical patent/CN103309769A/en
Application granted granted Critical
Publication of CN103309769B publication Critical patent/CN103309769B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Stored Programmes (AREA)

Abstract

本发明提供了一种操作系统启动保护方法,包括:触发操作系统启动;在其他应用程序启动之前首先调用启动保护器;启动保护器判断上次系统运行过程中是否出现系统异常,若未出现异常,则允许操作系统启动其他应用程序,否则,则在操作系统启动过程中仅允许预置的安全应用程序启动。本发明还提供一种实现前述方法的操作系统启动保护装置。本发明的操作系统启动保护方法及装置,能够在计算机或移动终端的系统启动过程中保护操作系统能够正常启动,避免出现多次启动都无法成功的情况出现。

The present invention provides an operating system start-up protection method, comprising: triggering the start-up of the operating system; first calling the start-up protector before starting other application programs; , the operating system is allowed to start other applications, otherwise, only pre-installed security applications are allowed to start during the operating system startup process. The present invention also provides an operating system startup protection device for implementing the aforementioned method. The method and device for protecting the startup of the operating system of the present invention can protect the normal startup of the operating system during the startup process of the computer or mobile terminal, and avoid the situation that multiple startups fail to succeed.

Description

操作系统启动保护方法和装置Operating system startup protection method and device

本发明专利申请是申请日为2011年06月20日、申请号为201110166662.2、名称为“操作系统启动保护方法和装置”的中国发明专利申请的分案申请。The patent application of the present invention is a divisional application of the Chinese invention patent application with the filing date of June 20, 2011, the application number of 201110166662.2, and the title of "Operating System Boot Protection Method and Device".

技术领域technical field

本发明涉及应用程序启动技术领域,特别是涉及一种操作系统启动保护方法和装置。The present invention relates to the technical field of application startup, in particular to an operating system startup protection method and device.

背景技术Background technique

一般情况下,在计算机或移动终端中,用户可以根据自己的需要来安装各种各样的应用程序。其中,较多应用程序具可以在开机时自启动,即随着计算机或移动终端开机会自行启动。但是,因为自启动应用程序与操作系统的兼容性,或者不同自启动应用程序之间的兼容性,或者在启动过程中应用程序自身出现的意外错误等问题都可能会导致计算机或移动终端无法正常启动的情况。移动终端,特别是常见的智能手机,因为其中的操作系统的稳定性还有待加强,应用程序在自启动的过程中经常会因为自身异常而导致其无法正常开机。Generally, in a computer or a mobile terminal, a user can install various application programs according to his needs. Among them, many application tools can be started automatically when the computer or mobile terminal is turned on. However, problems such as the compatibility between the self-starting application and the operating system, or the compatibility between different self-starting applications, or unexpected errors in the application itself during the startup process may cause the computer or mobile terminal to malfunction. Startup situation. For mobile terminals, especially common smart phones, because the stability of the operating system therein needs to be strengthened, the application program often fails to start normally due to its own abnormality during the self-starting process.

例如,对于智能手机而言,如果在存储卡上安装了自启动应用程序,而存储卡文件系统出现了故障,那么手机可能也会因此而无法正常开机。再比如,一个自启动的应用程序被不正常删除,因为移动终端内通常会记录自启动应用程序的启动路径,那么就可能会出现应用程序被删除,但是该应用程序的启动路径并未被删除,当重新开机时,操作系统无法根据启动路径找到应用程序,就会出现系统错误,导致无法正常开机。For example, for a smart phone, if a self-starting application is installed on the memory card, and the file system of the memory card fails, the phone may not be able to boot normally. Another example, a self-starting application is deleted abnormally, because the startup path of the self-starting application is usually recorded in the mobile terminal, then the application may be deleted, but the startup path of the application has not been deleted , when the computer is restarted, the operating system cannot find the application program according to the startup path, and a system error will occur, resulting in failure to boot normally.

因为计算机或者移动终端的操作系统通常情况下无法自动识别错误产生的原因,当出现前述的异常而导致无法正常启动的时候,如果不是人为干预,如对故障进行修复或者对计算机或移动终端进行格式化,通常情况下,计算机或移动终端无法自行改变这种因为应用程序自身异常而导致的无法正常启动的情况。也就是说,可能会出现反复启动多次都无法成功的情况,这无疑会影响计算机或移动终端正常使用,给用户带来不便。Because the operating system of a computer or mobile terminal usually cannot automatically identify the cause of the error. Usually, the computer or mobile terminal cannot change the situation that the application cannot be started normally due to the abnormality of the application itself. That is to say, there may be a situation where the repeated startup fails for many times, which will undoubtedly affect the normal use of the computer or mobile terminal and bring inconvenience to the user.

发明内容Contents of the invention

本发明所要解决的技术问题是提供一种操作系统启动保护方法及装置,能够在计算机或移动终端的系统启动过程中保护操作系统能够正常启动,避免出现多次启动都无法成功的情况出现。The technical problem to be solved by the present invention is to provide an operating system startup protection method and device, which can protect the normal startup of the operating system during the startup process of the computer or mobile terminal, and avoid the situation that multiple startups fail to succeed.

为了解决上述问题,本发明公开了一种操作系统启动保护方法,包括以下步骤:In order to solve the above-mentioned problems, the present invention discloses a method for operating system startup protection, comprising the following steps:

触发操作系统启动;Trigger the operating system to start;

在其他应用程序启动之前首先调用启动保护器;Startup protector is called first before other applications start;

启动保护器判断上次系统运行过程中是否出现系统异常,若未出现异常,则允许操作系统启动其他应用程序,否则,则在操作系统启动过程中仅允许预置的安全应用程序启动。The startup protector judges whether there is a system abnormality during the last system operation. If there is no abnormality, the operating system is allowed to start other applications, otherwise, only the preset security application is allowed to start during the operating system startup process.

进一步地,所述方法还包括:Further, the method also includes:

若预置的安全应用程序出现异常,则操作系统再次启动过程中,启动保护器禁止除启动保护器自身以外的所有应用程序启动。If the preset safety application program is abnormal, the boot protector prohibits the startup of all application programs except the boot protector itself during the restarting process of the operating system.

进一步地,在预置的安全应用程序启动之前还包括:Further, before the preset security application starts, it also includes:

验证安全应用程序是否被篡改,若被篡改,则禁止该安全应用程序启动。Verify whether the safety application program has been tampered with, and if tampered with, prohibit the safety application program from starting.

进一步地,所述验证安全应用程序是否被篡改包括:Further, said verifying whether the security application has been tampered with includes:

在启动过程中,启动保护器联网,从服务器获取安全应用程序的标准数据,并与安全应用程序的当前数据进行比对,若二者不同,则说明安全应用程序被篡改;或During the startup process, start the protector to network, obtain the standard data of the safety application program from the server, and compare it with the current data of the safety application program. If the two are different, it means that the safety application program has been tampered with; or

在启动过程中,启动保护器从客户端获取预先存储的安全应用程序的标准数据,并与安全应用程序的当前数据进行比对,若二者不同,则说明安全应用程序被篡改。During the startup process, the startup protector obtains the pre-stored standard data of the safety application program from the client, and compares it with the current data of the safety application program. If the two are different, it means that the safety application program has been tampered with.

进一步地,所述预置的安全应用程序获取方法包括以下一种或几种:Further, the pre-set security application acquisition method includes one or more of the following:

从启动保护器指定的服务器中下载得到;Downloaded from the server specified by the boot protector;

获取用户手工确认许可的自启动应用程序;A self-starting application that obtains the user's manual confirmation of permission;

获取在用户设置恢复点时的自启动应用程序;Get the application to start automatically when the user sets a restore point;

获取上次系统运行正常时运行的自启动应用程序。Get the self-starting applications that were running the last time the system was healthy.

进一步地,所述方法还包括:Further, the method also includes:

在操作系统启动完成后,展示未启动应用程序列表。After the operating system starts up, a list of unstarted applications is displayed.

为了解决上述问题,本发明还公开了一种操作系统启动保护装置,包括:In order to solve the above problems, the present invention also discloses an operating system startup protection device, comprising:

操作系统启动模块,适于触发操作系统启动;An operating system startup module, adapted to trigger the startup of the operating system;

保护调用模块,适于在其他应用程序启动之前首先调用启动保护器;A protection call module adapted to first invoke a startup protector before other applications are started;

启动保护器,适于判断上次系统运行过程中是否出现系统异常,若未出现异常,则允许操作系统启动其他应用程序,反之,则在操作系统启动过程中仅允许预置的安全应用程序启动。The startup protector is suitable for judging whether there is a system abnormality during the last system operation. If there is no abnormality, the operating system is allowed to start other applications. Otherwise, only the preset security applications are allowed to start during the operating system startup process. .

进一步地,所述装置还包括:Further, the device also includes:

禁止启动模块,适于验证预置的安全应用程序出现异常,则操作系统再次启动过程中,通知启动保护器禁止除启动保护器以外的所有应用程序启动。The start-up prohibition module is suitable for verifying that the preset safety application program is abnormal, and when the operating system starts up again, it notifies the start-up protector to prohibit the start-up of all application programs except the start-up protector.

进一步地,所述装置还包括:Further, the device also includes:

安全应用程序异常检测模块,适于验证安全应用程序是否被篡改,若被篡改,则说明安全应用程序出现异常。The security application anomaly detection module is suitable for verifying whether the security application has been tampered with, and if tampered, it indicates that the security application is abnormal.

进一步地,所述安全应用程序异常检测模块包括:Further, the security application anomaly detection module includes:

第一比较单元,适于在启动过程中,启动保护器联网,从服务器获取安全应用程序的标准数据,并与安全应用程序的当前数据进行比对;或The first comparison unit is suitable for starting the protector to network during the startup process, obtaining the standard data of the safety application program from the server, and comparing it with the current data of the safety application program; or

第二比较单元,适于在启动过程中,启动保护器从客户端获取预先存储的安全应用程序的标准数据,并与安全应用程序的当前数据进行比对。The second comparing unit is adapted to enable the boot protector to obtain pre-stored standard data of the safety application program from the client and compare it with current data of the safety application program during the start-up process.

进一步地,所述启动保护器还包括:Further, the startup protector also includes:

安全应用程序获取单元,适于获取预置的安全应用程序,所述获取方法包括以下一种或几种:The secure application acquisition unit is adapted to acquire a preset security application, and the acquisition method includes one or more of the following:

从启动保护器指定的服务器中下载得到;Downloaded from the server specified by the boot protector;

获取用户手工确认许可得的自启动应用程序;Obtain self-starting applications that are manually confirmed by the user;

获取用户设置恢复点时的自启动应用程序;Obtain the self-starting application when the user sets the recovery point;

获取上次系统运行正常时运行的自启动应用程序。Get the self-starting applications that were running the last time the system was healthy.

进一步地,所述装置还包括:Further, the device also includes:

展示模块,适于在操作系统启动完成后,展示未启动应用程序列表。与现有技术相比,本发明具有以下优点:The display module is adapted to display a list of unstarted application programs after the operating system is started. Compared with the prior art, the present invention has the following advantages:

本发明的操作系统启动保护方法和装置通过在操作系统启动的同时对于操作系统上次的系统运行记录进行分析查看是否出现系统异常,在出现异常时则只允许预置的安全应用程序启动,可以避免因为操作系统中的应用程序自身异常而造成的操作系统多次无法正常启动的情况,也可以避免不能启动所造成的需要格式化系统、丢失用户信息等情况。The operating system start-up protection method and device of the present invention analyze the last system operation record of the operating system to check whether there is a system abnormality when the operating system is started, and only allow the preset security application to start when an abnormality occurs. Avoid the situation that the operating system cannot be started normally for many times due to the abnormality of the application program in the operating system, and also avoid the need to format the system and lose user information caused by the failure to start.

进一步地,如果预置的安全应用程序出现异常,在操作系统再次启动过程中,则只允许启动保护器启动,可以使操作系统能够顺序启动。Further, if the pre-installed security application program is abnormal, only the boot protector is allowed to start during the restarting process of the operating system, so that the operating system can be started sequentially.

附图说明Description of drawings

图1是本发明的操作系统启动保护方法实施例一的流程图;FIG. 1 is a flow chart of Embodiment 1 of the operating system boot protection method of the present invention;

图2是本发明的操作系统启动保护方法实施例二的流程图;FIG. 2 is a flow chart of Embodiment 2 of the operating system boot protection method of the present invention;

图3是本发明的操作系统启动保护装置实施例一的结构示意图;FIG. 3 is a schematic structural diagram of Embodiment 1 of the operating system startup protection device of the present invention;

图4是本发明的操作系统启动保护装置实施例二的结构示意图。FIG. 4 is a schematic structural diagram of Embodiment 2 of the operating system startup protection device of the present invention.

具体实施方式Detailed ways

为使本发明的上述目的、特征和优点能够更加明显易懂,下面结合附图和具体实施方式对本发明作进一步详细的说明。In order to make the above objects, features and advantages of the present invention more comprehensible, the present invention will be further described in detail below in conjunction with the accompanying drawings and specific embodiments.

本发明的操作系统启动保护方法及装置应用于计算机、手机等客户端,用于对客户端的开机启动进行保护,使其能正常的启动。具体的,本申请的操作系统启动保护方法及装置可以通过计算机程序实现,并安装于客户端中,通过处理器的运行来执行。The operating system start-up protection method and device of the present invention are applied to clients such as computers and mobile phones, and are used to protect the start-up of the clients so that they can be started normally. Specifically, the operating system start-up protection method and device of the present application can be implemented by a computer program, installed in a client, and executed by running a processor.

参照图1,示出本发明的操作系统启动保护方法的实施例一,包括以下步骤:Referring to Fig. 1, it shows the first embodiment of the operating system startup protection method of the present invention, comprising the following steps:

步骤101,触发操作系统启动。Step 101, triggering the operating system to start.

启动操作系统可以根据用户的命令来启动或根据预定的启动时间来启动。The boot operating system can be started according to a user's command or according to a predetermined startup time.

步骤102,在其他应用程序启动之前首先调用启动保护器。Step 102, firstly invoke the startup protector before other application programs are started.

可以预先将启动保护器安装于计算机或手机等客户端内,当客户端用户启动客户端的操作系统时,由操作系统在其他应用程序启动之前首先调用启动保护器。具体的,可以将启动保护器添加到操作系统自带的启动列表中,并设置启动保护器的启动优先顺序,当操作系统启动时,启动列表中的启动保护器则就会在其他应用程序启动之前优先启动。The boot protector can be pre-installed in clients such as computers or mobile phones, and when the client user starts the operating system of the client, the operating system first calls the boot protector before starting other application programs. Specifically, the startup protector can be added to the startup list of the operating system, and the startup priority of the startup protector can be set. When the operating system starts, the startup protector in the startup list will be started before other applications. prior to booting.

另外,则可以通过限制其他应用程序启动的方式来优先调用启动保护器,在启动保护器启动之后再通过启动保护器或者操作系统来启动其他的应用程序。例如,将启动保护器添加到操作系统自带的启动列表中后,删除操作系统中自带的启动列表中除启动保护器以外的所有应用程序记录,并将其他应用程序记录添加到启动保护器中,通过启动保护器来启动其他应用程序。In addition, the startup protector may be invoked preferentially by restricting the startup of other applications, and then start other applications through the startup protector or the operating system after the startup protector is started. For example, after adding the boot protector to the boot list that comes with the operating system, delete all application records in the boot list that come with the operating system except the boot protector, and add other application records to the boot protector , launch other applications through the launch protector.

步骤103,启动保护器分析上次系统运行过程中的操作系统运行记录,查看是否出现系统异常,若未出现异常,则正常启动操作系统,反之,则在操作系统启动过程中仅允许预置的安全应用程序启动。Step 103, the startup protector analyzes the operation record of the operating system during the last system operation to check whether there is a system abnormality, if no abnormality occurs, the operating system is started normally, otherwise, only the preset The security application starts.

一般情况下,操作系统会通过日志或者其他的方式自己记录运行过程,例如,在此次运行过程中,所有的应用程序或者进程是否正常,是否出现死机、蓝屏等故障等等。启动保护器可以直接通过读取操作系统中存储的运行记录来查看是否有出现系统异常。另外,启动保护器也可以在操作系统的运行过程中对其进行监测,并记录操作系统运行状态,当需要获取操作系统是否出现异常时,则可以直接从启动保护器所记录的运行记录来查看。Under normal circumstances, the operating system will record the running process by itself through logs or other means, for example, during this running process, whether all applications or processes are normal, whether there are crashes, blue screens and other failures, etc. The boot protector can directly check whether there is any system abnormality by reading the running records stored in the operating system. In addition, the boot protector can also monitor the operating system during its running and record the running status of the operating system. When it is necessary to obtain whether the operating system is abnormal, you can directly check it from the running records recorded by the boot protector. .

预置的安全应用程序可以是启动保护器从指定的服务器中下载得到的可信应用程序,也可以是经过用户手工确认许可的操作系统中的自启动应用程序,还可以是用户设置恢复点是确认的自启动应用程序,或者上一次或者某一次系统运行正常时中的自启动应用程序。The preset security application program can be a trusted application program downloaded by the startup protector from a designated server, or a self-starting application program in the operating system that has been manually confirmed and approved by the user, or a recovery point set by the user. The confirmed self-starting application, or the self-starting application in the last time or when the system was running normally.

参照图2,示出本发明的操作系统启动保护方法的实施例二,进一步地,在步骤103之后还包括如下步骤:Referring to FIG. 2 , it shows Embodiment 2 of the method for protecting the startup of the operating system of the present invention. Further, after step 103, the following steps are also included:

步骤201,若预置的安全应用程序出现异常,则操作系统再次启动过程中,启动保护器禁止除启动保护器以外的所有应用程序启动。Step 201, if the preset security application program is abnormal, during the re-starting process of the operating system, the startup protector prohibits the startup of all application programs except the startup protector.

其中,预置的安全应用程序是否出现异常通过查看预置的安全应用程序是否导致死机、蓝屏等故障等等来判断。Wherein, whether the preset security application program is abnormal is judged by checking whether the preset security application program causes faults such as crash, blue screen, and the like.

进一步地,本发明的操作系统启动保护方法实施例还包括:预置的安全应用程序启动之前,验证安全应用程序是否被篡改,若被篡改,则禁止该项安全应用程序启动。Further, the embodiment of the method for protecting the startup of the operating system of the present invention further includes: before starting the preset security application, verifying whether the security application has been tampered with, and prohibiting the startup of the security application if tampered.

通过启动之前对安全应用程序进行验证,只允许未被篡改的安全应用程序启动,可以保证操作系统的正常启动,避免可能出现的异常。其中,验证安全应用程序是否被篡改可以通过验证安全应用程序的hash值或者MD5(Message-Digest Algorithm5)值是否相同来判断。如果不同,则说明安全应用程序被篡改,那么就可以判断安全应用程序出现异常。By verifying the safety application program before starting, only the safety application program that has not been tampered with is allowed to start, which can ensure the normal start of the operating system and avoid possible abnormalities. Wherein, verifying whether the security application program has been tampered with can be judged by verifying whether the hash value or the MD5 (Message-Digest Algorithm5) value of the security application program are the same. If they are different, it means that the safety application program has been tampered with, so it can be judged that the safety application program is abnormal.

在验证安全应用程序是否被篡改,启动保护器可以在操作系统的启动过程中进行联网,从服务器获取安全应用程序的标准数据,如hash值或MD5值,并与安全应用程序的当前数据进行比对,若二者不同,则说明安全应用程序被篡改。另外,也可以预先将安全应用程序的标准数据存储在客户端中,启动保护器可以直接从客户端获取预先存储的安全应用程序的标准数据,再与安全应用程序的当前数据进行比对。When verifying whether the security application has been tampered with, the boot protector can connect to the Internet during the startup process of the operating system, obtain the standard data of the security application from the server, such as hash value or MD5 value, and compare it with the current data of the security application Yes, if they are different, the security application has been tampered with. In addition, the standard data of the safety application can also be stored in the client in advance, and the boot protector can directly obtain the pre-stored standard data of the safety application from the client, and then compare it with the current data of the safety application.

进一步地,在前述的操作系统启动保护方法实施例中,还可以包括以下步骤:Further, in the aforementioned embodiment of the operating system startup protection method, the following steps may also be included:

在操作系统启动完成后,如果有未启动的应用程序,则展示未启动应用程序列表。After the operating system is started, if there are unstarted applications, a list of unstarted applications will be displayed.

用户可以根据需要来选择是否启动列表中的应用程序,或者对这些应用程序进行检测,查看其是否会导致操作系统的启动失败。例如,用户根据在启动保护器提供的列表中逐项选择其中的一个应用程序进行启动,或者选择其中的某两个或者某几个程序来进行启动,在查找到导致操作系统无法正常启动的应用程序时,则可以删除该应用程序或者对其进行修复等等操作。The user can choose whether to start the application programs in the list according to needs, or detect these application programs to check whether they will cause the startup failure of the operating system. For example, the user selects one of the application programs in the list provided by the startup protector to start, or selects some two or some programs to start, and finds the application that causes the operating system to fail to start normally. program, you can delete the application or repair it and so on.

参照图3,示出本发明的操作系统启动保护装置的实施例一,该装置中的各个模块是指基于计算机语言编写的计算机程序,存储于操作系统所在的客户端中,并通过处理器运行。Referring to Fig. 3, it shows the first embodiment of the operating system startup protection device of the present invention, each module in the device refers to a computer program based on computer language, stored in the client where the operating system is located, and run by the processor .

操作系统启动保护装置包括操作系统启动模块10、启动保护器启动模块20及启动保护器30。The operating system startup protection device includes an operating system startup module 10 , a startup protector startup module 20 and a startup protector 30 .

操作系统启动模块10,适于触发操作系统启动。The operating system startup module 10 is adapted to trigger the startup of the operating system.

保护调用模块20,适于在其他应用程序启动之前首先调用启动保护器。The protection calling module 20 is adapted to first call the startup protector before other application programs are started.

启动保护器30,适于上次系统运行过程中的操作系统运行记录,查看是否出现系统异常,若未出现异常,则正常启动操作系统,反之,则在操作系统启动过程中仅允许预置的安全应用程序启动。Start protector 30, suitable for operating system operating records in the last system running process, check whether there is a system abnormality, if there is no abnormality, then start the operating system normally, otherwise, only allow the preset The security application starts.

参照图4,示出本发明的操作系统启动保护装置的实施例二,进一步地,该装置还包括禁止启动模块40,若预置的安全应用程序出现异常,则操作系统再次启动过程中,启动保护器禁止除启动保护器以外的所有应用程序启动。Referring to Fig. 4, it shows the second embodiment of the operating system startup protection device of the present invention. Further, the device also includes a startup prohibition module 40. If the preset security application program is abnormal, during the restarting process of the operating system, startup The protector prevents all applications from starting except the launch protector.

进一步地,本发明的操作系统启动保护装置实施例还包括安全应用程序异常检测模块,适于验证安全应用程序是否被篡改,若被篡改,则说明安全应用程序出现异常。Further, the embodiment of the operating system startup protection device of the present invention also includes a security application anomaly detection module, which is suitable for verifying whether the security application has been tampered with, and if tampered, it indicates that the security application is abnormal.

安全应用程序异常检测模块包括第一比较单元,适于在启动过程中,启动保护器联网,从服务器获取安全应用程序的标准数据,并与安全应用程序的当前数据进行比对;或第二比较单元,适于在启动过程中,启动保护器从客户端获取预先存储的安全应用程序的标准数据,并与安全应用程序的当前数据进行比对。The safety application anomaly detection module includes a first comparison unit, which is suitable for starting the protector to network, obtaining standard data of the safety application from the server, and comparing it with the current data of the safety application; or the second comparison The unit is adapted to enable the boot protector to obtain pre-stored standard data of the safety application program from the client and compare it with the current data of the safety application program during the start-up process.

进一步地,启动保护器30还包括安全应用程序获取单元,适于获取预置的安全应用程序,所述获取方法包括以下一种或几种:从启动保护器指定的服务器中下载得到;获取用户手工确认许可得的自启动应用程序;获取用户设置恢复点时的自启动应用程序;获取上次系统运行正常时运行的自启动应用程序。Further, the startup protector 30 also includes a security application acquisition unit, adapted to acquire a preset security application, and the acquisition method includes one or more of the following: downloading from a server designated by the startup protector; obtaining user Manually confirm the self-starting application of the license; obtain the self-starting application when the user sets the recovery point; obtain the self-starting application that was run when the system was running normally last time.

进一步地,该装置还包括展示模块,适于在操作系统启动完成后,展示未启动应用程序列表。Further, the device further includes a display module adapted to display a list of unstarted application programs after the operating system is started.

本发明的操作系统启动保护方法和装置通过在操作系统启动的同时对于操作系统上次的系统运行记录进行分析查看是否出现系统异常,在出现异常时则只允许预置的安全应用程序启动,可以避免因为操作系统中的应用程序自身异常而造成的操作系统多次无法正常启动的情况,也可以避免不能启动所造成的需要格式化系统、丢失用户信息等情况。The operating system start-up protection method and device of the present invention analyze the last system operation record of the operating system to check whether there is a system abnormality when the operating system is started, and only allow the preset security application to start when an abnormality occurs. Avoid the situation that the operating system cannot be started normally for many times due to the abnormality of the application program in the operating system, and also avoid the need to format the system and lose user information caused by the failure to start.

进一步地,如果预置的安全应用程序出现异常,在操作系统再次启动过程中,则只允许启动保护器启动,可以使操作系统能够顺序启动。Further, if the pre-installed security application program is abnormal, only the boot protector is allowed to start during the restarting process of the operating system, so that the operating system can be started sequentially.

本说明书中的各个实施例均采用递进的方式描述,每个实施例重点说明的都是与其他实施例的不同之处,各个实施例之间相同相似的部分互相参见即可。对于装置实施例而言,由于其与方法实施例基本相似,所以描述的比较简单,相关之处参见方法实施例的部分说明即可。Each embodiment in this specification is described in a progressive manner, each embodiment focuses on the difference from other embodiments, and the same and similar parts of each embodiment can be referred to each other. As for the device embodiment, since it is basically similar to the method embodiment, the description is relatively simple, and for related parts, please refer to the part of the description of the method embodiment.

以上对本发明所提供的操作系统启动保护方法和装置进行了详细介绍,本文中应用了具体个例对本发明的原理及实施方式进行了阐述,以上实施例的说明只是用于帮助理解本发明的方法及其核心思想;同时,对于本领域的一般技术人员,依据本发明的思想,在具体实施方式及应用范围上均会有改变之处,综上所述,本说明书内容不应理解为对本发明的限制。The operating system start-up protection method and device provided by the present invention have been described above in detail. In this paper, specific examples are used to illustrate the principle and implementation of the present invention. The descriptions of the above embodiments are only used to help understand the method of the present invention. and its core idea; at the same time, for those of ordinary skill in the art, according to the idea of the present invention, there will be changes in the specific implementation and scope of application. limits.

Claims (10)

1. an os starting guard method is characterized in that, may further comprise the steps:
The trigger action system starts;
Before other application program launchings, at first call the starting protection device;
Described starting protection device judges in the upper subsystem operational process system exception whether occurs, if occur unusually then allowing other application programs of os starting, otherwise the security application that then only allows to preset in the os starting process starts.
2. the method for claim 1 is characterized in that, described method also comprises:
If the security application that presets occurs unusual, then in the start-up course, the starting protection device is forbidden all application program launchings except starting protection device self to operating system again.
3. the method for claim 1 is characterized in that, also comprises before the security application that presets starts:
Whether the authenticating security application program is tampered, if be tampered, forbids that then this security application starts.
4. method as claimed in claim 3 is characterized in that, whether described authenticating security application program is tampered and comprises:
In start-up course, the starting protection device is networked, and obtains the normal data of security application from server, and compares with the current data of security application, if the two difference illustrates that then security application is tampered; Or
In start-up course, the starting protection device obtains the normal data of pre-stored security application from client, and compares with the current data of security application, if the two difference illustrates that then security application is tampered.
5. the method for claim 1 is characterized in that, the described security application acquisition methods that presets comprise following one or more:
From the server of starting protection device appointment, download and obtain;
Obtain the manual self-starting application program of confirming license of user;
Obtain the self-starting application program when the user arranges recovery point;
The self-starting application program of moving when obtaining the subsystem normal operation.
6. method as claimed in claim 1 or 2 is characterized in that, described method also comprises:
After os starting is finished, show not start the application list.
7. an os starting protective device is characterized in that, comprising:
The os starting module is suitable for the trigger action system and starts;
The protection calling module is suitable at first calling the starting protection device before other application program launchings;
The starting protection device is suitable for judging in the upper subsystem operational process system exception whether occurs, if occur unusually then allowing other application programs of os starting, otherwise the security application that then only allows to preset in the os starting process starts.
8. device as claimed in claim 7 is characterized in that, described device also comprises:
The No starting module is suitable for verifying that the security application that presets occurs unusual, and then in the start-up course, notice starting protection device is forbidden all application program launchings except starting protection device self to operating system again.
9. device as claimed in claim 7 is characterized in that, described device also comprises:
Whether security application abnormality detection module is suitable for the authenticating security application program and is tampered, if be tampered, illustrates that then security application occurs unusual.
10. device as claimed in claim 9 is characterized in that, described security application abnormality detection module comprises:
The first comparing unit is suitable in start-up course, and the starting protection device is networked, and obtains the normal data of security application from server, and compares with the current data of security application; Or
The second comparing unit is suitable in start-up course, and the starting protection device obtains the normal data of pre-stored security application from client, and compares with the current data of security application.
CN201310213646.3A 2011-06-20 2011-06-20 Os starting guard method and device Active CN103309769B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201310213646.3A CN103309769B (en) 2011-06-20 2011-06-20 Os starting guard method and device

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201310213646.3A CN103309769B (en) 2011-06-20 2011-06-20 Os starting guard method and device
CN 201110166662 CN102262574B (en) 2011-06-20 2011-06-20 Boot protecting method and device of operating system

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
CN 201110166662 Division CN102262574B (en) 2011-06-20 2011-06-20 Boot protecting method and device of operating system

Publications (2)

Publication Number Publication Date
CN103309769A true CN103309769A (en) 2013-09-18
CN103309769B CN103309769B (en) 2016-09-28

Family

ID=49135021

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310213646.3A Active CN103309769B (en) 2011-06-20 2011-06-20 Os starting guard method and device

Country Status (1)

Country Link
CN (1) CN103309769B (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103645898A (en) * 2013-12-13 2014-03-19 浪潮电子信息产业股份有限公司 Automatic scripting tool
CN104035795A (en) * 2014-06-09 2014-09-10 贝壳网际(北京)安全技术有限公司 Method and device for controlling execution of RING0-level program
CN105138380A (en) * 2015-09-21 2015-12-09 天脉聚源(北京)传媒科技有限公司 Method and device for starting Linux system
CN106850519A (en) * 2016-01-08 2017-06-13 北京万维星辰科技有限公司 Application security authentication method and device

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1869999A (en) * 2006-06-28 2006-11-29 北京飞天诚信科技有限公司 Protection method and device for opening computer
CN1940877A (en) * 2005-09-28 2007-04-04 联想(北京)有限公司 Software system protecting point restore method and device
EP1998254A2 (en) * 2007-05-29 2008-12-03 Kabushiki Kaisha Toshiba Information processing apparatus and start-up control method
CN101763272A (en) * 2008-11-05 2010-06-30 环旭电子股份有限公司 Electronic device firmware updating method and system
CN101882085A (en) * 2010-06-23 2010-11-10 迈普通信技术股份有限公司 System starting method and embedded equipment

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1940877A (en) * 2005-09-28 2007-04-04 联想(北京)有限公司 Software system protecting point restore method and device
CN1869999A (en) * 2006-06-28 2006-11-29 北京飞天诚信科技有限公司 Protection method and device for opening computer
EP1998254A2 (en) * 2007-05-29 2008-12-03 Kabushiki Kaisha Toshiba Information processing apparatus and start-up control method
CN101763272A (en) * 2008-11-05 2010-06-30 环旭电子股份有限公司 Electronic device firmware updating method and system
CN101882085A (en) * 2010-06-23 2010-11-10 迈普通信技术股份有限公司 System starting method and embedded equipment

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103645898A (en) * 2013-12-13 2014-03-19 浪潮电子信息产业股份有限公司 Automatic scripting tool
CN103645898B (en) * 2013-12-13 2017-04-12 浪潮电子信息产业股份有限公司 Automatic scripting tool
CN104035795A (en) * 2014-06-09 2014-09-10 贝壳网际(北京)安全技术有限公司 Method and device for controlling execution of RING0-level program
CN104035795B (en) * 2014-06-09 2018-08-24 北京猎豹移动科技有限公司 The method and device that a kind of RING0 grades of programs of control execute
CN105138380A (en) * 2015-09-21 2015-12-09 天脉聚源(北京)传媒科技有限公司 Method and device for starting Linux system
CN105138380B (en) * 2015-09-21 2018-06-19 天脉聚源(北京)传媒科技有限公司 A kind of startup method and device of linux system
CN106850519A (en) * 2016-01-08 2017-06-13 北京万维星辰科技有限公司 Application security authentication method and device

Also Published As

Publication number Publication date
CN103309769B (en) 2016-09-28

Similar Documents

Publication Publication Date Title
CN102262574B (en) Boot protecting method and device of operating system
CN109670319B (en) Server flash safety management method and system thereof
US20160378458A1 (en) Method and device for system application installation package, and terminal
US20080270782A1 (en) Boot process
WO2013067486A1 (en) Secure boot administration in a unified extensible firmware interface (uefi)- compliant computing device
WO2014000613A1 (en) System repair method and device, and storage medium
WO2016019893A1 (en) Application installation method and apparatus
TWI706274B (en) Computing device and non-transitory computer-readable storage medium enabling operating system repairs via recovery agents
CN103309769B (en) Os starting guard method and device
WO2012031567A1 (en) Fault tolerance method and device for file system
CA2967098A1 (en) Updating of firmware
CN112948190A (en) Hardware testing method, system and related device of server
US20100217751A1 (en) Method and system for safely deleting information from a computer
CN113094210B (en) Window platform process and file daemon method and system
US20230315620A1 (en) System and Method for Diagnosing a Computing Device in Safe Mode
CN102262573B (en) Operating system startup protection method and device
JP5087502B2 (en) Operation log management apparatus and operation log management method
CN111538985A (en) Android application running environment detection method and device
EP3952244A1 (en) Vehicle control device, vehicle control device start-up method, and recording medium
CN112214249B (en) Cross-platform self-starting program method based on USB device
CN103713966B (en) Mobile terminal system starting protection method and apparatus
CN114546420A (en) Software remote installation protection uninstalling method
CN105590065B (en) Method and device for protecting preset file
CN106227665A (en) A kind of equipment starting method and device
CN103713920B (en) Portable device system starting protection method and apparatus

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
TR01 Transfer of patent right

Effective date of registration: 20220729

Address after: 300450 No. 9-3-401, No. 39, Gaoxin 6th Road, Binhai Science Park, Binhai New Area, Tianjin

Patentee after: 3600 Technology Group Co.,Ltd.

Address before: 100088 room 112, block D, 28 new street, new street, Xicheng District, Beijing (Desheng Park)

Patentee before: BEIJING QIHOO TECHNOLOGY Co.,Ltd.

Patentee before: Qizhi software (Beijing) Co.,Ltd.

TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20230705

Address after: 1765, floor 17, floor 15, building 3, No. 10 Jiuxianqiao Road, Chaoyang District, Beijing 100015

Patentee after: Beijing Hongxiang Technical Service Co.,Ltd.

Address before: 300450 No. 9-3-401, No. 39, Gaoxin 6th Road, Binhai Science Park, Binhai New Area, Tianjin

Patentee before: 3600 Technology Group Co.,Ltd.

TR01 Transfer of patent right
CP03 Change of name, title or address

Address after: 1765, floor 17, floor 15, building 3, No. 10 Jiuxianqiao Road, Chaoyang District, Beijing 100015

Patentee after: Beijing 360 Zhiling Technology Co.,Ltd.

Country or region after: China

Address before: 1765, floor 17, floor 15, building 3, No. 10 Jiuxianqiao Road, Chaoyang District, Beijing 100015

Patentee before: Beijing Hongxiang Technical Service Co.,Ltd.

Country or region before: China

CP03 Change of name, title or address