公开(公告)号：WO2016094985A1

公开(公告)日：2016-06-23

申请号：PCT/BR2015/000184

申请日：2015-12-15

Applicant: GAS INFORMATICA LTDA

Inventor： CAVALHEIRI MARENGHI, Fabio ,  FIGUEIREDO ALVES, Paulo Márcio ,  NAVA, Felipe

IPC: G06F21/50 ,  G06F21/52 ,  G06F9/54 ,  G06F9/52 ,  G06F21/30 ,  G06F21/00 ,  G06F9/46

CPC classification number: G06F9/46 ,  G06F9/52 ,  G06F9/54 ,  G06F21/53

Abstract: Computer systems Methods (implemented through instructions carried by a medium) and apparatus for protecting a process or thread (102, 202) against forced terminations are disclosed. The protection is accomplished by monitoring of commands targeting the processes or threads (102, 202) under protection. In one example embodiment (100), Operating Systems' API (108) usage is monitored by a Operating System Device Driver (104) using kernel hooks. In another example embodiment (200), that monitoring occurs using kernel callbacks.

Abstract translation: 计算机系统公开了用于保护过程或线程（102,202）以防止强制终止的方法（通过介质承载的指令来实现）和装置。 通过监视针对保护的进程或线程（102,202）的命令来实现保护。 在一个示例实施例（100）中，操作系统的API（108）使用由使用内核钩的操作系统设备驱动程序（104）监视。 在另一示例实施例（200）中，使用内核回调进行监视。