摘要 |
PURPOSE: A positive security-based malicious code execution preventing method and a malicious code execution preventing system are provided to originally block the execution of a malicious code by applying a positive security technique to a file on a non-allowed path. CONSTITUTION: A kernel driver(110) hooks a kernel of a user computer and obtains a control right about file execution. A white-list database(150) stores file information or a computer path. A hash extracting module(170) extracts the hash information of the file. A reputation security server(200) supplies evaluation information to a user computer. |