0

This question is from a decomposition of What are good programming practices to prevent malware in standalone applications?

The question has to do with malware dynamically getting into a program by infecting data files which the program reads/writes.

Is it safer to require data be stored in a database and only use service calls, no direct file operations when accessing data for a program? Let's say your program loads many images, numeric data tables, or text information as it runs. Assume this is after the program is loaded and initialized to where it can make service calls.

Is it easier to infect a file or a database?

4

2 回答 2

2

It is easier to infect user-space API than kernel space API.

In other words, the point is moot if you can't trust the services you're using to read the data.

于 2009-03-24T21:19:26.390 回答
1

我会说这是安全定义(读取预防、写入预防等)以及谁可能具有访问权限以及风险有多大的函数。

您控制的实体通常可能比将控制权交给外部实体“更安全”——但不一定。

通常没有什么是容易指定 wrt 安全性的,因为它始终是风险与成本的权衡。

于 2009-03-24T21:39:33.720 回答