Executable program file protection system and method on basis of UEFI (Unified Extensible Firmware Interface)

The invention discloses an executable program file protection system and an executable program file protection method on the basis of a UEFI (Unified Extensible Firmware Interface) and belongs to the technical field of computer safety. The system comprises a file demons driving module and a file protection server side. The file demons driving module has an effect of carrying out integrity measurement and recovery on a specific file in an operation system in the start-up process; the file protection server side has the main effect of providing distribution of a protected file and pushing the protected file to a client so as to carry out file protection at the client; the file protection system also can update the protected file or a driving program for a file protection program; on the basis that UEFI firmware carries out trusted measurement and trusted recovery on an executable program file in the operation system, the file in the operation system can be subjected to integrity measurement in the start-up guiding process and recovery can be carried out when the file abnormity is found. The executable program file protection system and the executable program file protection method can be applied for a software company, a complete machine manufacturer or an equipment manufacturer to protect files of key programs.