完整後設資料紀錄
DC 欄位語言
dc.contributor.authorHuang, Yu-Lunen_US
dc.contributor.authorTsai, Hsin-Yien_US
dc.date.accessioned2014-12-08T15:28:54Z-
dc.date.available2014-12-08T15:28:54Z-
dc.date.issued2012-11-01en_US
dc.identifier.issn0167-4048en_US
dc.identifier.urihttp://dx.doi.org/10.1016/j.cose.2012.08.003en_US
dc.identifier.urihttp://hdl.handle.net/11536/20881-
dc.description.abstractSoftware obfuscation is intended to protect a program by thwarting reverse engineering. Several types of software obfuscation have been proposed, and control-flow obfuscation is a commonly adopted one. In this paper, we present a framework to evaluate parallel control-flow obfuscation, which raises difficulty of reverse engineering by increasing parallelism of a program. We also define a control flow graph of a program and some atomic operators for obfuscating transformations. The proposed framework comprises three phases: parsing, formalization and evaluation. A program is first parsed to a control flow graph. Then, we formalize a parallel control-flow obfuscating transformation based on our atomic operators. By selecting target code blocks in the control flow graph and applying obfuscating transformations to the target code blocks, the original program is then obfuscated. In the third phase, we define a measure to calculate the program complexity. The measure can be considered as a degree to which an obfuscating transformation can confuse a human trying to understand the obfuscated program. Such a measure can also be used as the base of the potency metric to estimate the capability of the obfuscated program against reverse engineering. Our novel framework helps efficiently examine a control-flow obfuscating transformation in a systematic manner and helps select an appropriate obfuscating transformation among a number of candidates to better protect a program. (C) 2012 Elsevier Ltd. All rights reserved.en_US
dc.language.isoen_USen_US
dc.subjectSoftware obfuscationen_US
dc.subjectSecurity evaluationen_US
dc.subjectReverse engineeringen_US
dc.subjectSoftware metricsen_US
dc.subjectControl flow graphen_US
dc.titleA framework for quantitative evaluation of parallel control-flow obfuscationen_US
dc.typeArticleen_US
dc.identifier.doi10.1016/j.cose.2012.08.003en_US
dc.identifier.journalCOMPUTERS & SECURITYen_US
dc.citation.volume31en_US
dc.citation.issue8en_US
dc.citation.spage886en_US
dc.citation.epage896en_US
dc.contributor.department電控工程研究所zh_TW
dc.contributor.departmentInstitute of Electrical and Control Engineeringen_US
dc.identifier.wosnumberWOS:000312677200004-
dc.citation.woscount0-
顯示於類別:期刊論文


文件中的檔案:

  1. 000312677200004.pdf

若為 zip 檔案,請下載檔案解壓縮後,用瀏覽器開啟資料夾中的 index.html 瀏覽全文。