| 標題: | A Graph Approach to Quantitative Analysis of Control-Flow Obfuscating Transformations |
| 作者: | Tsai, Hsin-Yi Huang, Yu-Lun Wagner, David 電控工程研究所 Institute of Electrical and Control Engineering |
| 關鍵字: | Code obfuscation;computer prime;reverse engineering;software metrics;software protection |
| 公開日期: | 1-六月-2009 |
| 摘要: | Modern obfuscation techniques are intended to discourage reverse engineering and malicious tampering of software programs. We study control-flow obfuscation, which works by modifying the control flow of the program to be obfuscated, and observe that it is difficult to evaluate the robustness of these obfuscation techniques. In this paper, we present a framework for quantitative analysis of control-flow obfuscating transformations. Our framework is based upon the control-flow graph of the program, and we show that many existing control-flow obfuscation techniques can be expressed as a sequence of basic transformations on these graphs. We also propose a new measure of the difficulty of reversing these obfuscated programs, and we show that our framework can be used to easily evaluate the space penalty due to the transformations. |
| URI: | http://dx.doi.org/10.1109/TIFS.2008.2011077 http://hdl.handle.net/11536/7155 |
| ISSN: | 1556-6013 |
| DOI: | 10.1109/TIFS.2008.2011077 |
| 期刊: | IEEE TRANSACTIONS ON INFORMATION FORENSICS AND SECURITY |
| Volume: | 4 |
| Issue: | 2 |
| 起始頁: | 257 |
| 結束頁: | 267 |
| 顯示於類別: | 期刊論文 |
文件中的檔案:
若為 zip 檔案,請下載檔案解壓縮後,用瀏覽器開啟資料夾中的 index.html 瀏覽全文。
- A framework for quantitative evaluation of parallel control-flow obfuscation / Huang, Yu-Lun;Tsai, Hsin-Yi
- 透過例外機制實作程式模糊化 / 黃致超;Huang, Chih-Chao;楊 武;Yang, Wuu
- 從攻擊角度定量評估資訊系統安全性 / 蔡欣宜;Tsai, Hsin-Yi;黃育綸;Huang, Yu-Lun
- 軟體控制流程之模糊化分析與評估 / 蔡欣宜;黃育綸
- Advanced obfuscation techniques for Java bytecode / Chan, JT;Yang, W
- 對混淆後之殭屍網路及惡意軟體自動化分析與分類 / 江易達;Chiang, Yi-Ta;林盈達;Lin, Ying-Dar
- 以定性的有限狀態機為基礎的Java程式 / 趙博民;Poi-Ming Chao;楊武;Wuu Yang
- 行動式程式碼系統中軟體授權與保護機制 / 謝續平;SHIEH SHIUH-PYNG
Loading...