| 基于控制流混淆的软件保护方法研究 |
| |
| 引用本文: | 谭思维,方勇,周妍,浦伟.基于控制流混淆的软件保护方法研究[J].信息安全与通信保密,2012(9):127-128,131. |
| |
| 作者姓名: | 谭思维 方勇 周妍 浦伟 |
| |
| 作者单位: | 1. 四川大学电子信息学院信息安全研究所,四川成都,610065
2. 四川省信息安全测评中心,四川成都,610001 |
| |
| 摘 要: | 软件盗版、篡改和逆向工程是软件安全的主要威胁。逆向工程师利用逆向分析技术可以理解软件的行为,并从中提取核心算法和重要数据结构。针对目前大部分的混淆方法难以抵御动态攻击的缺点,文中提出一种基于控制流图多样化的代码混淆方法。实验结果表明,该方法不仅能够有效降低静态反汇编分析准度,同时能够在一个合理的性能开销之内增加动态逆向分析的难度,从而使混淆后的程序具有更高的安全性。
|
| 关 键 词: | 逆向工程 代码混淆 控制流 静态反汇编 |
Study on Software Protection Method based on Control Flow Obfuscation |
| |
| TAN Si-wei,FANG Yong,ZHOU Yan,PUWei.Study on Software Protection Method based on Control Flow Obfuscation[J].China Information Security,2012(9):127-128,131. |
| |
| Authors: | TAN Si-wei FANG Yong ZHOU Yan PUWei |
| |
| Affiliation: | 1Institute of Information Security, Sichuan University, Chengdu Sichuan 610065, China; 2Information Security Evaluation Center, Chengdu Sichuan 610001, China) |
| |
| Abstract: | Software piracy, tampering and reverse engineering are the principal threats to software security. Reverse engineer could understand the behavior of the software with reverse analysis technology, and from this, extract the core algorithms and data structures. For most obfuscation methods could hardly resist the dynamic attacks, a code obfuscation method based on the control flow graph diversification is proposed. The experimental results show that this method could effectively reduce the difficulty of static disassembly analysis while enhancing the difficulty of dynamic reverse analysis within a reasonable execution time, thus making the obfuscated program of even higher security. |
| |
| Keywords: | reverse engineering code obfuscation control flow static disassembly |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
