代码人为性:基于N-Gram模型的代码隐蔽性度量

2015 IEEE/ACM 1st International Workshop on Software Protection Pub Date : 2015-05-16 DOI:10.1109/SPRO.2015.14

Yuichiro Kanzaki, Akito Monden, C. Collberg

{"title":"代码人为性:基于N-Gram模型的代码隐蔽性度量","authors":"Yuichiro Kanzaki, Akito Monden, C. Collberg","doi":"10.1109/SPRO.2015.14","DOIUrl":null,"url":null,"abstract":"This paper proposes a method for evaluating the artificiality of protected code by means of an N-gram model. The proposed artificiality metric helps us measure the stealth of the protected code, that is, the degree to which protected code can be distinguished from unprotected code. In a case study, we use the proposed method to evaluate the artificiality of programs that are transformed by well-known obfuscation techniques. The results show that static obfuscating transformations (e.g., Control flow flattening) have little effect on artificiality. However, dynamic obfuscating transformations (e.g., Code encryption), or a technique that inserts junk code fragments into the program, tend to increase the artificiality, which may have a significant impact on the stealth of the code.","PeriodicalId":338591,"journal":{"name":"2015 IEEE/ACM 1st International Workshop on Software Protection","volume":"14 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-05-16","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"14","resultStr":"{\"title\":\"Code Artificiality: A Metric for the Code Stealth Based on an N-Gram Model\",\"authors\":\"Yuichiro Kanzaki, Akito Monden, C. Collberg\",\"doi\":\"10.1109/SPRO.2015.14\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This paper proposes a method for evaluating the artificiality of protected code by means of an N-gram model. The proposed artificiality metric helps us measure the stealth of the protected code, that is, the degree to which protected code can be distinguished from unprotected code. In a case study, we use the proposed method to evaluate the artificiality of programs that are transformed by well-known obfuscation techniques. The results show that static obfuscating transformations (e.g., Control flow flattening) have little effect on artificiality. However, dynamic obfuscating transformations (e.g., Code encryption), or a technique that inserts junk code fragments into the program, tend to increase the artificiality, which may have a significant impact on the stealth of the code.\",\"PeriodicalId\":338591,\"journal\":{\"name\":\"2015 IEEE/ACM 1st International Workshop on Software Protection\",\"volume\":\"14 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2015-05-16\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"14\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2015 IEEE/ACM 1st International Workshop on Software Protection\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SPRO.2015.14\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2015 IEEE/ACM 1st International Workshop on Software Protection","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SPRO.2015.14","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 14

摘要

本文提出了一种利用N-gram模型评价受保护代码的人为性的方法。提出的人工度量帮助我们度量受保护代码的隐蔽性，也就是说，受保护的代码可以与未受保护的代码区分的程度。在一个案例研究中，我们使用提出的方法来评估由众所周知的混淆技术转换的程序的人为性。结果表明，静态模糊转换(例如，控制流平坦化)对人为性的影响很小。然而，动态混淆转换(例如，代码加密)，或者在程序中插入垃圾代码片段的技术，倾向于增加人为性，这可能对代码的隐蔽性产生重大影响。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

Code Artificiality: A Metric for the Code Stealth Based on an N-Gram Model

This paper proposes a method for evaluating the artificiality of protected code by means of an N-gram model. The proposed artificiality metric helps us measure the stealth of the protected code, that is, the degree to which protected code can be distinguished from unprotected code. In a case study, we use the proposed method to evaluate the artificiality of programs that are transformed by well-known obfuscation techniques. The results show that static obfuscating transformations (e.g., Control flow flattening) have little effect on artificiality. However, dynamic obfuscating transformations (e.g., Code encryption), or a technique that inserts junk code fragments into the program, tend to increase the artificiality, which may have a significant impact on the stealth of the code.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2015 IEEE/ACM 1st International Workshop on Software Protection

自引率

0.00%

发文量

期刊最新文献

Automatic Discovery of Software Attacks via Backward Reasoning Infections as Abstract Symbolic Finite Automata: Formal Model and Applications Using Virtual Machine Protections to Enhance Whitebox Cryptography Matryoshka: Strengthening Software Protection via Nested Virtual Machines Assessment of Data Obfuscation with Residue Number Coding