网络与信息安全学报 ›› 2020, Vol. 6 ›› Issue (2): 12-18.doi: 10.11959/j.issn.2096-109x.2020027

• 综述 • 上一篇    下一篇

路径分支混淆研究综述

耿普(),祝跃飞   

  1. 战略支援部队信息工程大学,河南 郑州 450001
  • 修回日期:2019-09-03 出版日期:2020-04-15 发布日期:2020-04-23
  • 作者简介:耿普(1982- ),男,云南宣威人,战略支援部队信息工程大学博士生,主要研究方向为网络与信息安全、代码保护|祝跃飞(1962- ),男,浙江杭州人,博士,战略支援部队信息工程大学教授、博士生导师,主要研究方向为网络空间、公钥密码
  • 基金资助:
    国家重点研发计划基金资助项目(2016YFB0801601);国家重点研发计划基金资助项目(2016YFB0801505)

Review of path branch obfuscation

Pu GENG(),Yuefei ZHU   

  1. Strategic Support Force Information Engineering University,Zhengzhou 450001,China
  • Revised:2019-09-03 Online:2020-04-15 Published:2020-04-23
  • Supported by:
    The National Key R&D Program of China(2016YFB0801601);The National Key R&D Program of China(2016YFB0801505)

摘要:

代码混淆是一种便捷、有效的软件保护方法,能够较好地对抗以逆向分析为基础的MATE攻击,随着以符号执行为基础的自动程序分析技术的发展,出现了能够抵抗符号执行的新代码混淆方法——路径分支混淆。依据路径分支信息的构成,以及分支信息在对抗符号执行分析上的差异,对分支混淆技术进行了分类,并给出了分支信息泄露与符号执行的联系;按照分支混淆的分类,对当前分支混淆的研究进展进行了介绍和总结,分析了各类分支混淆的优缺点;最后,对分支混淆技术的发展进行了展望。

关键词: 逆向工程, 代码混淆, 符号执行, 路径分支混淆

Abstract:

Code obfuscation is a convenient and effective technique of software protection,which can combat MATE attacks based on reverse engineering.With the development of automatic programming analysis technology,a new code obfuscation technique which named path branch obfuscation was proposed to defeat symbolic execution.With the composition of branch information and how does the branch composition effect in execution technique,the branch obfuscation was classified into three types.Then,a detailed research and development situation of each branch obfuscation class was exhaustively described.At last,the prospects of branch obfuscation were discussed.

Key words: reverse engineering, code obfuscation, symbol execution, path branch obfuscation

中图分类号: 

No Suggested Reading articles found!