engineering code obfuscation
play

Engineering Code Obfuscation ISSISP 2017 - Tamperproofing Christian - PowerPoint PPT Presentation

Jan 24, 2024 •215 likes •345 views

Engineering Code Obfuscation ISSISP 2017 - Tamperproofing Christian Collberg Department of Computer Science University of Arizona http://collberg.cs.arizona.edu collberg@gmail.com Supported by NSF grants 1525820 and 1318955 and by the

  1. Engineering Code Obfuscation ISSISP 2017 - Tamperproofing Christian Collberg Department of Computer Science University of Arizona http://collberg.cs.arizona.edu collberg@gmail.com Supported by NSF grants 1525820 and 1318955 and by the private foundation that shall not be named

  2. What is Tamperproofing?

  3. Bob wants to modify the program binary so that it does something different than we want: •remove functionality (license check) •change data (password, cryptographic key) •add functionality (print, save game) Tamperproofing the code makes it stop working if Bob changes as little as a byte of the binary!

  4. Tamperproofing has to do two things: 1. detect tampering 2. respond to tampering Essentially: if (tampering-detected()) respond-to-tampering() but this is too unstealthy!

  5. int foo() { … … … … } Detect tampering int main () { if ( foo-has-changed-in-any-way()) crash the program phone home Respond refuse to run to tampering run slower make wrong results foo(); }

  6. int hash (addr_t addr,int words){ int h = *addr; int foo() { … … … … for(int i=1; i<words; i++) { \ } addr++; h ^= *addr; } return h; Detect } tampering int main () { if ( hash(foo,1000) != 0x4C49F346) crash the program phone home Respond refuse to run to tampering run slower make wrong results foo(); }

  7. int foo () { int foo () { int foo () { if ( today > “Aug 17,2016” ){ if ( false ){ if (today > “Aug 17,2016”){ printf(“License expired!”); printf(“License expired!”); printf(“License expired!”); abort; abort; abort; } } } check(){ } } } if (hash(foo)!=42) abort() }

  8. int foo() { int foo_copy() { … … … … … … … … } } Repair foo!!! Checker 1 if ( foo-has-changed-in-any-way()) int foo_copy() { int foo() { copy … … … … … … … … } }

  9. Checker 2 Repair if ( foo-checker1-changed()) Checker 1! copy Checker1 Checker1_copy Checker 1 if ( foo-has-changed-in-any-way()) int foo_copy() { int foo() { copy … … … … … … … … } }

  10. Code Checker block Checker Repair Checker Code block Code Repair block Repair

  11. uint32 Skypes_hash_function () { addr_t addr =(addr_t)((uint32)addr ^(uint32)addr); addr = (addr_t)((uint32) addr + 0 x688E5C); uint32 hash = 0x320E83 ^ 0x1C4C4 ; int bound = hash + 0 xFFCC5AFD ; do { uint32 data =*((addr_t)((uint32)addr + 0x10)); goto b1; asm volatile (". byte 0x19"); b1: hash = hash ⊕ data ; addr -= 1; bound --; } while (bound !=0); goto b2; asm volatile (".byte 0x73"); b2: goto b3; asm volatile (".word 0xC8528417,…”); b3: hash -= 0x4C49F346; return hash; }

  12. Questions?

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Engineering Code Obfuscation ISSISP 2017 - Obfuscation I Christian Collberg Department of

Engineering Code Obfuscation ISSISP 2017 - Obfuscation I Christian Collberg Department of

Engineering Code Obfuscation ISSISP 2017 - Obfuscation I Christian Collberg Department of Computer Science University of Arizona http://collberg.cs.arizona.edu collberg@gmail.com Supported by NSF grants 1525820 and 1318955 and by the

924 views • 69 slides
CloPlag A Study of Effects of Code Obfuscation to Code Similarity Detection Tools Chaiyong

CloPlag A Study of Effects of Code Obfuscation to Code Similarity Detection Tools Chaiyong

CloPlag A Study of Effects of Code Obfuscation to Code Similarity Detection Tools Chaiyong Ragkhitwetsagul, Jens Krinke, Albert Cabr Juan Cloned Code vs Plagiarised Code A result from source code Created in a similar way as code

479 views • 31 slides
Helping RE with LLVM lionel@lse.epita.fr 1) Reverse Engineering 2) Obfuscation objectives -

Helping RE with LLVM lionel@lse.epita.fr 1) Reverse Engineering 2) Obfuscation objectives -

Helping RE with LLVM lionel@lse.epita.fr 1) Reverse Engineering 2) Obfuscation objectives - confuse tools * hack binary loading * unaligned instructions - confuse human * junk code * proxy calls / vm * cipher 3) unaligned instructions //

789 views • 25 slides
Software Obfuscation with LLVM (Ab)using the compiler to protect code Bio Carl

Software Obfuscation with LLVM (Ab)using the compiler to protect code Bio Carl

Software Obfuscation with LLVM (Ab)using the compiler to protect code Bio Carl Svensson Head of Security, KRY/LIVI CTF: HackingForSoju Twitter: @zetatwo Email: calle.svensson@zeta-two.com Website:

266 views • 13 slides
Obfuscation Lecture 26 Different Flavours VBB Obfuscation Note: Considers only corrupt

Obfuscation Lecture 26 Different Flavours VBB Obfuscation Note: Considers only corrupt

Obfuscation Lecture 26 Different Flavours VBB Obfuscation Note: Considers only corrupt receiver x 1 Virtual f O(f) F B f(x 1) Black-Box x 2 (VBB) f(x 2) Obfuscation : A Secure (and f Family f Family b b single

466 views • 18 slides
) UNION SELECT `This_Talk` AS ('New Optimization and Obfuscation Optimization and Obfuscation

) UNION SELECT `This_Talk` AS ('New Optimization and Obfuscation Optimization and Obfuscation

) UNION SELECT `This_Talk` AS ('New Optimization and Obfuscation Optimization and Obfuscation Techniques)%00 Techniques)%00 Roberto Salgado Co-founder of Websec Provide information security solutions Pen-testing, training

1.11k views • 93 slides
DRM obfuscation vs auxiliary attacks Show me your trace and Ill tell you who you are REcon

DRM obfuscation vs auxiliary attacks Show me your trace and Ill tell you who you are REcon

DRM obfuscation vs auxiliary attacks Show me your trace and Ill tell you who you are REcon 2014 Introduction First layer: Code flattening pTra Algorithm reconstruction : RSA-OAEP Rebuilding a cipher function whiteboxed : AES-CBC

1.43k views • 103 slides
HOST Circuit Obfuscation I ECE 525 Hardware Obfuscation (Drawn from &quot;Hardware Protection

HOST Circuit Obfuscation I ECE 525 Hardware Obfuscation (Drawn from &quot;Hardware Protection

HOST Circuit Obfuscation I ECE 525 Hardware Obfuscation (Drawn from &quot;Hardware Protection thr Obfuscation) Circuit modification techniques designed to conceal or lock the functionality and/or circuit structure The modifications are designed

157 views • 11 slides
Lattice-Based SNARGs and Their Application to More Efficient Obfuscation Dan Boneh, Yuval Ishai,

Lattice-Based SNARGs and Their Application to More Efficient Obfuscation Dan Boneh, Yuval Ishai,

Lattice-Based SNARGs and Their Application to More Efficient Obfuscation Dan Boneh, Yuval Ishai, Amit Sahai, and David J. Wu Program Obfuscation [BGIRSVY01, GGHRSW13] Indistinguishability obfuscation ( ) has emerged as a central hub

648 views • 36 slides
Reverse engineering: obfuscation Srdjan Matic &lt; srdjan@security.di.unimi.it &gt; Aristide

Reverse engineering: obfuscation Srdjan Matic &lt; srdjan@security.di.unimi.it &gt; Aristide

Universit` a degli Studi di Milano Facolt` a di Scienze e Tecnologie Dipartimento di Informatica Reverse engineering: obfuscation Srdjan Matic &lt; srdjan@security.di.unimi.it &gt; Aristide Fattori &lt; joystick@security.di.unimi.it &gt; A.A.

413 views • 9 slides
Obfuscation: know your enemy Ninon EYROLLES neyrolles@quarkslab.com Serge GUELTON

Obfuscation: know your enemy Ninon EYROLLES neyrolles@quarkslab.com Serge GUELTON

Obfuscation: know your enemy Ninon EYROLLES neyrolles@quarkslab.com Serge GUELTON sguelton@quarkslab.com Introduction Control flow obfuscation Data flow obfuscation Python obfuscation Prelude Introduction Control flow obfuscation Data

1.23k views • 76 slides
OBFUSCURO : : A Commodity Obfuscation Engine for Intel SGX Adil Ahmad *, Byunggill Joe*, Yuan

OBFUSCURO : : A Commodity Obfuscation Engine for Intel SGX Adil Ahmad *, Byunggill Joe*, Yuan

OBFUSCURO : : A Commodity Obfuscation Engine for Intel SGX Adil Ahmad *, Byunggill Joe*, Yuan Xiao Yinqian Zhang, Insik Shin, Byoungyoung Lee (* denotes equal contribution) Program Obfuscation Program Obfuscation Trusted Untrusted (except

1.34k views • 116 slides
Obfuscation from LWE? proofs, attacks, candidates Hoeteck Wee CNRS &amp; ENS . . . . . .

Obfuscation from LWE? proofs, attacks, candidates Hoeteck Wee CNRS &amp; ENS . . . . . .

Obfuscation from LWE? proofs, attacks, candidates Hoeteck Wee CNRS &amp; ENS . . . . . . . . C x C x C x C C c obfuscation [ BGIRSVY01, H00, GR07, GGHRSW13 ] . . . . . . . . C x C x C x C C c obfuscation [

1.03k views • 92 slides
Authorship Obfuscation Using Heuristic Search Masters Thesis Defence by Janek Bevendorff on 20

Authorship Obfuscation Using Heuristic Search Masters Thesis Defence by Janek Bevendorff on 20

Authorship Obfuscation Using Heuristic Search Masters Thesis Defence by Janek Bevendorff on 20 June 2018 Supervisors: Prof. Dr. Benno Stein, PD Dr. Andreas Jakoby Unmasking for short texts Obfuscation against unmasking Obfuscation

1.38k views • 95 slides
Program Obfuscation: A Cryptographic Viewpoint Ran Canetti Tel Aviv University What does this

Program Obfuscation: A Cryptographic Viewpoint Ran Canetti Tel Aviv University What does this

Program Obfuscation: A Cryptographic Viewpoint Ran Canetti Tel Aviv University What does this code do? #include &lt;stdio.h&gt; void primes(int cap) { int i, j, composite; for(i = 2; i &lt; cap; ++i) { composite = 0; for(j = 2; j * j &lt;=

694 views • 58 slides
Reverse engineering Reverse engineer Did anyone analyze f1 something similar A binary file f2

Reverse engineering Reverse engineer Did anyone analyze f1 something similar A binary file f2

Asm2Vec : Boosting Static Representation Robustness for Binary Clone Search against Code Obfuscation and Compiler Optimization Steven H. H. Ding Benjamin C. M. Fung Philippe Charland Data Mining and Security Lab Mission Critical Cyber Security

625 views • 23 slides
ACR 3413 BASIC STRUCTURAL ENGINEERING 3 Lecture 1 Univers rsit ity y Putra a Malaysia ysia

ACR 3413 BASIC STRUCTURAL ENGINEERING 3 Lecture 1 Univers rsit ity y Putra a Malaysia ysia

ACR 3413 BASIC STRUCTURAL ENGINEERING 3 Lecture 1 Univers rsit ity y Putra a Malaysia ysia - Communication - Talk to Architect, M&amp;E Engineer and Other Consultants of their Requirements Item Verti tical Load {V} Horizon zonta tal

572 views • 40 slides
Maximilian Michels @stadtlegende max@crate.io mxm@apache.org 2 W H Y A R E W E TA L K I N G

Maximilian Michels @stadtlegende max@crate.io mxm@apache.org 2 W H Y A R E W E TA L K I N G

C R AT E D B : A S E A R C H E N G I N E O R A D ATA B A S E ? B O T H ! H O W W E B U I LT A S Q L D ATA B A S E O N T O P O F E L A S T I C S E A R C H A N D L U C E N E Maximilian Michels @stadtlegende max@crate.io

740 views • 29 slides
Challenges for numerical relativity and gravitational-wave source modeling Emanuele Berti, Johns

Challenges for numerical relativity and gravitational-wave source modeling Emanuele Berti, Johns

Challenges for numerical relativity and gravitational-wave source modeling Emanuele Berti, Johns Hopkins University ICERM Workshop Advances and challenges in computational relativity September 14 2020 Focus of this talk: what

923 views • 60 slides
ss t r

ss t r

trt ts t tts sss rs ss t

939 views • 62 slides
Security Analysis of India's Electronic Voting Systems Scott Wolchok, Wustrow, Halderman (UMich),

Security Analysis of India's Electronic Voting Systems Scott Wolchok, Wustrow, Halderman (UMich),

Security Analysis of India's Electronic Voting Systems Scott Wolchok, Wustrow, Halderman (UMich), Hari K. Prasad, Kankipati, Sakhamuri, Yagati (NetIndia), Rop Gonggrijp &quot;Reaffirm it's belief in the infallibility of the EVMs&quot; Goals

1.02k views • 53 slides
What is tamperproofing? Ensure that a program executes as intended, even in the presence of an

What is tamperproofing? Ensure that a program executes as intended, even in the presence of an

What is tamperproofing? Ensure that a program executes as intended, even in the presence of an adversary who tries to disrupt, monitor, or change the execution. A tamperproofing algorithm 1 makes tampering difficult 1/78 What is

1.84k views • 147 slides
Lecture Outline Protocols for detecting manipulation How to think about

Lecture Outline Protocols for detecting manipulation How to think about

Lecture Outline Protocols for detecting manipulation How to think about architecture In general systems terms For security implications Tussles in architectures that affect multiple stakeholders Ethane: the

636 views • 37 slides
Security aid in producing vulnerability free code (bounds primary topic of the paper for today

Security aid in producing vulnerability free code (bounds primary topic of the paper for today

Security aid in producing vulnerability free code (bounds primary topic of the paper for today protect code from people with access to hardware checking, no-execute bit) aid in producing vulnerability free code (bounds secondary topic of the

193 views • 18 slides

More recommend