A Smart Obfuscation Approach to Protect Software in Cloud

Computers, materials & continua Pub Date : 2023-01-01 DOI:10.32604/cmc.2023.038970

Lei Yu, Yucong Duan

{"title":"A Smart Obfuscation Approach to Protect Software in Cloud","authors":"Lei Yu, Yucong Duan","doi":"10.32604/cmc.2023.038970","DOIUrl":null,"url":null,"abstract":"Cloud computing and edge computing brought more software, which also brought a new danger of malicious software attacks. Data synchronization mechanisms of software can further help reverse data modifications. Based on the mechanisms, attackers can cover themselves behind the network and modify data undetected. Related knowledge of software reverse engineering can be organized as rules to accelerate the attacks, when attackers intrude cloud server to access the source or binary codes. Therefore, we proposed a novel method to resist this kind of reverse engineering by breaking these rules. Our method is based on software obfuscations and encryptions to enhance the security of distributed software and cloud services in the 5G era. Our method is capable of (1) replacing the original assembly codes of the protected program with equivalent assembly instructions in an iteration way, (2) obfuscating the control flow of the protected program to confuse attackers meanwhile keeps the program producing the same outputs, (3) encrypting data to confuse attackers. In addition, the approach can periodically and automatically modify the protected software binary codes, and the binary codes of the protected software are encrypted to resist static analysis and dynamic analysis. Furthermore, a simplified virtual machine is implemented to make the protected codes unreadable to attackers. Cloud game is one of the specific scenarios which needs low latency and strong data consistency. Cheat engine, Ollydbg, and Interactive Disassembler Professional (IDA) are used prevalently for games. Our improved methods can protect the software from the most vulnerable aspects. The improved dynamic code swapping and the simplified virtual machine technologies for cloud games are the main innovations. We inductively learned that our methods have been working well according to the security mechanisms and time complexity analysis. Experiments show that hidden dangers can be eliminated with efficient methods: Execution time and file sizes of the target codes can be multiple times than that of the original program codes which depend on specific program functions.","PeriodicalId":93535,"journal":{"name":"Computers, materials & continua","volume":"44 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Computers, materials & continua","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.32604/cmc.2023.038970","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Cloud computing and edge computing brought more software, which also brought a new danger of malicious software attacks. Data synchronization mechanisms of software can further help reverse data modifications. Based on the mechanisms, attackers can cover themselves behind the network and modify data undetected. Related knowledge of software reverse engineering can be organized as rules to accelerate the attacks, when attackers intrude cloud server to access the source or binary codes. Therefore, we proposed a novel method to resist this kind of reverse engineering by breaking these rules. Our method is based on software obfuscations and encryptions to enhance the security of distributed software and cloud services in the 5G era. Our method is capable of (1) replacing the original assembly codes of the protected program with equivalent assembly instructions in an iteration way, (2) obfuscating the control flow of the protected program to confuse attackers meanwhile keeps the program producing the same outputs, (3) encrypting data to confuse attackers. In addition, the approach can periodically and automatically modify the protected software binary codes, and the binary codes of the protected software are encrypted to resist static analysis and dynamic analysis. Furthermore, a simplified virtual machine is implemented to make the protected codes unreadable to attackers. Cloud game is one of the specific scenarios which needs low latency and strong data consistency. Cheat engine, Ollydbg, and Interactive Disassembler Professional (IDA) are used prevalently for games. Our improved methods can protect the software from the most vulnerable aspects. The improved dynamic code swapping and the simplified virtual machine technologies for cloud games are the main innovations. We inductively learned that our methods have been working well according to the security mechanisms and time complexity analysis. Experiments show that hidden dangers can be eliminated with efficient methods: Execution time and file sizes of the target codes can be multiple times than that of the original program codes which depend on specific program functions.

查看原文本刊更多论文

一种保护云环境下软件的智能混淆方法

云计算和边缘计算带来了更多的软件，同时也带来了恶意软件攻击的新危险。软件的数据同步机制可以进一步帮助反向数据修改。基于这种机制，攻击者可以隐藏在网络背后，不被发现地修改数据。当攻击者入侵云服务器访问源代码或二进制代码时，可以将软件逆向工程的相关知识组织成规则来加速攻击。因此，我们提出了一种通过打破这些规则来抵抗这种逆向工程的新方法。我们的方法是基于软件混淆和加密，以增强5G时代分布式软件和云服务的安全性。我们的方法能够(1)以迭代的方式将受保护程序的原始汇编代码替换为等效的汇编指令;(2)混淆受保护程序的控制流以迷惑攻击者，同时保持程序产生相同的输出;(3)加密数据以迷惑攻击者。此外，该方法可以定期自动修改受保护软件的二进制代码，并对受保护软件的二进制代码进行加密，以抵抗静态分析和动态分析。此外，还实现了一个简化的虚拟机，使受保护的代码无法被攻击者读取。云游戏是需要低延迟和强数据一致性的特定场景之一。作弊引擎、Ollydbg和Interactive Disassembler Professional (IDA)被广泛用于游戏中。我们改进的方法可以从最脆弱的方面保护软件。改进的动态代码交换和简化的云游戏虚拟机技术是主要的创新。根据安全机制和时间复杂度分析，我们归纳地了解到我们的方法工作得很好。实验表明，采用有效的方法可以消除隐患:目标代码的执行时间和文件大小可以是原始程序代码的数倍，这取决于特定的程序功能。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Computers, materials & continua

自引率

0.00%

发文量