基于移动目标技术的解释语言软件代码多样化新方法

2016 IEEE 10th International Conference on Application of Information and Communication Technologies (AICT) Pub Date : 2016-10-01 DOI:10.1109/ICAICT.2016.7991694

M. Styugin, V. Zolotarev, A. Prokhorov, Roman Gorbil

{"title":"基于移动目标技术的解释语言软件代码多样化新方法","authors":"M. Styugin, V. Zolotarev, A. Prokhorov, Roman Gorbil","doi":"10.1109/ICAICT.2016.7991694","DOIUrl":null,"url":null,"abstract":"The paper presents a method based on moving target technology for protecting software components of distributed systems. Practical implementation of this method is a code diversifier, which adds intermediary functions and inserts transformation of key variables into the program code. Theoretical analysis of the method presented here demonstrated its effectiveness even when an adversary had access to a application's program code. The diversifier presented below can also function in a mode of program code obfuscation, which was tested and demonstrated by the example of interpreted programming language functions. Metrics obtained from the program code after obfuscation, showed sufficient level of code modification for independent use in obfuscation mode.","PeriodicalId":446472,"journal":{"name":"2016 IEEE 10th International Conference on Application of Information and Communication Technologies (AICT)","volume":"290 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":"{\"title\":\"New approach to software code diversification in interpreted languages based on the moving target technology\",\"authors\":\"M. Styugin, V. Zolotarev, A. Prokhorov, Roman Gorbil\",\"doi\":\"10.1109/ICAICT.2016.7991694\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The paper presents a method based on moving target technology for protecting software components of distributed systems. Practical implementation of this method is a code diversifier, which adds intermediary functions and inserts transformation of key variables into the program code. Theoretical analysis of the method presented here demonstrated its effectiveness even when an adversary had access to a application's program code. The diversifier presented below can also function in a mode of program code obfuscation, which was tested and demonstrated by the example of interpreted programming language functions. Metrics obtained from the program code after obfuscation, showed sufficient level of code modification for independent use in obfuscation mode.\",\"PeriodicalId\":446472,\"journal\":{\"name\":\"2016 IEEE 10th International Conference on Application of Information and Communication Technologies (AICT)\",\"volume\":\"290 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-10-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"5\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 IEEE 10th International Conference on Application of Information and Communication Technologies (AICT)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICAICT.2016.7991694\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 IEEE 10th International Conference on Application of Information and Communication Technologies (AICT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICAICT.2016.7991694","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

摘要

提出了一种基于移动目标技术的分布式系统软件组件保护方法。该方法的实际实现是一个代码分配器，它在程序代码中增加了中间函数并插入了关键变量的转换。对本文提出的方法的理论分析表明，即使攻击者能够访问应用程序的程序代码，该方法也是有效的。下面介绍的多样化器也可以在程序代码混淆模式下运行，这是通过解释的编程语言函数的示例进行测试和演示的。从混淆后的程序代码中获得的度量，显示了在混淆模式下独立使用的足够级别的代码修改。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

New approach to software code diversification in interpreted languages based on the moving target technology

The paper presents a method based on moving target technology for protecting software components of distributed systems. Practical implementation of this method is a code diversifier, which adds intermediary functions and inserts transformation of key variables into the program code. Theoretical analysis of the method presented here demonstrated its effectiveness even when an adversary had access to a application's program code. The diversifier presented below can also function in a mode of program code obfuscation, which was tested and demonstrated by the example of interpreted programming language functions. Metrics obtained from the program code after obfuscation, showed sufficient level of code modification for independent use in obfuscation mode.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2016 IEEE 10th International Conference on Application of Information and Communication Technologies (AICT)

自引率

0.00%

发文量