Layered obfuscation: a taxonomy of software obfuscation techniques for layered security-Reference-Cited by-同舟云学术

Layered obfuscation: a taxonomy of software obfuscation techniques for layered security

Published:2020-04-03 Issue:1 Volume:3 Page:
ISSN:2523-3246
Container-title:Cybersecurity
language:en
Short-container-title:Cybersecur

Author:

Xu Hui,Zhou Yangfan,Ming Jiang,Lyu Michael

Abstract

AbstractSoftware obfuscation has been developed for over 30 years. A problem always confusing the communities is what security strength the technique can achieve. Nowadays, this problem becomes even harder as the software economy becomes more diversified. Inspired by the classic idea of layered security for risk management, we propose layered obfuscation as a promising way to realize reliable software obfuscation. Our concept is based on the fact that real-world software is usually complicated. Merely applying one or several obfuscation approaches in an ad-hoc way cannot achieve good obscurity. Layered obfuscation, on the other hand, aims to mitigate the risks of reverse software engineering by integrating different obfuscation techniques as a whole solution. In the paper, we conduct a systematic review of existing obfuscation techniques based on the idea of layered obfuscation and develop a novel taxonomy of obfuscation techniques. Following our taxonomy hierarchy, the obfuscation strategies under different branches are orthogonal to each other. In this way, it can assist developers in choosing obfuscation techniques and designing layered obfuscation solutions based on their specific requirements.

Funder

Key Programme

Publisher

Springer Science and Business Media LLC

Subject

Artificial Intelligence,Computer Networks and Communications,Information Systems,Software

Link

http://link.springer.com/content/pdf/10.1186/s42400-020-00049-3.pdf

Reference107 articles.

1. Abrath, B, Coppens B, Volckaert S, De Sutter B (2015) Obfuscating windows dlls In: 2015 IEEE/ACM 1st International Workshop on Software Protection, 24–30.. IEEE. https://doi.org/10.1109/spro.2015.13.

2. Apon, D, Huang Y, Katz J, Malozemoff AJ (2014) Implementing cryptographic program obfuscation. IACR Cryptol ePrint Arch.

3. Arboit, G (2002) A method for watermarking java programs via opaque predicates In: The Fifth International Conference on Electronic Commerce Research.

4. Balachandran, V, Emmanuel S (2011) Software code obfuscation by hiding control flow information in stack In: IEEE International Workshop on Information Forensics and Security. https://doi.org/10.1109/wifs.2011.6123121.

5. Balakrishnan, A, Schulze C (2005) Code obfuscation literature survey. CS701 Constr Compilers.

Cited by 23 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. CarePlus: A general framework for hardware performance counter based malware detection under system resource competition;Computers & Security;2024-08

2. Two-Level Software Obfuscation with Cooperative Co-Evolutionary Algorithms;2024 IEEE Congress on Evolutionary Computation (CEC);2024-06-30

3. These are Not the PLCs You are Looking for: Obfuscating PLCs to Mimic Honeypots;IEEE Transactions on Network and Service Management;2024-06

4. Function-Level Compilation Provenance Identification with Multi-Faceted Neural Feature Distillation and Fusion;Electronics;2024-04-27

5. Detection of Malware by Using YARA Rules;2024 21st International Multi-Conference on Systems, Signals & Devices (SSD);2024-04-22