Revisiting software protection

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 2851, Issue , 2003, Pages 1-13

  Van Oorschot, Paul C ^a  

^a CARLETON UNIVERSITY   (Canada)

Author keywords

[No Author keywords available]

Indexed keywords

ARTIFICIAL INTELLIGENCE; COMPUTER SCIENCE; COMPUTERS;

SOFTWARE DIVERSITY; SOFTWARE PROTECTION; SOFTWARE TAMPER RESISTANCE; TRUSTED PLATFORMS; WHITE-BOX CRYPTOGRAPHIES;

SECURITY OF DATA;

EID: 21144442036     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/10958513_1     Document Type: Article

References (52)

1. J. Algesheimer, C. Cachin, J. Camenisch, G. Karjoth, "Cryptographic Security for Mobile Code", pp. 2-11 in Proc. 2001 IEEE Symposium on Security and Privacy (May 2001).
2. R. Anderson, Trusted Computing FAQ - TCPA/Palladium/NGSCB/TCG, http://www.cl.cam.ac.uk/∼rja14/tcpa-faq.html.
3. R.J. Anderson, M.G. Kuhn, "Low Cost Attacks on Tamper-Resistant Devices", pp. 125-136, 5th International Workshop on Security Protocols, Springer LNCS 1361 (1997).
4. W.A. Arbaugh, D.J. Farber, J.M. Smith, "A Secure and Reliable Bootstrap Architecture", Proc. 1997 IEEE Symp. Security and Privacy, pp.65-71, May 1997.
5. W.A. Arbaugh, D.J. Farber, A.D. Keromytis, J.M. Smith, Secure and Reliable Bootstrap Architecture, U.S. Patent 6,185,678 (filed Oct.2 1998; issued Feb.6 2001).
6. D. Aucsmith, "Tamper Resistant Software: An Implementation", Proc. 1st International Information Hiding Workshop (IHW), Cambridge, U.K. 1996, Springer LNCS 1174, pp. 317-333 (1997).
7. D. Aucsmith, G. Graunke, Tamper Resistant Methods and Apparatus, U.S. Patent 5,892,899 (filed June 13 1996; issued Apr.6 1999).
8. B. Balacheff, L. Chen, S. Pearson (ed.), D. Plaquin, G. Proudler, Trusted Computing Platforms: TCPA Technology in Context, Prentice Hall, 2002.
9. B. Barak, O. Goldreich, R. Impagliazzo, S. Rudich, A. Sahai, S. Vadhan, K. Yang, "On the (Im)possibility of Obfuscating Programs", pp. 1-18, Advances in Cryptology - Crypto 2001, Springer LNCS 2139 (2001).
10. E. Biham, A. Shamir, "Differential Fault Analysis of Secret Key Cryptosystems", pp. 513-525, Advances in Cryptology - Crypto '97, Springer LNCS 1294 (1997). Revised: Technion - C.S. Dept. - Technical Report CS0910-revised, 1997.
11. D. Boneh, R.A. DeMillo, R.J. Lipton, "On the Importance of Eliminating Errors in Cryptographic Computations", J. Cryptology 14(2), pp. 101-119 (2001).
12. H. Chang, M. Atallah, "Protecting Software Code by Guards", Proc. 1st ACM Workshop on Digital Rights Management (DRM 2001), Springer LNCS 2320, pp.160-175 (2002).
13. Y. Chen, R. Venkatesan, M. Cary, R. Pang, S. Sinha, M. Jakubowski, "Oblivious Hashing: A Stealthy Software Integrity Verification Primitive", Proc. 5th Information Hiding Workshop (IHW), Netherlands (October 2002), Springer LNCS 2578, pp.400-414.
14. D.M. Chess, "Security Issues in Mobile Code Systems", pp.1-14 in Mobile Agents and Security, G. Vigna (ed.), Springer LNCS 1419 (1998).
15. S. Chow, Y. Gu, H. Johnson, V.A. Zakharov, "An Approach to the Obfuscation of Control-Flow of Sequential Computer Programs", pp. 144-155, Proc. ISC 2001 - 4th International Information Security Conference, Malaga, Spain 1-3 October 2001, Springer LNCS 2200 (2001).
16. J.R. Nickerson, S.T. Chow, H.J. Johnson, Y. Gu, "The Encoder Solution to Implementing Tamper Resistant Software", presented at the CERT/IEEE Information Survivability Workshop, Vancouver, Oct. 2001.
17. S. Chow, P. Eisen, H. Johnson, P.C. van Oorschot, "White-Box Cryptography and an AES Implementation", Proc. 9th International Workshop on Selected Areas in Cryptography (SAC 2002), Springer LNCS 2595 (2003).
18. S. Chow, P. Eisen, H. Johnson, P.C. van Oorschot, "A White-Box DES Implementation for DRM Applications", Proc. 2nd ACM Workshop on Digital Rights Management (DRM 2002), Springer LNCS (to appear).
19. F. Cohen, "Operating System Protection Through Program Evolution", Computers and Security 12(6), 1 Oct. 1993, pp. 565-584.
20. C. Collberg, C. Thomborson, D. Low, "A Taxonomy of Obfuscating Transformations", Technical Report 148, Dept. Computer Science, University of Auckland (July 1997).
21. C. Collberg, C. Thomborson, D. Low, "Manufacturing Cheap, Resilient, and Stealthy Opaque Constructs", Proc. Symp. Principles of Programming Languages (POPL'98), Jan. 1998.
22. C. Collberg, C. Thomborson, D. Low, "Breaking Abstractions and Unstructuring Data Structures", IEEE International Conf. Computer Languages (ICCL'98), May 1998.
23. C.S. Collberg, C. Thomborson, "Watermarking, Tamper-Proofing, and Obfuscation - Tools for Software Protection", IEEE Trans. Software Engineering, Vol. 28 No. 6 (June 2002).
24. J. Daemen, V. Rijmen, The Design of Rijndael: AES - The Advanced Encryption Standard, Springer, 2001.
25. ComputerWeekly.com, "U.S. Software Security Takes Off", 8 November 2002, http://www.computerweekly.com/Article117316.htm
26. P. England, J.D. DeTreville, B.W. Lampson, Digital Rights Management Operating System, U.S. Patent 6,330,670 (filed Jan.8 1999; issued Dec.11 2001).
27. P. England, J.D. DeTreville, B.W. Lampson, Loading and Identifying a Digital Rights Management Operating System, U.S. Patent 6,327,652 (filed Jan.8 1999; issued Dec.4 2001).
28. S. Forrest, A. Somayaji, D. H. Ackley, "Building Diverse Computer Systems", pp. 67-72, Proc. 6th Workshop on Hot Topics in Operating Systems, IEEE Computer Society Press, 1997.
29. M.R. Garey, D.S. Johnson, Computers and Intractability - A Guide to the Theory of NP-Completeness, W.H. Freeman and Company, 1979.
30. O. Goldreich, R. Ostrovsky, "Software Protection and Simulation on Oblivious RAMs", Journal of the ACM, vol.43 no.3 (May 1996), pp.431-473. Based on earlier ideas of Goldreich (STOC'87) and Ostrovsky (STOC'90).
31. J. Gosler, "Software Protection: Myth or Reality?", Advances in Cryptology - CRYPTO'85, Springer-Verlag LNCS 218, pp.140-157 (1985).
32. P. Gutmann, "An Open-source Cryptographic Co-processor", Proc. 2000 USENIX Security Symposium.
33. A. Herzberg, S.S. Pinter, "Public protection of software", pp.371-393, ACM Trans. Computer Systems, vol.5 no.4 (Nov. 1987). Earlier version in Crypto'85.
34. B. Horne, L. Matheson, C. Sheehan, R. Tarjan, "Dynamic Self-Checking Techniques for Improved Tamper Resistance", Proc. 1st ACM Workshop on Digital Rights Management (DRM 2001), Springer LNCS 2320, pp.141-159 (2002).
35. M. Jacob, D. Boneh, E. Felton, "Attacking an Obfuscated Cipher by Injecting Faults", Proc. 2nd ACM Workshop on Digital Rights Management (DRM 2002), Springer LNCS (to appear).
36. M. Jakobsson, M.K. Reiter, "Discouraging Software Piracy Using Software Aging", Proc. 1st ACM Workshop on Digital Rights Management (DRM 2001), Springer LNCS 2320, pp.1-12 (2002).
37. S. Kent, Protecting Externally Supplied Software in Small Computers, Ph.D. thesis, M.I.T., September 1980.
38. A. Kerckhoffs, "La Cryptographie Militaire", Journal des Sciences Militaires, vol.9 (February 1883).
39. D. Lie, C. Thekkath, M. Mitchell, P. Lincoln, D. Boneh, J. Mitchell, M. Horowitz, "Architectural Support for Copy and Tamper Resistant Software", Proc. 9th International Conf. Architectural Support for Programming Languages and Operating Systems (Nov. 2000).
40. A.J. Menezes, P.C. van Oorschot, S.A. Vanstone, Handbook of Applied Cryptography, CRC Press, 1996.
41. Next-Generation Secure Computing Base (formerly Palladium), Microsoft web site, http://www.microsoft.com/resources/ngscb/default.mspx.
42. Next-Generation Secure Computing Base - Technical FAQ, Microsoft web site, http://www.microsoft.com/technet/security/news/NGSCB.asp.
43. T. Ogiso, U. Sakabe, M. Soshi, A. Miyaji, "Software Tamper Resistance Based on the Difficulty of Interprocedural Analysis", 3rd Workshop on Information Security Applications (WISA 2002), Korea, August 2002.
44. F. Petitcolas, R.J. Anderson, M.G. Kuhn, "Information Hiding - A Survey", Proc. of the IEEE (Special Issue on Protection of Multimedia Content), vol.87 no.7 (July 1999), pp.1062-1078.
45. T. Sander, C.F. Tschudin, "Towards Mobile Cryptography", pp. 215-224, Proc. 1998 IEEE Symposium on Security and Privacy.
46. T. Sander, C.F. Tschudin, "Protecting Mobile Agents Against Malicious Hosts", pp. 44-60 in Mobile Agents and Security, G. Vigna (ed.), Springer LNCS 1419 (1998).
47. F. Schneider (ed.), Trust in Cyberspace, report of the Committee on Information Systems Trustworthiness, Computer Science and Telecommunications Board, (U.S.) National Research Council (National Academy Press, 1999).
48. Trusted Computing Group, http://www.trustedcomputinggroup.org/home.
49. N. van Someren, A. Shamir, "Playing Hide and Seek with Keys", pp. 118-124, Financial Cryptography'99, Springer LNCS 1648 (1999).
50. J. Wang, "Average-Case Computational Complexity Theory", pp.295-328 in: Complexity Theory Retrospective II, L. Hemaspaandra and A. Selman (eds.), Springer, 1997.
51. C. Wang, J. Hill, J. Knight, J. Davidson, "Software Tamper Resistance: Obstructing Static Analysis of Programs", Dept. of Computer Science, Univ. of Virginia, Tech. Report CS-2000-12 (May 2000). Updated in [52].
52. C. Wang, A Security Architecture for Survivability Mechanisms, Ph.D. thesis, University of Virginia (Oct. 2000).