Towards integral binary execution: Implementing oblivious hashing using overlapped instruction encodings

MM and Sec'07 - Proceedings of the Multimedia and Security Workshop 2007

Volumn , Issue , 2007, Pages 129-140

  Jacob, Matthias ^a   Jakubowski, Mariusz H ^b   Venkatesan, Ramarathnam ^b  

^a Princeton University   (United States)

^b MICROSOFT RESEARCH   (United States)

Author keywords

Anti disassembly; Integrity checking; Obfuscation; Oblivious hashing; Overlapped code; Tamper resistance

Indexed keywords

ANTI-DISASSEMBLY; INTEGRITY CHECKING; OBFUSCATION; OBLIVIOUS HASHING; OVERLAPPED CODE; TAMPER-RESISTANCE;

COMPUTER PROGRAMMING; INTEGRAL EQUATIONS; ROBUSTNESS (CONTROL SYSTEMS);

IMAGE CODING;

EID: 38849121919     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1288869.1288887     Document Type: Conference Paper

References (48)

1. Cloakware. http://www.cloakware.com.
2. Dotfuscator. http://www.preemptive.com/products/ dotfuscator.
3. Safedisc. http://www.macrovision.com/products/ safedisc.
4. SpecCPU benchmark, http://www.spec.org.
5. Trusted Computing Platform Alliance. http://www.trustedpc.org.
6. M. Abadi, M. Badiu, U. Erlingsson, and J. Ligatti. Control-flow integrity. In CCS 2005.
7. B. Anckaert, M. H. Jakubowski, and R. Venkatesan. Proteus: Virtualization for diversified tamper-resistance. In 2006 ACM DRM Workshop, 2006.
8. D. Aucsmith. Tamper-resistant software: An implementation. In Information Hiding, 1996.
9. B. Barak, O. Goldreich, R. Impagliazzo, S. Rudich, A. Sahai, S. Vadhan, and K. Yang. On the (im)possibility of obfuscating programs. In CRYPTO 2001.
10. D. Boneh and D. Brumley. Remote timing attacks are practical. In Usenix Security 2003.
11. D. Boneh and R. Lipton. On the importance of checking cryptographic protocols for faults. In Eurocrypt 1997.
12. M. Cary, M. Jakubowski, and R. Venkatesan. Iterated obfuscation for white-boxing AES-like cipers (not published).
13. H. Chang and M. J. Atallah. Processing software code by guards. In ACM DRM 2001.
14. Y. Chen, R. Venkatesan, M. Cary, R. Pang, S. Sinha, and M. H. Jakubowski. Oblivious hashing: A stealthy software integrity verification primitive. In Information Hiding 2002.
15. S. Chow, P. Eisen, H. Johnson, and P. van Oorschot. A white-box DES implementation for DRM applications. In ACM DRM 2002.
16. F. Cohen. Operating system protection through program evolution. http://all.net/books/IP/evolve.html.
17. C. Collberg, G. Myles, and A. Huntwork. Sandmark - a tool for software protection research. IEEE Transactions on Software Engineering, 28(8), 2004.
18. C. Collberg, C. Thomborson, and D. Low. Manufacturing cheap, resilient, and stealthy opaque constructs. In Principles of Programming Languages 1998, POPL'98, pages 184-196, 1998.
19. S. Debray and C. Linn. Obfuscation of executable code to improve resistance to static disassembly. In CCS 2003.
20. N. Dedic, M. H. Jakubowski, and R. Venkatesan. A graph game model for software tamper protection. In Information Hiding, 2007.
21. P. England, B. Lampson, J. Manferdelli, M. Peinado, and B. Willman. A Trusted Open Platform. Computer, 36(7):55-62, 2003.
22. S. Forrest, A. Somayaji, and D. Ackley. Building diverse computer systems. In HotOS 1997.
23. T. Garfinkel, B. Pfaff, J. Chow, M. Rosenblum, and D. Boneh. Terra: A virtual machine based platform for trusted computing. In SOSP 2003.
24. W. H. Gates. Personal communication.
25. J. T. Giffin, M. Christodorescu, and L. Kruger. Strengthening software self-checksumming via self-modifying code. In ACSAC '05: Proceedings of the 21st Annual Computer Security Applications Conference, pages 23-32, Washington, DC, USA, 2005. IEEE Computer Society.
26. B. Home, C. S. Lesley, R. Matheson, and R. E. Tarjan. Dynamic self-checking techniques for improved tamper resistance. In ACM DRM 2001.
27. G. Hunt, J. Larus, D. Tarditi, and T Wobber. Broad new OS research. In HotOS 2005.
28. M. Jacob, D. Boneh, and E. Felten. Attacking an obfuscated cipher by injecting faults. In ACM DRM 2002.
29. M. H. Jakubowski and R. Venkatesan. Protecting digital goods using oblivious checking, US Patent No. 7,080,257, filed on Aug. 30, 2000, granted on July 18, 2006.
30. P. Kocher. Timing attacks on implementations of Diffie-Hellman, RSA, DSS, and other systems. In Crypto 1996.
31. C. Kruegel, W. Robertson, F. Valeur, and G. Vigna. Static disassembly of obfuscated binaries. In Usenix 2004.
32. J. C. Lagarias, E. Rains, and R. J. Vanderbei. The Kruskal Count, http://xxx.lanl.gov/math.PR/0110143.
33. R. Lee, P. Kwan, P. McGregor, J. Dwoskin, and Z. Wang. Architecture for protecting critical secrets in microprocessors. In ISCA 2005.
34. D. Lie, C. Thekkath, M. Mitchell, P. Lincoln, D. Boneh, J. Mitchell, and M. Horowitz. Architectural support for copy and tamper-resistant software. In ASPLOS-IX.
35. C.-L. Lin, H.-Y. Chen, and T-W. Hou. Tamper-proofing of Java programs by oblivious hashing. In CTHCP 2005: 11th Workshop on Compiler Techniques for High-Performance Computing.
36. B. Lynn, M. Prabhakaran, and A. Sahai. Positive results and techniques for obfuscation. In Eurocrypt 2004.
37. A. Narayanan and V. Shmatikov. Obfuscated databases and group privacy. In CCS 2005.
38. D. A. Osvik, A. Shamir, and E. Tromer. Cache attacks and countermeasures: The case of AES. In CT-RSA 2006.
39. A. Seshadri, M. Luk, E. Shi, A. Perrig, L. van Doom, and P. Khosla. Pioneer: Verifying code integrity and enforcing untampered code execution on legacy systems. In SOSP 2005.
40. U. Shankar, M. Chew, and J. D. Tygar. Side effect are not sufficient to authenticate software. In Usenix Security 2004.
41. D. Song, D. Wagner, and X. Tian. Timing attacks of keystrokes and timing attacks on SSH. In Usenix Security 2001.
42. A. Srivastava, A. Edwards, and H. Vo. Vulcan - binary transformation in a distributed environment. Technical Report MSR-TR-2001-50, MSR, 2001.
43. G. E. Suh, D. Clarke, B. Gassend, M. van Dijk, and S. Devadas. Aegis: Architecture for tamper-evident and tamper-resistant processing. In ICS 2003.
44. C. Wang, J. Davidson, J. Hill, and J. Knight. Protection of software-based survivability mechanisms, 2001.
45. C. Wang, J. Hill, J. Knight, and J. Davidson. Software tamper resistance: Obstructing static analysis of programs. Technical Report CS-2000-12, University of Virginia, Dec. 2000.
46. H. Wee. On obfuscating point functions. In STOC 2005.
47. G. Wurster, P. van Oorschot, and A. Somayaji. A generic attack on checksumming-based software tamper-resistance. In IEEE Security and Privacy 2005.
48. X. Zhuang, T. Zhang, and S. Pande. Hide: An infrastructure for efficiently protecting information leakage on the address bus. In ASPLOS-XI.