Control flow obfuscation with information flow tracking

Proceedings of the Annual International Symposium on Microarchitecture, MICRO

Volumn , Issue , 2009, Pages 391-400

  Chen, Haibo ^a   Yuan, Liwei ^a   Wu, Xi ^a   Zang, Binyu ^a   Huang, Bo ^b   Yew, Pen Chung ^c  

^a FUDAN UNIVERSITY   (China)

^b INTEL CORPORATION   (United States)

^c UNIVERSITY OF MINNESOTA   (United States)

Author keywords

Control flow obfuscation; Control speculation; Information flow tracking; Opaque predicate

Indexed keywords

ARCHITECTURAL RESEARCH; ARCHITECTURAL SUPPORT; CODE SIZE; COMMON FEATURES; CONTROL FLOW OBFUSCATION; CONTROL FLOWS; HARDWARE SUPPORTS; INFORMATION FLOWS; ITANIUM PROCESSOR; MALICIOUS CODES; MALWARES; NORMAL CONTROLS; PERFORMANCE DEGRADATION; SECURE SOFTWARE;

COMPUTER CRIME; CRIME; SECURITY OF DATA;

PROGRAM PROCESSORS;

EID: 76749151451     PISSN: 10724451     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1669112.1669162     Document Type: Conference Paper

References (30)

1. H. Chen, X. Wu, L. Yuan, B. Zang, P. Yew, and F. Chong. From Speculation to Security: Practical and Efficient Information Flow Tracking Using Speculative Hardware. In Proc. ISCA, pages 401-412, 2008.
2. J. Chow, B. Pfaff, T. Garfinkel, K. Christopher, and M. Rosenblum. Understanding data lifetime via whole system simulation. In Proc. USENIX Security Symposium, pages 321-336, 2004.
3. S. Chow, Y. Gu, H. Johnson, and V. Zakharov. An approach to the obfuscation of control-flow of sequential computer programs. In Proc. Information Security Conference, pages 144-155, 2001.
4. C. Cifuentes and K. Gough. Decompilation of Binary Programs. Software - Practice and Experience, 25(7):811-829, 1995.
5. C. Collberg, C. Thomborson, and D. Low. A taxonomy of obfuscating transformations. University of Auckland Technical Report, 170, 1997.
6. C. Collberg, C. Thomborson, and D. Low. Manufacturing cheap, resilient, and stealthy opaque constructs. In Proc. POPL, pages 184-196, 1998.
7. J. Crandall and F. Chong. Minos: Control Data Attack Prevention Orthogonal to Memory Model. In Proc. Micro, pages 221-232, 2004.
8. W. Cui, J. Kannan, and H. Wang. Discoverer: Automatic protocol reverse engineering from network traces. In 16th Usenix Security Symposium, 2007.
9. M. Dalton, H. Kannan, and C. Kozyrakis. Raksha: a flexible information flow architecture for software security. In Proc. ISCA, pages 482-493, 2007.
10. datarescue. IDA Pro. http://www.datarescue.com/idabase/.
11. M. Gagnon, S. Taylor, and A. Ghosh. Software Protection through Anti-Debugging. IEEE SECURITY & PRIVACY, pages 82-84, 2007.
12. J. Ge, S. Chaudhuri, and A. Tyagi. Control flow based obfuscation. In Proc. DRM, pages 83-92, 2005.
13. J. Huck, D. Morris, J. Ross, A. Knies, H. Mulder, and R. Zahir. Introducing the IA-64 architecture. IEEE Micro, 20(5):12-23, 2000.
14. C. Kruegel, W. Robertson, F. Valeur, and G. Vigna. Static Disassembly of Obfuscated Binaries. In Proc. Usenix Security Symposium, 2004.
15. D. Larochelle and D. Evans. Statically detecting likely buffer overflow vulnerabilities. In Proc. USENIX Security Symposium, 2001.
16. T. Leek, G. Baker, R. Brown, M. Zhivich, and R. Lippmann. Coverage Maximization Using Dynamic Taint Tracing. Technical Report 112, MIT Lincoln Laboratory, 2007.
17. R. Lemos. Tracking code red. http://news.cnet.com/2009-1001-270471.html, visited May, 2009, 2001.
18. C. Linn and S. Debray. Obfuscation of executable code to improve resistance to static disassembly. In Proc. CCS, pages 290-299, 2003.
19. A. Majumdar, S. Drape, and C. Thomborson. Slicing obfuscations: design, correctness, and evaluation. In Proc. DRM, pages 70-81, 2007.
20. G. Myles and C. Collberg. Software watermarking via opaque predicates: Implementation, analysis, and attacks. Electronic Commerce Research, 6(2):155-171, 2006.
21. S. Mysore, B. Mazloom, B. Agrawal, and T. Sherwood. Understanding and visualizing full systems with data flow tomography. In Proc. ASPLOS, pages 211-221, 2008.
22. T. OGISO, Y. SAKABE, M. SOSHI, and A. MIYAJI. Software Obfuscation on a Theoretical Basis and Its Implementation. IEICE TRANSACTIONS on Fundamentals of Electronics, Communications and Computer Sciences, 86(1):176-186, 2003.
23. J. Palsberg, S. Krishnaswamy, M. Kwon, D. Ma, Q. Shao, and Y. Zhang. Experience with software watermarking. In Proc. ACSAC, pages 308-316, 2000.
24. I. Popov, S. Debray, and G. Andrews. Binary Obfuscation Using Signals. In Proc. Usenix Security Symposium, 2007.
25. G. Suh, J. Lee, D. Zhang, and S. Devadas. Secure program execution via dynamic information flow tracking. In Proc. ASPLOS, pages 85-96, 2004.
26. S. Udupa, S. Debray, and M. Madou. Deobfuscation: Reverse Engineering Obfuscated Code. In Proc. Working Conference on Reverse Engineering, pages 45-54, 2005.
27. G. Venkataramani, I. Doudalis, Y. Solihin, and M. Prvulovic. FlexiTaint: Programmable Architectural Support for Efficient Dynamic Taint Propagation. In Proc. HPCA, 2008.
28. C. Wang, J. Davidson, J. Hill, and J. Knight. Protection of software-based survivability mechanisms. In Proc. DSN, 2001.
29. M. Weiser. Program slicing. In Proc. ICSE, pages 439-449, 1981.
30. C. Zou, W. Gong, and D. Towsley. Code red worm propagation modeling and analysis. In Proc. CCS, pages 138-147, 2002.