电子学报 ›› 2014, Vol. 42 ›› Issue (3): 529-537.DOI: 10.3969/j.iss.0372-2012-2014.03.017

• 学术论文 • 上一篇    下一篇

白盒环境中防动态攻击的软件保护方法研究

王怀军, 房鼎益, 董浩, 陈晓江, 汤战勇   

  1. 西北大学信息科学与技术学院, 西北大学-爱迪德信息安全联合实验室, 陕西西安 710127
  • 收稿日期:2013-04-01 修回日期:2013-10-20 出版日期:2014-03-25
    • 作者简介:
    • 王怀军 男,1981年6月出生,山东滕州人.博士生,主要研究领域为软件安全与保护,软件攻击技术,软件保护方法有效性评测
    • 基金资助:
    • 教育部科学技术研究重点项目 (No.21181); 教育部博士点基金 (No.20106101110018); 国家科技支撑计划课题 (No.2013BAK02B02); 国家自科学基金 (No.61070176,No.61170218,No.61272461,No.61202393); 陕西省科技攻关 (No.2011K06-07,No.2012K06-17); 陕西省科技计划 (No.2011K06-09); 陕西省教育厅产业化培育项目 (No.2011jg06); 陕西省自然科学基础研究计划 (No.2012JQ8049)

Research on Software Protection Defending Dynamic Attack in White-Box Environment

WANG Huai-jun, FANG Ding-yi, DONG Hao, CHEN Xiao-jiang, TANG Zhan-yong   

  1. NWU-Irdeto Network-Information Security Joint Laboratory(NISL), Department of Information Science, Northwest University, Xi'an, Shaanxi 710127, China
  • Received:2013-04-01 Revised:2013-10-20 Online:2014-03-25 Published:2014-03-25
    • Supported by:
    • Key Project of Chinese Ministry of Education of China (No.21181); Ph.D. Programs Foundation of Ministry of Education of China (No.20106101110018); Subject of National Key Technology R&D Program (No.2013BAK02B02); National Natural Science Fund (No.61070176, No.61170218, No.61272461, No.61202393); Key Technology Research and Development Program of Shaanxi Province (No.2011K06-07, No.2012K06-17); Science Technology Project of Shaanxi Province (No.2011K06-09); Industrial Project of Education Department of Shaanxi Province (No.2011jg06); Natural Science Basic Research Priorities Program of Shaanxi Province (No.2012JQ8049)

摘要: 运行态软件常常面临着核心算法被逆向和机密信息被泄漏的严峻威胁,急需研究有效的防动态攻击的软件保护方法.本文包含两方面研究内容:(1)对现有防动态攻击的软件保护方法进行深入分析和综合比较,针对当前主流的防动态攻击的四类保护方法,从实现难度,性能影响和安全性三个指标进行综合对比;(2)通过实例介绍我们在防动态攻击的软件保护方面两项研究工作.分别研究了基于变形引擎的动态软件保护方法和一种安全性增强的虚拟机软件保护方法.

关键词: 白盒环境, 防动态攻击, 软件保护, 虚拟机软件保护

Abstract: Running software often faces serious threats,for example,the core algorithm is reversed or confidential information is leaked.So,it is needed to study effective protection methods against dynamic attack.The paper includes two aspects.First,do in-depth analysis and comprehensive comparison of the existing method of software protection against dynamic attacks.According to four mainstream software protection methods against anti-dynamic attack,we do comprehensive comparison of these four protection methods from three indicators of implementation difficulty,performance impact and security.Second,Introduce the work of our two studies in software protection against anti-dynamic attacks through examples.They are a software protection method based on dynamic deformation engine and a security-enhanced software protection based on virtual machine.

Key words: white-box attack environment, anti-dynamic attack, software protection, virtual machine based software protection

中图分类号: