论文信息 - An USB-Key_based approach for software tamper resistance

An USB-Key_based approach for software tamper resistance

A lot of approaches for software tamper resistance have been proposed to insure that the program will execute as expected. One important technique is integrity-checking which use self-hashing to check the integrity of the software, but the adversary can easily bypass the verification by locating the hash value comparison instruction. Another one is software encryption. But most of them don't protect the keys and decryption routines well. In this paper we propose an approach for software tamper resistance based on USB-Key. We divide the software into individual blocks and use different keys to encrypt them, a number of small code segments called security guides which are used to control the program flow and check the security of software are inserted into the blocks. And the USB-Key is used to protect the keys and security self-checking.

Jun Liu | Shi-yuan Zheng

[1] Ping Wang,et al. Tamper Resistant Software Through Dynamic Integrity Checking , 2005 .

[2] Mikhail J. Atallah,et al. Protecting Software Code by Guards , 2001, Digital Rights Management Workshop.

[3] Li Dan. Towards Better Encryption Based Software Self-Checking Tamper Resistance , 2007 .

[4] Ramarathnam Venkatesan,et al. Oblivious Hashing: A Stealthy Software Integrity Verification Primitive , 2002, Information Hiding.

[5] Hyunsoo Yoon,et al. Tamper Resistant Software by Integrity-Based Encryption , 2004, PDCAT.

[6] Christian F. Tschudin,et al. Protecting Mobile Agents Against Malicious Hosts , 1998, Mobile Agents and Security.

[7] Liu Jiqiang,et al. USB key-based approach for software protection , 2009, 2009 International Conference on Industrial Mechatronics and Automation.

[8] Robert E. Tarjan,et al. Dynamic Self-Checking Techniques for Improved Tamper Resistance , 2001, Digital Rights Management Workshop.