论文信息 - A token strengthened encryption packer to prevent reverse engineering PE files

A token strengthened encryption packer to prevent reverse engineering PE files

Before software is released, developers often pack it with a software packer in order to protect the internal design. Many existing packers have been unpacked by crackers. To address this problem, we propose an encryption packer that strengthens confidentiality of the protected PE file with the security token. The packer also incorporates techniques of anti-debugging, anti-dumping, and anti-tracking to prevent reverse engineering PE files. We have designed and implemented the system. Our experimental results show that it effectively resists common cracking methods with a little time and space cost.

Ang Li | Junxing Zhang | Yue Zhang | Gang Zhu

[1] Xi Hongsheng,et al. Application of CLIPS Expert System to Malware Detection System , 2008, 2008 International Conference on Computational Intelligence and Security.

[2] Cristina Cifuentes,et al. Reverse compilation techniques , 1994 .

[3] Dong Qing-tan. Comparative Study of Software Protection Strategy , 2011 .

[4] Chen Wen-yu. The Application Research of Virtual Machine in Packers , 2011 .

[5] Xie Qing-chun. Research and implementation of PE file stealthy shell technique , 2009 .

[6] Luo Senlin. Research and Implementation of Packing Technology for PE Files , 2013 .

[7] Pang Li-hui. Research and Implementation of Dynamically Packing Technology for PE Files , 2008 .

[8] Stephen Taylor,et al. Software Protection through Anti-Debugging , 2007, IEEE Security & Privacy.

[9] Wang Shaodi. Logic Invariability Study of Junk Code Transformation , 2006 .

[10] Bo Zhao,et al. Research on Software Protection Method Based on USBKey , 2013, 2013 International Conference on Computer Sciences and Applications.