论文信息 - A novel solution against Hybrid Static-Dynamic Disassembly in embedded ARM platforms

A novel solution against Hybrid Static-Dynamic Disassembly in embedded ARM platforms

Nowadays, most reasonable software protection techniques are proposed only to resist static-only attacks. However, with the development of Hybrid Static-Dynamic Disassembly (HSDD), the techniques used to prevent static-only attacks can be easily detected and eliminated, and the difficulty of crack is greatly reduced. In this paper, in order to resist HSDD, the Instruction Transform Algorithm (ITA) and the Recover Instructions in Hardware Interrupt (RIHI) are proposed to distort the original binary code and to recover the encrypted binary code respectively. With these two new schemes, the security of software can be extremely enhanced, making HSDD more difficult to achieve. In addition, a new form of Vigenère cipher is introduced to make the encryption and decryption of Advanced RISC Machines (ARM) instructions more efficient and effective.

Jian Kuang | Jiali Bian | Liang Kang

[1] Jack W. Davidson,et al. Protection of software-based survivability mechanisms , 2001, 2001 International Conference on Dependable Systems and Networks.

[2] Jian Kuang,et al. A protective mechanism using variable-instruction-sets encryption for Java applications in mobile terminal platforms , 2010 .

[3] Jason Raber,et al. Deobfuscator: An Automated Approach to the Identification and Removal of Code Obfuscation , 2007, 14th Working Conference on Reverse Engineering (WCRE 2007).

[4] Steven S. Muchnick,et al. Advanced Compiler Design and Implementation , 1997 .

[5] Koen De Bosschere,et al. Hybrid static-dynamic attacks against software protection mechanisms , 2005, DRM '05.