A Buffer Overflow Based Algorithm to Conceal Software Watermarking Trigger Behavior

Cheng, Jiujun; Gao, Shangce; Vairappan, Catherine; Wang, Rong Long; Ylä-Jääski, Antti

doi:10.1587/transinf.e97.d.524

Cited by 2 publications

(2 citation statements)

References 18 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Software watermarking can be classified as static or dynamic depending on the occasion of watermark embedding and extraction [2]. The carrier program is considered a static object in the static watermarking, and the watermark is embedded into the static data or code; examples include code replacement [3], basic block reordering [4], register allocation [5], opacity predicate [6], graph coding [7], and Java method name encoding [8] watermarking algorithms and impeding Android application repackaging [9].…”

Section: Introductionmentioning

confidence: 99%

“…These methods extract the embedded watermark from the stack data structure during program execution. Another example is operation status watermarking [17], such as return-oriented programming-based [18], buffer overflow-based [2], and control flow obfuscation-based watermarking algorithms [19]. The return-oriented programming-based watermarking algorithm decomposes a watermark and spreads it in the different parts of the program.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Exception Handling-Based Dynamic Software Watermarking

Wang¹,

Gong²,

Lu³

et al. 2018

IEEE Access

View full text Add to dashboard Cite

Existing algorithms experience difficulty resisting additive and subtractive attacks because the embedded watermarks are independent of the carrier programs. A dynamic software watermarking algorithm based on exception handling is proposed in this paper. The algorithm considers the fact that exception handling, which is difficult to remove, commonly exists in the programs to ensure the normal program operation. First, an exception type table is constructed, and the binary watermark to be embedded is mapped to a sequence of exception types by scrambling encoding. Second, corresponding trigger conditions and exception handlers are constructed, and watermark embeddable points are acquired in execution paths under secret inputs. Finally, the code segment of the constructed trigger conditions and exception handlers are inserted into the program with several meticulously designed identifiers. For watermark extraction, the triggered exception types can be obtained with the identifiers by executing the watermarked executable program under secret inputs. The mapping relationship between the exception type and watermark is utilized to decode the binary watermark. The algorithm analysis and experimental results show that the proposed algorithm can embed a watermark in the source code and extract it in an executable program. The algorithm demonstrates good performance against additive and subtractive attacks.INDEX TERMS Software watermarking, dynamic software watermarking, exception handling, watermark encoding.

show abstract