Obfuscation of design intent in object-oriented applications

Sosonkin, M. G.; Naumovich, Gleb; Memon, Nasir

doi:10.1145/947380.947399

Cited by 37 publications

(33 citation statements)

References 14 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Sosonkin et al propose obfuscations of object-oriented programs 21) . In their paper they propose three obfuscation techniques, i.e., class coalescing, class splitting, and type hiding.…”

Section: Related Workmentioning

confidence: 99%

Java Obfuscation Approaches to Construct Tamper-Resistant Object-Oriented Programs

Sakabe

Soshi

Miyaji

2005

ipsjdc

View full text Add to dashboard Cite

In Java programs, it is difficult to protect intellectual property rights and secret information in untrusted environments, since they are easy to decompile and reverse engineer. Consequently realization of software obfuscation becomes increasingly important. Unfortunately previous software obfuscation techniques share a major drawback that they do not have a theoretical basis and thus it is unclear how effective they are. Therefore we shall propose new software obfuscation techniques for Java in this paper. Our obfuscation techniques take advantage of features of object-oriented languages, and they drastically reduce the precision of points-to analysis of the programs. We show that determining precise points-to analysis in obfuscated programs is NP-hard and the fact provides a theoretical basis for our obfuscation techniques. Furthermore, in this paper we present some empirical experiments, whereby we demonstrate the effectiveness of our approaches.

show abstract

“…Sosonkin et al propose obfuscations of object-oriented programs 21) . In their paper they propose three obfuscation techniques, i.e., class coalescing, class splitting, and type hiding.…”

Section: Related Workmentioning

confidence: 99%

Java Obfuscation Approaches to Construct Tamper-Resistant Object-Oriented Programs

Sakabe

Soshi

Miyaji

2005

ipsjdc

View full text Add to dashboard Cite

show abstract

“…• Obfuscation techniques like identifier renaming [4], class coalescing and class splitting [5] which rely on the difficulty that in the presence of method-overloading, precisely determining if there exists an execution path in a program for which a given reference points to a given method at a point of the program execution is NP-complete [6], [7]. Even though these obfuscation techniques are based on intractable computational problems, we do not know, in practice, how to arbitrarily generate sufficiently hard obfuscated problem instances such that all program analysis techniques would fail (i.e.…”

Section: Introductionmentioning

confidence: 99%

On Evaluating Obfuscatory Strength of Alias-based Transforms using Static Analysis

Majumdar

Monsifrot

Thomborson

2006

2006 International Conference on Advanced Computing and Communications

View full text Add to dashboard Cite

Abstract-Aliasing occurs when two variables refer to the same memory location. This technique has been exploited for constructing resilient obfuscation transforms in languages that extensively use indirect referencing. The theoretical basis for these transforms is derived from the hard complexity results of precisely determining which set of variables refer to the same memory location at a given program point during execution. However, no method is known for randomly generating hard problem instances. Unless we are able to evaluate the obfuscatory strength of these transforms using static analysis tools, we cannot correlate the resilience expected in theory with what actually holds in practice. In this contribution, we will outline the main difficulties in experimentally evaluating obfuscatory strength and give an overview of techniques that are suited for analysing wellestablished alias-based obfuscation transforms.

show abstract

“…시장 조사 기관 IDC에 따르면 안드로이드 운영체제의 2014년 선적량 기준 시장 점유율은 81.5%로 세계 1위이자 압도적인 시장 지배력을 가지 고 있다 [3] . [10,12] . 에 널리 이용되고 있는 난독화 도구인 프로가드 [14] 와 JODE [15] , RetroGuard [16] , jarg [17] , yGuard [18] 는 메소 드, 클래스 식별자 변환 기법을 지원하고, 도구에 따 라 필드 등 추가적인 식별자 변환 기법을 지원하기도 한다.…”

unclassified

Java Automatic Identifier Renaming Technique and Protection Method

김지윤¹,

홍수화²,

고남현³

et al. 2015

The Journal of Korean Institute of Communications and Informati

View full text Add to dashboard Cite

This paper introduces a proper renaming service using variable action and security services against the analysis techniques in Java code. The renaming service that is introduced is separated into API pattern and loop condition. We present our scheme algorithm with known Java obfuscation techniques and tools in order to help readers understanding, and implement prototype to prove practicality in this paper. Test result using prototype shows 73% successful variable renaming rate. Using our scheme, cooperators can intuitionally understand all of code. Also, It helps malware analysts to predict malware action by variable name. But application source code that is developed by Java is exposed to hackers easily using our scheme. So we introduce Java application code protection methods, too.

show abstract

Obfuscation of design intent in object-oriented applications

Cited by 37 publications

References 14 publications

Java Obfuscation Approaches to Construct Tamper-Resistant Object-Oriented Programs

Java Obfuscation Approaches to Construct Tamper-Resistant Object-Oriented Programs

On Evaluating Obfuscatory Strength of Alias-based Transforms using Static Analysis

Java Automatic Identifier Renaming Technique and Protection Method

Contact Info

Product

Resources

About