| 题名: | value-based program characterization and its application to software plagiarism detection |
| 作者: | Jhi Yoon-Chan
; Wang Xinran
; Jia Xiaoqi
; Zhu Sencun
; Liu Peng
; Wu Dinghao
|
| 会议文集: | Proceedings - International Conference on Software Engineering
|
| 会议名称: | 33rd International Conference on Software Engineering, ICSE 2011
|
| 会议日期: | 21-May-20
|
| 出版日期: | 2011
|
| 会议地点: | Waikiki, Honolulu, HI, United states
|
| 关键词: | Cosine transforms
; Semantics
; Software engineering
|
| 出版地: | United States
|
| 收录类别: | EI
|
| ISSN: | 2705257
|
| ISBN: | 9781450304450
|
| 部门归属: | (1) Penn State University, University Park, PA 16802, United States; (2) State Key Laboratory of Information Security, Institute of Software, Chinese Academy of Sciences, China
|
| 主办者: | Assoc. Comput. Mach., Spec. Interest Group Softw.; Eng. (ACM SIGSOFT); IEEE Computer Society; Technical Council on Software Engineering (TCSE)
|
| 英文摘要: | Identifying similar or identical code fragments becomes much more challenging in code theft cases where plagiarizers can use various automated code transformation techniques to hide stolen code from being detected. Previous works in this field are largely limited in that (1) most of them cannot handle advanced obfuscation techniques; (2) the methods based on source code analysis are less practical since the source code of suspicious programs is typically not available until strong evidences are collected; and (3) those depending on the features of specific operating systems or programming languages have limited applicability. Based on an observation that some critical runtime values are hard to be replaced or eliminated by semantics-preserving transformation techniques, we introduce a novel approach to dynamic characterization of executable programs. Leveraging such invariant values, our technique is resilient to various control and data obfuscation techniques. We show how the values can be extracted and refined to expose the critical values and how we can apply this runtime property to help solve problems in software plagiarism detection. We have implemented a prototype with a dynamic taint analyzer atop a generic processor emulator. Our experimental results show that the value-based method successfully discriminates 34 plagiarisms obfuscated by SandMark, plagiarisms heavily obfuscated by KlassMaster, programs obfuscated by Thicket, and executables obfuscated by Loco/Diablo. © 2011 ACM. |
| 内容类型: | 会议论文
|
| URI标识: | http://ir.iscas.ac.cn/handle/311060/14207
|
| Appears in Collections: | 信息安全国家重点实验室_会议论文
|
| File Name/ File Size |
Content Type |
Version |
Access |
License |
|
|---|
| value-based program characterization and its application to software plagiarism detection.pdf(684KB) | -- | -- | 限制开放 | -- | 联系获取全文 |
|
| Recommended Citation: | |
Jhi Yoon-Chan,Wang Xinran,Jia Xiaoqi,et al. value-based program characterization and its application to software plagiarism detection[C]. 见:33rd International Conference on Software Engineering, ICSE 2011. Waikiki, Honolulu, HI, United states. 21-May-20.
|
|
|
