中国科学院软件研究所机构知识库
Advanced  
ISCAS OpenIR  > 基础软件国家工程研究中心  > 会议论文
题名:
efficient and automatic instrumentation for packed binaries
作者: Wu Yanjun ; Chiuch Tzi-cker ; Zhao Chen
会议文集: Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
会议名称: 3rd International Conference on Information Security and Assurance
会议日期: JUN 25-27,
出版日期: 2009
会议地点: Seoul, SOUTH KOREA
出版者: ADVANCES IN INFORMATION SECURITY AND ASSURANCE
出版地: HEIDELBERGER PLATZ 3, D-14197 BERLIN, GERMANY
ISSN: 0302-9743
ISBN: 978-3-642-02616-4
部门归属: Wu, Yanjun; Zhao, Chen Chinese Acad Sci, Inst Software, Beijing, Peoples R China.
英文摘要: Many modern software security techniques require transformation of executable binaries to add security features. Such transformation heavily depends on the correct and effecient disassembly. However, an increasing number of application binaries are packed before being distributed in the commercial world. Packed binaries are a special type of self-modifying code, which existing binary disassembly tools do not support very well, especially when automatic instrumentation is needed. This paper describes the design, implementation and evaluation of an efficient and automatic binary instrumentation tool for packed Win32/X86 binaries called Uncover. Uncover features two novel techniques: statically distinct packed binaries by entropy computation to minimize run-time disassembly overhead, and accurate tracking of binary unpacking process during runtime. These two techniques make it possible to disassemble Win32/X86 packed binaries as if they were never packed.
内容类型: 会议论文
URI标识: http://ir.iscas.ac.cn/handle/311060/8354
Appears in Collections:基础软件国家工程研究中心_会议论文

Files in This Item:
File Name/ File Size Content Type Version Access License
efficient and automatic instrumentation for packed binaries.pdf(364KB)----限制开放-- 联系获取全文

Recommended Citation:
Wu Yanjun,Chiuch Tzi-cker,Zhao Chen. efficient and automatic instrumentation for packed binaries[C]. 见:3rd International Conference on Information Security and Assurance. Seoul, SOUTH KOREA. JUN 25-27,.
Service
Recommend this item
Sava as my favorate item
Show this item's statistics
Export Endnote File
Google Scholar
Similar articles in Google Scholar
[Wu Yanjun]'s Articles
[Chiuch Tzi-cker]'s Articles
[Zhao Chen]'s Articles
CSDL cross search
Similar articles in CSDL Cross Search
[Wu Yanjun]‘s Articles
[Chiuch Tzi-cker]‘s Articles
[Zhao Chen]‘s Articles
Related Copyright Policies
Null
Social Bookmarking
Add to CiteULike Add to Connotea Add to Del.icio.us Add to Digg Add to Reddit
所有评论 (0)
暂无评论
 
评注功能仅针对注册用户开放,请您登录
您对该条目有什么异议,请填写以下表单,管理员会尽快联系您。
内 容:
Email:  *
单位:
验证码:   刷新
您在IR的使用过程中有什么好的想法或者建议可以反馈给我们。
标 题:
 *
内 容:
Email:  *
验证码:   刷新

Items in IR are protected by copyright, with all rights reserved, unless otherwise indicated.

 

 

Valid XHTML 1.0!
Copyright © 2007-2017  中国科学院软件研究所 - Feedback
Powered by CSpace