| 基于软件执行轨迹差异比对的关键函数定位技术研究 |
| |
| 引用本文: | 康绯,王乾,肖亚南,黄荷洁.基于软件执行轨迹差异比对的关键函数定位技术研究[J].通信学报,2013,34(9):177-184. |
| |
| 作者姓名: | 康绯 王乾 肖亚南 黄荷洁 |
| |
| 作者单位: | 1. 信息工程大学 数学工程与先进计算国家重点实验室,河南 郑州,450001
2. 中国北方电子设备研究所,北京,100191 |
| |
| 基金项目: | 国家保密局科研基金资助项目(BMKY2013B03-1) |
| |
| 摘 要: | 关键函数是指应用软件在某个运行阶段发挥着关键作用的核心功能函数。对软件中的关键函数进行快速定位是提高逆向分析效率的有效手段。目前,在软件逆向工程领域对关键函数进行定位大多是利用人工分析的方法。利用动态二进制插桩技术,提出了一种切实可行的基于软件执行轨迹差异的关键函数自动定位方法。当软件具有2类不同的输入,分别触发、不触发关键函数时,该方法能够快速、准确地识别关键函数。
|
| 关 键 词: | 关键函数 软件执行轨迹 动态二进制插桩 |
| 收稿时间: | 5/2/2013 12:00:00 AM |
Research on key functions locating technique based on
software execution trace difference comparison |
| |
| KANG Fei
,
WANG Qian
,
XIAO Ya-nan
,
HUANG He-jie.Research on key functions locating technique based on
software execution trace difference comparison[J].Journal on Communications,2013,34(9):177-184. |
| |
| Authors: | KANG Fei WANG Qian XIAO Ya-nan HUANG He-jie |
| |
| Affiliation: | 1. State Key Laboratory of Mathematical Engineering and Advanced Computing,Information Engineering University,Zhengzhou 450001,China;2. Institute of North Electronic Equipment,Beijing 10091,China |
| |
| Abstract: | Key functions are the core functions which play vital roles in certain run phase of application software. The quick locating of key functions is a valid method to improve the efficiency of software reverse analysis. In the field of software reverse engineering, locating key functions is mostly based on manual analysis. Dynamic binary Instrumentation (DBI) techniques were employed to present a practicabletechnique to automatically locating the key functions based on software execution trace difference.Key functions can be quickly and precisely located when key functions can be triggered or not by two different kinds of software inputs. |
| |
| Keywords: | locating function software execution trace dynamic binary instrumentation |
| 本文献已被 万方数据 等数据库收录! |
| 点击此处可从《通信学报》浏览原始摘要信息 |
|
点击此处可从《通信学报》下载全文 |
