Code Obfuscation using pseudo-random number generators

John Aycock; Juan Manuel Gutiérrez Cárdenas; Daniel Medeiros Nunes de Castro

doi:10.1109/CSE.2009.43

Code Obfuscation using pseudo-random number generators

John Aycock, Juan Manuel Gutiérrez Cárdenas, Daniel Medeiros Nunes de Castro

Research output: Contribution to conference › Paper (Contribution to a conference)

6 Scopus citations

Abstract

We describe a novel method for malicious code obfuscation that uses code already present in systems: a pseudorandom number generator. This can also be seen as an antidisassembly and anti-debugging technique, depending on deployment, because the actual code does not exist until run - it is generated dynamically by the pseudo-random number generator. A year's worth of experiments are used to demonstrate that this technique is a viable code obfuscation option for a malicious adversary with access to large amounts of computing power. © 2009 IEEE.

Original language	American English
Pages	418-423
Number of pages	6
DOIs	https://doi.org/10.1109/CSE.2009.43
State	Published - 4 Dec 2009
Externally published	Yes
Event	Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009 - Duration: 4 Dec 2009 → …

Conference

Conference	Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009
Period	4/12/09 → …

Access to Document

10.1109/CSE.2009.43

Cite this

@conference{3d4206b26b8b46d1a89cbf4485aa7dcf,

title = "Code Obfuscation using pseudo-random number generators",

abstract = "We describe a novel method for malicious code obfuscation that uses code already present in systems: a pseudorandom number generator. This can also be seen as an antidisassembly and anti-debugging technique, depending on deployment, because the actual code does not exist until run - it is generated dynamically by the pseudo-random number generator. A year's worth of experiments are used to demonstrate that this technique is a viable code obfuscation option for a malicious adversary with access to large amounts of computing power. {\textcopyright} 2009 IEEE.",

author = "John Aycock and {Guti{\'e}rrez C{\'a}rdenas}, {Juan Manuel} and {de Castro}, {Daniel Medeiros Nunes}",

year = "2009",

month = dec,

day = "4",

doi = "10.1109/CSE.2009.43",

language = "American English",

pages = "418--423",

note = "Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009 ; Conference date: 04-12-2009",

}

TY - CONF

T1 - Code Obfuscation using pseudo-random number generators

AU - Aycock, John

AU - Gutiérrez Cárdenas, Juan Manuel

AU - de Castro, Daniel Medeiros Nunes

PY - 2009/12/4

Y1 - 2009/12/4

N2 - We describe a novel method for malicious code obfuscation that uses code already present in systems: a pseudorandom number generator. This can also be seen as an antidisassembly and anti-debugging technique, depending on deployment, because the actual code does not exist until run - it is generated dynamically by the pseudo-random number generator. A year's worth of experiments are used to demonstrate that this technique is a viable code obfuscation option for a malicious adversary with access to large amounts of computing power. © 2009 IEEE.

AB - We describe a novel method for malicious code obfuscation that uses code already present in systems: a pseudorandom number generator. This can also be seen as an antidisassembly and anti-debugging technique, depending on deployment, because the actual code does not exist until run - it is generated dynamically by the pseudo-random number generator. A year's worth of experiments are used to demonstrate that this technique is a viable code obfuscation option for a malicious adversary with access to large amounts of computing power. © 2009 IEEE.

UR - https://www.scopus.com/inward/record.uri?partnerID=HzOxMe3b&scp=70849083229&origin=inward

UR - https://www.scopus.com/inward/citedby.uri?partnerID=HzOxMe3b&scp=70849083229&origin=inward

U2 - 10.1109/CSE.2009.43

DO - 10.1109/CSE.2009.43

M3 - Paper (Contribution to a conference)

SP - 418

EP - 423

T2 - Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009

Y2 - 4 December 2009

ER -

Code Obfuscation using pseudo-random number generators

Abstract

Conference

Access to Document

Other files and links

Fingerprint

Cite this