On-Stack Replacement to Improve JIT-based Obfuscation - A Preliminary Study

Abstract : As more devices are connecting together, more effective security techniques are needed to protect running software from hackers. One possible security technique is to continuously change the binary code running of given software by recompiling it on the fly. This switching need to be done frequently, quickly, and randomly, not constrained by specific locations in code, to make it difficult for the hacker to track the behavior of the running code or predict its functionality. In our research we are working on a technique that recompiles speculatively and concurrently with current execution, and switches to the new compiled version dynamically, at arbitrary points. This paper presents an early analytical study augmented by experimental analysis on manually applying this technique on simple kernels, to study the concept in comparison with other similar techniques.
Document type :
Conference papers
Liste complète des métadonnées

https://hal.inria.fr/hal-00909722
Contributor : Erven Rohou <>
Submitted on : Tuesday, November 26, 2013 - 5:10:23 PM
Last modification on : Friday, November 16, 2018 - 1:38:49 AM

Identifiers

  • HAL Id : hal-00909722, version 1

Citation

Marwa Yusuf, Ahmed El-Mahdy, Erven Rohou. On-Stack Replacement to Improve JIT-based Obfuscation - A Preliminary Study. International Japan-Egypt Conference on Electronics, Communications, and Computers, Dec 2013, Cairo, Egypt. 2013. 〈hal-00909722〉

Share

Metrics

Record views

477