Analyzing Stack Flows to Compare Java Programs

Lim, Hyeong-Seok; Han, Tian

doi:10.1587/transinf.e95.d.565

Cited by 6 publications

(5 citation statements)

References 18 publications

(28 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For R2, most dynamic analysis binary based approaches, (e.g., DYKIS [30], TOB [28], TreSB [27], and LoPD [21]) would fail because they detect whole program plagiarism and only generate a similarity score. The approaches based on static analysis (e.g., SKB [22], SWKB [33], SFB [17] and WSPB [18]) can satisfy R2, because static analysis make it possible to be applied at different granularities, such as basic blocks, functions, which can be detected locally.…”

Section: Recent State Of the Art And Practicementioning

confidence: 99%

“…AST [35] based on abstract syntax tree only partially satisfy R3, as a result of failing to handle advanced code obfuscation, for example, instruction rearrangement, statement splitting. SFB [17] and WSPB [18] also only partially satisfy R3, because they are vulnerable to control flow obfuscation. GPLAG [19] which relies the analysis on Program Dependency Graphs (PDGs) can perform better robustness against advanced semantics-preserving code obfuscation techniques and satisfies R3.…”

Section: Recent State Of the Art And Practicementioning

confidence: 99%

See 1 more Smart Citation

Revisiting the Challenges and Opportunities in Software Plagiarism Detection

Fan

Jia

et al. 2020

2020 IEEE 27th International Conference on Software Analysis, Evolution and Reengineering (SANER)

View full text Add to dashboard Cite

Software plagiarism seriously impedes the healthy development of open source software. To fight against code obfuscation and inherent non-determinism of thread scheduling applied against software plagiarism detection, we proposed a new dynamic birthmark called DYnamic Key Instruction Sequence (DYKIS) and a framework called Thread-oblivious dynamic Birthmark (TOB) for the purpose of reviving the existing birthmarks and a thread-aware dynamic birthmark called Thread-related System call Birthmark (TreSB). Though many approaches have been proposed for software plagiarism detection, they are still limited to satisfy the following highly desired requirements: the applicability to handle binary, the capability to detect partial plagiarism, the resiliency to code obfuscation, the interpretability on detection results, and the scalability to process large-scale software. In this position paper, we discuss and outline the research opportunities and challenges in the field of software plagiarism detection in order to stimulate brilliant innovations and direct our future research efforts.

show abstract

Section: Recent State Of the Art And Practicementioning

confidence: 99%

Section: Recent State Of the Art And Practicementioning

confidence: 99%

Revisiting the Challenges and Opportunities in Software Plagiarism Detection

Fan

Jia

et al. 2020

2020 IEEE 27th International Conference on Software Analysis, Evolution and Reengineering (SANER)

View full text Add to dashboard Cite

show abstract

“…Decision maker decides plagiarism by the average value ψ of multiple similarity scores against a predefined threshold ε. We adopt a default value of ε = 0.25 as in previous studies [11], [16], [31], [32]. That is, two programs are classified as independent if ψ ≤ 0.25, as plagiarized if ψ ≥ 0.75.…”

Section: System Design and Implementationmentioning

confidence: 99%

“…Lim [34] used control flow information that reflected runtime behaviors to supplement static approaches. Recently he proposed to analyze stack flows obtained by simulating operand stack movements to detect copies [31]. Yet they are only available to Java programs.…”

Section: Static Binary Code Based Birthmarksmentioning

confidence: 99%

Software Plagiarism Detection with Birthmarks Based on Dynamic Key Instruction Sequences

Tian

Zheng

Liu

et al. 2015

IIEEE Trans. Software Eng.

View full text Add to dashboard Cite

A software birthmark is a unique characteristic of a program. Thus, comparing the birthmarks between the plaintiff and defendant programs provides an effective approach for software plagiarism detection. However, software birthmark generation faces two main challenges: the absence of source code and various code obfuscation techniques that attempt to hide the characteristics of a program. In this paper, we propose a new type of software birthmark called DYKIS (DYnamic Key Instruction Sequence) that can be extracted from an executable without the need for source code. The plagiarism detection algorithm based on our new birthmarks is resilient to both weak obfuscation techniques such as compiler optimizations and strong obfuscation techniques implemented in tools such as SandMark, Allatori and Upx. We have developed a tool called DYKIS-PD (DYKIS Plagiarism Detection tool) and conducted extensive experiments on large number of binary programs. The tool, the benchmarks and the experimental results are all publicly available.Index Terms-software plagiarism detection, software birthmark ! 0098-5589 (c)

show abstract

“…Lim proposed to use control flow information that reflects runtime behaviors to supplement static approaches [13]. More recently Lim proposed to analyze stack flows obtained by simulating the operand stack movements to detect copies [12].…”

Section: Related Workmentioning

confidence: 99%

Plagiarism detection for multithreaded software based on thread-aware software birthmarks

Tian

Zheng

Liu

et al. 2014

Proceedings of the 22nd International Conference on Program Comprehension

View full text Add to dashboard Cite

The availability of inexpensive multicore hardware presents a turning point in software development. In order to benefit from the continued exponential throughput advances in new processors, the software applications must be multithreaded programs. As multithreaded programs become increasingly popular, plagiarism of multithreaded programs starts to plague the software industry. Although there has been tremendous progress on software plagiarism detection technology, existing dynamic approaches remain optimized for sequential programs and cannot be applied to multithreaded programs without significant redesign. This paper fills the gap by presenting two dynamic birthmark based approaches. The first approach extracts key instructions while the second approach extracts system calls. Both approaches consider the effect of thread scheduling on computing software birthmarks. We have implemented a prototype based on the Pin instrumentation framework. Our empirical study shows that the proposed approaches can effectively detect plagiarism of multithread programs and exhibit strong resilience to various semantic-preserving code obfuscations.

show abstract

Analyzing Stack Flows to Compare Java Programs

Cited by 6 publications

References 18 publications

Revisiting the Challenges and Opportunities in Software Plagiarism Detection

Revisiting the Challenges and Opportunities in Software Plagiarism Detection

Software Plagiarism Detection with Birthmarks Based on Dynamic Key Instruction Sequences

Plagiarism detection for multithreaded software based on thread-aware software birthmarks

Contact Info

Product

Resources

About