Search Based Clustering for Protecting Software with Diversified Updates

Ceccato, Mariano; Falcarin, Paolo; Cabutto, Alessandro; Frezghi, Yosief Weldezghi; Staicu, Cristian-Alexandru

doi:10.1007/978-3-319-47106-8_11

Cited by 5 publications

(3 citation statements)

References 26 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…They argued that there are some characteristics of the execution that are strictly correlated with the underlying logic of the code which are invariant after applying obfuscation. The search for the optimal obfuscation configuration has been done by Ceccato et al [34] in case of software diversity but using static metrics.…”

Section: Related Workmentioning

confidence: 99%

Analysis of Obfuscated Code with Program Slicing

Talukder

Islam

Falcarin

2019

2019 International Conference on Cyber Security and Protection of Digital Services (Cyber Security)

Self Cite

View full text Add to dashboard Cite

In Man-At-The-End (MATE) attacks, software apps run on a device under full control of the attackers: they can violate the intellectual property of the app by means of malicious reverse engineering, software piracy, and software tampering. Obfuscation is a technique that is widely adopted by developers to mitigate this problem. Obfuscation increases complexity of software code, by obscuring the structure of code and data in order to thwart the reverse engineering process. However, it is possible to reverse engineer obfuscated code with time, determination and the right tools. In general, there is no accepted methodology to determine the strength of obfuscated code; however resilience is often considered a good metric as it indicates the percentage of obfuscated code that cannot be removed by automated de-obfuscation tools. We introduce a novel approach to measure the resilience of obfuscated C code using program slicing. Given a variable of interest, that might be part of a code region used to manipulate a crypto key or a license number, program slicing can mimic the attacker behaviour by trying to remove the code unrelated to that variable, acting as a new type of de-obfuscator.

show abstract

Section: Related Workmentioning

confidence: 99%

Analysis of Obfuscated Code with Program Slicing

Talukder

Islam

Falcarin

2019

2019 International Conference on Cyber Security and Protection of Digital Services (Cyber Security)

Self Cite

View full text Add to dashboard Cite

show abstract

“…However, GAC fails to surpass the quality of the hierarchical clustering solution at higher K values. To the best of our knowledge, our study is the first to explore the viability of GA-based clustering solutions for mobile app categorisation, and, more in general, few studies have investigated search-based clustering in SE research (e.g., [5,6,11,15]). This study shows the viability of search-based clustering solutions for SE tasks, and we hope can open further avenues for SBSE research.…”

Section: Introductionmentioning

confidence: 99%

“…http://clapp.afnan.ws/data/ 4 Modified GAMA code can be found here: https://github.com/afnan-s/gama5 The cluster centre is the arithmetic mean of all the points belonging to the cluster.…”

mentioning

confidence: 99%

Exploring the Use of Genetic Algorithm Clustering for Mobile App Categorisation

Al-Subaihin

Sarro

2020

Search-Based Software Engineering

View full text Add to dashboard Cite

Search-based approaches have been successfully used as clustering algorithms in several domains. However, little research has looked into their effectiveness for clustering tasks commonly faced in Software Engineering (SE). This short replication paper presents a preliminary investigation on the use of Genetic Algorithm (GA) to the problem of mobile application categorisation. Our results show the feasibility of GA-based clustering for this task, which we hope will foster new avenues for Search-Based Software Engineering (SBSE) research in this area.

show abstract