Method of diversity software protection based on fusion compilation

For the obvious characteristics and single mode of the existing common protection methods, with the help of the LLVM framework, a diversity software protection method based on fusion compilation was proposed. In the proposed method, the target software is encrypted randomly, and deeply integrated wi...

Full description

Bibliographic Details
Published in:网络与信息安全学报
Main Author: XIONG Xiaobing, SHU Hui, KANG Fei
Format: Article
Language:English
Published: POSTS&TELECOM PRESS Co., LTD 2020-12-01
Subjects:
software protection
diversification
fusion compilation
memory execution
llvm
intermediate representation
Online Access:http://www.infocomm-journal.com/cjnis/CN/10.11959/j.issn.2096-109x.2020075
Description
Summary:For the obvious characteristics and single mode of the existing common protection methods, with the help of the LLVM framework, a diversity software protection method based on fusion compilation was proposed. In the proposed method, the target software is encrypted randomly, and deeply integrated with the bunker code at the compilation level, and the encrypted target software is decrypted by memory execution technology. Then it is executed in the form of no process in memory, and the diversified protection effect of the target software is realized by the diversity of the bunker and the randomness of the fusion strategies. A number of commonly used software are selected as the test case, and the proposed method is tested from the aspects of resource cost, protection effect, comparative experiment and so on. Compared with the traditional methods such as obfuscation and packing, the proposed method has great advantages in anti-static analysis and anti-dynamic debugging, and can effectively resist the mainstream methods of reverse analyzing and cracking.
ISSN:2096-109X

Similar Items