构造一种新的混淆Java程序的不透明谓词

doi:10.13190/jbupt.200706.103.031

北京邮电大学学报 ›› 2007, Vol. 30 ›› Issue (6): 103-106.doi: 10.13190/jbupt.200706.103.031

构造一种新的混淆Java程序的不透明谓词

袁征1,2, 3, 冯雁1, 温巧燕3 张华3

(1.. 北京电子科技学院信息安全系, 北京 100070; 2. 清华大学高等研究中心, 北京100084; 3. 北京邮电大学理学院, 北京 100876)

收稿日期:2007-01-01 修回日期:2007-10-09 出版日期:2007-12-31 发布日期:2007-12-31
通讯作者: 袁征

Manufacture of a New Opaque Predicate for Java Programs

YUAN Zheng1,2, 3 , FENG Yan1, WEN Qiao-yan3, ZHANG Hua3

( 1. Department of information security, Beijing Electronic Science and Technology Institute, Beijing 100070,China; 2. The Center for Advanced Study, Tsinghua University,Beijing 100084,China; 3. School of Science, Beijing University of Posts and Telecommunications, Beijing100876,China)

Received:2007-01-01 Revised:2007-10-09 Online:2007-12-31 Published:2007-12-31
Contact: YUAN Zheng

摘要/Abstract

摘要：

不透明谓词是实现混淆的关键,利用同余方程构造了一种混淆Java程序的不透明谓词簇, 首次采用密钥和不定方程判断不透明谓词的输出. 该不透明谓词是单向陷门的, 具有弹性高、秘密性好和实现简易的特性；该不透明谓词是动态的,可以抵抗软件的静态和动态的攻击,也具有密码安全性.

关键词: Java混淆, 不透明谓词, 同余方程, 不定方程

Abstract:

Most of developers protect their Java programs by code obfuscation, and opaque predicates act as tools for obfuscating control flow logic embedded within code. A new method of using congruent equation to construct a family of opaque predicates for Java programs is presented. Additionally, key and Diophantine equation is first exploited for estimating output of opaque predicates. The opaque predicates are trapdoor one-way being more resilient, stealthier and cheaper. The opaque predicates are dynamic and secure against all usual types of static attacks and dynamic attacks, and also secure against cryptanalysis.

Key words: Java obfuscating, opaque predicates, congruential equation, Diophantine equation

中图分类号:

TP309

袁征1,2, 3, 冯雁1, 温巧燕3 张华3. 构造一种新的混淆Java程序的不透明谓词[J]. 北京邮电大学学报, 2007, 30(6): 103-106.

YUAN Zheng1,2, 3 , FENG Yan1, WEN Qiao-yan3, ZHANG Hua3. Manufacture of a New Opaque Predicate for Java Programs[J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2007, 30(6): 103-106.

参考文献

[1] Collberg C, Thomborson C D. Low manufacturing cheap, resilient, and stealthy opaque constructs//Proceedings of the 25th ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages. California: ACM, 1998: 184-196.
[2] Barak B, Goldreich O, Impagliazzo R, et al. On the (im)possibility of obfuscating programs//Proc of CRYPTO-2001,LNCS 2139. Berlin: Springer-Verlag, 2001: 1-18.
[3] 刘晓英, 沈金龙. 软件开发中的一个重要环节——混淆[J]. 南京邮电大学学报, 2004, 24(1): 59-63.
[4] Arboit G. A method for watermarking Java programs via opaque predicates//International Conference on Electronic Commerce Research (ICECR-5). Montreal:, 2002: 124-131.
[5] Myles G, Collberg C. Software watermarking via opaque predicates: implementation, analysis, and attacks[J]. Electron Commerce Research, 2006, 4(6): 155-171.
[6] Yuan Zheng, Wen Qiaoyan, Wu Wenling, et al. An ID-based watermarking scheme for Java programs//EUC Workshops 2006. Berlin: Springer-Verlag, 2006: 848-857.
[7] 潘承洞, 潘承彪. 初等数论[M]. 北京: 北京大学出版社, 1991. Pan Chengdong, Pan Chengbiao. Elementary numbers theory[M]. Beijing: Beijing University Publishing Company, 1991.
[8] Collberg C. CS 620 security through obscurity. (2002). http://www. cs. arizona. edu/. collberg/Teaching/SoftwareSecurity. html.
[9] 李必信, 刘晓东, 郑滔, 等. 一种面向程序的分层切片方法[J]. 软件学报, 2001, 12(12): 1810-1817. Li Bixin, Liu Xiaodong, Zheng Tao, et al. An approach for hierarchy slicing object-oriented program[J]. Journal of Software, 2001, 12(12): 1810-1817.
[10] ?Alcianu S A, Rinard M. Pointer and escape analysis for multithreaded programs//Proc of 2001 ACM SIGPLAN Symposium on Principles and Practice of Parallel Programming (PPOPP '01). Snowbird: ACM, 2001: 12-23.

[1]	张骏, 吴吉义. 可证明安全高效的仲裁量子签名方案[J]. 北京邮电大学学报, 2013, 36(2): 113-116.
[2]	潘平, 王励成, 杨义先. 内自同构群上的盲签名[J]. 北京邮电大学学报, 2012, 35(6): 83-86.
[3]	张伟仁, 胡予濮, 杨晓元. 格上新的身份类广播加密方案[J]. 北京邮电大学学报, 2012, 35(6): 112-115.
[4]	庞雷，罗守山，耿涛，王柏，辛阳. 保护隐私的逢低买入拍卖协议及其推广[J]. 北京邮电大学学报, 2012, 35(3): 99-102.
[5]	巩思亮邢涛熊永平马建. 基于混合高斯分布的传感器网络主观信任模型[J]. 北京邮电大学学报, 2012, 35(2): 46-49.
[6]	安靖钟金鑫魏更宇杨义先. 函数摘要在Concolic测试方法中的应用 [J]. 北京邮电大学学报, 2012, 35(1): 24-27.
[7]	胡国政,韩兰胜,王展青. 无证书强代理签名方案的密码学分析及改进[J]. 北京邮电大学学报, 2011, 34(5): 115-118.
[8]	郑康锋,王秀娟. 利用边际谱Hurst参数检测DDoS攻击[J]. 北京邮电大学学报, 2011, 34(5): 128-132.
[9]	宋成，孙宇琼，彭维平，罗守山，辛阳,胡正名. 改进的直接匿名认证方案[J]. 北京邮电大学学报, 2011, 34(3): 62-65.
[10]	吴焕潘林王晓箴许榕生. 应用不完整攻击图分析的风险评估模型[J]. 北京邮电大学学报, 2010, 33(3): 57-61.
[11]	袁峰胡予濮李顺波欧海文. 多变量公钥密码中等价密钥问题[J]. 北京邮电大学学报, 2010, 33(3): 97-101.
[12]	郑康锋1,2 ；王秀娟3 ；郭世泽2 ；杨义先1. 用户评价的信息系统服务质量评估模型[J]. 北京邮电大学学报, 2010, 33(1): 84-88.
[13]	徐国爱1, 张淼1, 陈爱国1, 李忠献2. 基于整型变量一致化的整数溢出检测[J]. 北京邮电大学学报, 2008, 31(6): 90-93.
[14]	王志伟1, 郑世慧1, 杨义先1, 张智辉2. 概率多变量签名方案的新构造[J]. 北京邮电大学学报, 2008, 31(6): 26-29.
[15]	崔巍1，辛阳1，胡程瑜2，杨义先1，李忠献1，3. 高效的基于身份的（受限）部分盲签名[J]. 北京邮电大学学报, 2008, 31(4): 53-57.

构造一种新的混淆Java程序的不透明谓词

Manufacture of a New Opaque Predicate for Java Programs

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

本文评价