Code Obfuscation using pseudo-random number generators

Aycock J.; GUTIERREZ CARDENAS, JUAN MANUEL; de Castro D.M.N.

Title

Date Issued

29 December 2009

Access level

open access

Resource Type

conference paper

Author(s)

Aycock J.

GUTIERREZ CARDENAS, JUAN MANUEL

de Castro D.M.N.

Independent Researche

Abstract

We describe a novel method for malicious code obfuscation that uses code already present in systems: a pseudorandom number generator. This can also be seen as an antidisassembly and anti-debugging technique, depending on deployment, because the actual code does not exist until run - it is generated dynamically by the pseudo-random number generator. A year's worth of experiments are used to demonstrate that this technique is a viable code obfuscation option for a malicious adversary with access to large amounts of computing power.

Start page

418

End page

423

Volume

3

Number

5283236

Language

English

OCDE Knowledge area

Ciencias de la Información Ciencias de la computación

DOI

10.1109/CSE.2009.43

Scopus EID

2-s2.0-70849083229

Resource of which it is part

Proceedings - 12th IEEE International Conference on Computational Science and Engineering, CSE 2009

ISBN of the container

978-076953823-5

Conference

2009 IEEE International Conference on Privacy, Security, Risk, and Trust, PASSAT 2009

Sponsor(s)

IEEE IEEE Computer Society IEEE Technical Committee on Scalable Computing (TCSC)

Sources of information: Directorio de Producción Científica Scopus

Options