A low-cost attack on branch-based software watermarking schemes

Authors:
Gaurav Gupta;Josef Pieprzyk
Affiliations:
Centre for Advanced Computing – Algorithms and Cryptography, Department of Computing, Division of Information and Communication Sciences, Macquarie University, Sydney, NSW, Australia;Centre for Advanced Computing – Algorithms and Cryptography, Department of Computing, Division of Information and Communication Sciences, Macquarie University, Sydney, NSW, Australia
Venue:
IWDW'06 Proceedings of the 5th international conference on Digital Watermarking
Year:
2006

Citing 11
Cited 0

Analysis of watermarking techniques for graph coloring problem

Proceedings of the 1998 IEEE/ACM international conference on Computer-aided design
Software watermarking: models and dynamic embeddings

Proceedings of the 26th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Watermarking, tamper-proffing, and obfuscation: tools for software protection

IEEE Transactions on Software Engineering
Hiding Signatures in Graph Coloring Solutions

IH '99 Proceedings of the Third International Workshop on Information Hiding
A Graph Theoretic Approach to Software Watermarking

IHW '01 Proceedings of the 4th International Workshop on Information Hiding
Obfuscation of design intent in object-oriented applications

Proceedings of the 3rd ACM workshop on Digital rights management
Tamper-proofing software watermarks

ACSW Frontiers '04 Proceedings of the second workshop on Australasian information security, Data Mining and Web Intelligence, and Software Internationalisation - Volume 32
Dynamic path-based software watermarking

Proceedings of the ACM SIGPLAN 2004 conference on Programming language design and implementation
Graph theoretic software watermarks: implementation, analysis, and attacks

IH'04 Proceedings of the 6th international conference on Information Hiding
Threading software watermarks

IH'04 Proceedings of the 6th international conference on Information Hiding
Self-validating branch-based software watermarking

IH'05 Proceedings of the 7th international conference on Information Hiding

Quantified Score

Hi-index	0.00

Visualization

Abstract

In 2005, Ginger Myles and Hongxia Jin proposed a software watermarking scheme based on converting jump instructions or unconditional branch statements (UBSs) by calls to a fingerprint branch function (FBF) that computes the correct target address of the UBS as a function of the generated fingerprint and integrity check. If the program is tampered with, the fingerprint and integrity checks change and the target address will not be computed correctly. In this paper, we present an attack based on tracking stack pointer modifications to break the scheme and provide implementation details. The key element of the attack is to remove the fingerprint and integrity check generating code from the program after disassociating the target address from the fingerprint and integrity value. Using the debugging tools that give vast control to the attacker to track stack pointer operations, we perform both subtractive and watermark replacement attacks. The major steps in the attack are automated resulting in a fast and low-cost attack.