Making abstract interpretation incomplete: modeling the potency of obfuscation

Authors:
Roberto Giacobazzi;Isabella Mastroeni
Affiliations:
Dipartimento di Informatica, Università di Verona, Verona, Italy;Dipartimento di Informatica, Università di Verona, Verona, Italy
Venue:
SAS'12 Proceedings of the 19th international conference on Static Analysis
Year:
2012

Citing 22
Cited 2

Interprocedural slicing using dependence graphs

ACM Transactions on Programming Languages and Systems (TOPLAS)
Using Program Slicing in Software Maintenance

IEEE Transactions on Software Engineering
A unifying view of abstract domain design

ACM Computing Surveys (CSUR)
Manufacturing cheap, resilient, and stealthy opaque constructs

POPL '98 Proceedings of the 25th ACM SIGPLAN-SIGACT symposium on Principles of programming languages
Making abstract interpretations complete

Journal of the ACM (JACM)
Abstract interpretation: a unified lattice model for static analysis of programs by construction or approximation of fixpoints

POPL '77 Proceedings of the 4th ACM SIGACT-SIGPLAN symposium on Principles of programming languages
Systematic design of program analysis frameworks

POPL '79 Proceedings of the 6th ACM SIGACT-SIGPLAN symposium on Principles of programming languages
Watermarking, tamper-proffing, and obfuscation: tools for software protection

IEEE Transactions on Software Engineering
Refining and Compressing Abstract Domains

ICALP '97 Proceedings of the 24th International Colloquium on Automata, Languages and Programming
Comparing the Galois Connection and Widening/Narrowing Approaches to Abstract Interpretation

PLILP '92 Proceedings of the 4th International Symposium on Programming Language Implementation and Logic Programming
Incompleteness, Counterexamples, and Refinements in Abstract Model-Checking

SAS '01 Proceedings of the 8th International Symposium on Static Analysis
Program Specialization via Program Slicing

Selected Papers from the Internaltional Seminar on Partial Evaluation
Program slicing

ICSE '81 Proceedings of the 5th international conference on Software engineering
Breaking Abstractions and Unstructuring Data Structures

ICCL '98 Proceedings of the 1998 International Conference on Computer Languages
Slicing obfuscations: design, correctness, and evaluation

Proceedings of the 2007 ACM workshop on Digital Rights Management
Data dependencies and program slicing: from syntax to abstract semantics

PEPM '08 Proceedings of the 2008 ACM SIGPLAN symposium on Partial evaluation and semantics-based program manipulation
Transforming Abstract Interpretations by Abstract Interpretation

SAS '08 Proceedings of the 15th international symposium on Static Analysis
Hiding Information in Completeness Holes: New Perspectives in Code Obfuscation and Watermarking

SEFM '08 Proceedings of the 2008 Sixth IEEE International Conference on Software Engineering and Formal Methods
Surreptitious Software: Obfuscation, Watermarking, and Tamperproofing for Software Protection

Surreptitious Software: Obfuscation, Watermarking, and Tamperproofing for Software Protection
Obfuscation by partial evaluation of distorted interpreters

PEPM '12 Proceedings of the ACM SIGPLAN 2012 workshop on Partial evaluation and program manipulation
Semantic-based code obfuscation by abstract interpretation

ICALP'05 Proceedings of the 32nd international conference on Automata, Languages and Programming
Specifying imperative data obfuscations

ISC'07 Proceedings of the 10th international conference on Information Security

A formal framework for property-driven obfuscation strategies

FCT'13 Proceedings of the 19th international conference on Fundamentals of Computation Theory
Measuring the robustness of source program obfuscation: studying the impact of compiler optimizations on the obfuscation of C programs

Proceedings of the 4th ACM conference on Data and application security and privacy

Quantified Score

Hi-index	0.00

Visualization

Abstract

Recent studies on code protection showed that incompleteness, in the abstract interpretation framework, has a key role in understanding program obfuscation. In particular, it is well known that completeness corresponds to exactness of a given analysis for a fixed program semantics, hence incompleteness implies the imprecision of an analysis with respect to the program semantics. In code protection, if the analysis corresponds to attacker capability of understanding a program semantics, then to study incompleteness means to study how to make an attacker harmless. We recently showed that this is possible by transforming the program semantics towards incompleteness, which corresponds to a code obfuscation. In this paper, we show that incompleteness can be induced also by transforming abstract domains. In this way we can associate with each obfuscated program (semantics) the most imprecise, harmless, analysis. We show that, for both the forms of completeness, backward and forward, we can uniquely simplify domains towards incompleteness, while in general it is not possible to uniquely refine domains. Finally, we show some examples of known code protection techniques that can be characterized in the new framework of abstract interpretation incompleteness.