基于软件执行轨迹差异比对的关键函数定位技术研究
기우연건집행궤적차이비대적관건함수정위기술연구
Research on key functions locating technique based on software execution trace difference comparison
  • 万方数据
    通信学报 통신학보
    JOURNAL OF CHINA INSTITUTE OF COMMUNICATIONS
    2013年 9期 179-186 ,共8页

    康绯%王乾%肖亚南%黄荷洁

    강비%왕건%초아남%황하길

    关键函数%软件执行轨迹%动态二进制插桩 關鍵函數%軟件執行軌跡%動態二進製插樁
    관건함수%연건집행궤적%동태이진제삽장
    locating function%software execution trace%dynamic binary instrumentation
    关键函数是指应用软件在某个运行阶段发挥着关键作用的核心功能函数。对软件中的关键函数进行快速定位是提高逆向分析效率的有效手段。目前,在软件逆向工程领域对关键函数进行定位大多是利用人工分析的方法。利用动态二进制插桩技术,提出了一种切实可行的基于软件执行轨迹差异的关键函数自动定位方法。当软件具有2类不同的输入,分别触发、不触发关键函数时,该方法能够快速、准确地识别关键函数。
    관건함수시지응용연건재모개운행계단발휘착관건작용적핵심공능함수。대연건중적관건함수진행쾌속정위시제고역향분석효솔적유효수단。목전,재연건역향공정영역대관건함수진행정위대다시이용인공분석적방법。이용동태이진제삽장기술,제출료일충절실가행적기우연건집행궤적차이적관건함수자동정위방법。당연건구유2류불동적수입,분별촉발、불촉발관건함수시,해방법능구쾌속、준학지식별관건함수。
    Key functions are the core functions which play vital roles in certain run phase of application software. The quick locating of key functions is a valid method to improve the efficiency of software reverse analysis. In the field of software reverse engineering, locating key functions is mostly based on manual analysis. Dynamic binary Instrumenta-tion (DBI) techniques were employed to present a practicabletechnique to automatically locating the key functions based on software execution trace difference.Key functions can be quickly and precisely located when key functions can be triggered or not by two different kinds of software inputs.
    원문보기 원문다운로드 사이트로이동
저자의 최근 논문