Abstraction Interpretation Abstract Interpretation is a general theory for approximating the semantics of dynamic systems (Cousot & Cousot 1977) Abstract.

Slides:

Advertisements

Similar presentations

1 The Project of this year Mariano Ceccato FBK - Fondazione Bruno Kessler

Advertisements

An Abstract Interpretation Framework for Refactoring P. Cousot, NYU, ENS, CNRS, INRIA R. Cousot, ENS, CNRS, INRIA F. Logozzo, M. Barnett, Microsoft Research.

Using Instruction Block Signatures to Counter Code Injection Attacks Milena Milenković, Aleksandar Milenković, Emil Jovanov The University of Alabama in.

1 PROPERTIES OF A TYPE ABSTRACT INTERPRETATER. 2 MOTIVATION OF THE EXPERIMENT § a well understood case l type inference in functional programming à la.

IBinHunt: Binary Hunting with Inter-Procedural Control Flow Jiang Ming, Meng Pan, and Debin Gao College of Information Sciences and Technology, Penn State.

A survey of techniques for precise program slicing Komondoor V. Raghavan Indian Institute of Science, Bangalore.

Background information Formal verification methods based on theorem proving techniques and modelchecking –to prove the absence of errors (in the formal.

Linear Obfuscation to Combat Symbolic Execution Zhi Wang 1, Jiang Ming 2, Chunfu Jia 1 and Debin Gao 3 1 Nankai University 2 Pennsylvania State University.

Binary Obfuscation Using Signals Igor V. Popov ( University of Arizona)‏ Saumya K. Debray (University of Arizona)‏ Gregory R. Andrews (University of Arizona)

Using Statically Computed Invariants Inside the Predicate Abstraction and Refinement Loop Himanshu Jain Franjo Ivančić Aarti Gupta Ilya Shlyakhter Chao.

Name: Hao Yuan Supervisor: Len Hamey ITEC810 ProjectTransformations for Obfuscating Object-Oriented Programs1.

1 Software Testing and Quality Assurance Lecture 33 – Software Quality Assurance.

1/18 CS 693/793 Lecture 09 Special Topics in Domain Specific Languages CS 693/793-1C Spring 2004 Mo, We, Fr 10:10 – 11:00 CH 430.

Correctness. Until now We’ve seen how to define dataflow analyses How do we know our analyses are correct? We could reason about each individual analysis.

Abstract Interpretation Part I Mooly Sagiv Textbook: Chapter 4.

1 Systematic Domain Design Some Remarks. 2 Best (Conservative) interpretation abstract representation Set of states concretization Abstract semantics.

Obfuscation techniques in Java Therese Berge Jonas Ringedal.

Visual Debugging Tools for Concurrent Models of Computation Elaine Cheong 15 May 2002 EE290N: Advanced Topics in System Theory.

Invisible Invariants: Underapproximating to Overapproximate Ken McMillan Cadence Research Labs TexPoint fonts used in EMF: A A A A A.

Solving trust issues using Z3 Z3 SIG, November 2011 Moritz Y. Becker, Nik Sultana Alessandra Russo Masoud Koleini Microsoft Research, Cambridge Imperial.

SRE  Introduction 1 Software Reverse Engineering (SRE)

© 2008 IBM Corporation Behavioral Models for Software Development Andrei Kirshin, Dolev Dotan, Alan Hartman January 2008.

Automatic Implementation of provable cryptography for confidentiality and integrity Presented by Tamara Rezk – INDES project - INRIA Joint work with: Cédric.

Application Security Tom Chothia Computer Security, Lecture 14.

Computer Science Open Research Questions Adversary models –Define/Formalize adversary models Need to incorporate characteristics of new technologies and.

Ether: Malware Analysis via Hardware Virtualization Extensions Author: Artem Dinaburg, Paul Royal, Monirul Sharif, Wenke Lee Presenter: Yi Yang Presenter:

EECS 354 Network Security Reverse Engineering. Introduction Preventing Reverse Engineering Reversing High Level Languages Reversing an ELF Executable.

1 Network Coding and its Applications in Communication Networks Alex Sprintson Computer Engineering Group Department of Electrical and Computer Engineering.

Printing: This poster is 48” wide by 36” high. It’s designed to be printed on a large-format printer. Customizing the Content: The placeholders in this.

Inferring Specifications to Detect Errors in Code Mana Taghdiri Presented by: Robert Seater MIT Computer Science & AI Lab.

Malware Analysis Jaimin Shah & Krunal Patel Vishal Patel & Shreyas Patel Georgia Institute of Technology School of Electrical and Computer Engineering.

Applying White-Box Cryptography SoBeNet user group meeting October 8, 2004 Brecht Wyseur.

1 Introduction to Software Engineering Lecture 1.

Combinatorial Optimization Problems in Computational Biology Ion Mandoiu CSE Department.

RIVERSIDE RESEARCH INSTITUTE Deobfuscator: An Automated Approach to the Identification and Removal of Code Obfuscation Eric Laspe, Reverse Engineer Jason.

1 Diversifying Sensors to Improve Network Resilience Wenliang (Kevin) Du Electrical Engineering & Computer Science Syracuse University.

PROBABILISTIC PROGRAMMING FOR SECURITY Michael Hicks Piotr (Peter) Mardziel University of Maryland, College Park Stephen Magill Galois Michael Hicks UMD.

1 Information Security – Theory vs. Reality , Winter Lecture 10: Garbled circuits and obfuscation Eran Tromer Slides credit: Boaz.

1 Virtual Machine Memory Access Tracing With Hypervisor Exclusive Cache USENIX ‘07 Pin Lu & Kai Shen Department of Computer Science University of Rochester.

Page 1 5/2/2007  Kestrel Technology LLC A Tutorial on Abstract Interpretation as the Theoretical Foundation of CodeHawk  Arnaud Venet Kestrel Technology.

A Generic Approach to Automatic Deobfuscation of Executable Code Paper by Babak Yadegari, Brian Johannesmeyer, Benjamin Whitely, Saumya Debray.

Automated tactics for separation logic VeriML Reconstruct Z3 Proof Safe incremental type checker Certifying code transformation Proof carrying hardware.

Symbolic and Concolic Execution of Programs Information Security, CS 526 Omar Chowdhury 10/7/2015Information Security, CS 5261.

Operating System Protection Through Program Evolution Fred Cohen Computers and Security 1992.

All-Path Reachability Logic Andrei Stefanescu 1, Stefan Ciobaca 2, Radu Mereuta 1,2, Brandon Moore 1, Traian Serbanuta 3, Grigore Rosu 1 1 University of.

Formal Refinement of Obfuscated Codes Hamidreza Ebtehaj 1.

Reverse Engineering CS3300 Fall What is it? Extracting design information from existing software Two types: Source Code based (easier) or Binary.

“Software reverse engineering involves taking an existing system for which source code or proper documentation is not available and attempting to recover.

1 Combining Abstract Interpreters Mooly Sagiv Tel Aviv University

Formal Verification. Background Information Formal verification methods based on theorem proving techniques and modelchecking –To prove the absence of.

Self-Protecting Mobile Agents Tom Van Vleck Lee Badger Doug Kilpatrick Larry D’Anna Brian Matt Funded by both OASIS and Active Networks Programs NAI Labs.

Code Obfuscation Tool for Software Protection. Outline  Why Code Obfuscation  Features of a code obfuscator Potency Resilience Cost  Classification.

CSE 503: Software Engineering Winter 2010 Lecturer: Michael Ernst.

VI-D-15(PP) Disassembly of the Small Engine Figure 1.

Class Diagrams. Terms and Concepts A class diagram is a diagram that shows a set of classes, interfaces, and collaborations and their relationships.

Presentation subtitle: 20pt Arial Regular, green R223 | G255 | B102 Recommended maximum length: 2 lines Confidentiality/date line: 13pt Arial Regular,

Friday, 23 August 2013 Session Work out Presented By: Abhijit Pal.

Design Pattern Support based on principles of model driven development Zihao Zhao.

Software Reverse Engineering Binary analysis: concepts, methods and tools. Catalin Patulea Mar 5, 2008.

Powerpoint presentation on Drive-by download attack -By Yogita Goyal.

Adversarial Coloring, Covering and Domination Chip Klostermeyer.

Reverse Engineering Contemporary Countermeasures By: Joshua Schwartz.

Polymorphic Virus Analysis Nicolas BRULEZ Senior Virus Researcher Websense Security Labs IMPROVISED TALK MMMKAY?!

Dissecting complex code-reuse attacks with ROPMEMU

Abstract Interpretation

SoK: Automated Software Diversity

Abstract Interpretation

String Analysis for JavaScript Programs Using JSAI

Nucleosomes assembled with FACT have similar MNase digestion pattern as salt-reconstituted nucleosomes. Nucleosomes assembled with FACT have similar MNase.

Data-Dependent Approximation

Presentation transcript:

Abstraction Interpretation Abstract Interpretation is a general theory for approximating the semantics of dynamic systems (Cousot & Cousot 1977) Abstract Interpretation is a general theory for approximating the semantics of dynamic systems (Cousot & Cousot 1977) Computing means Interpreting For large/real programs control/data flow is too complex for being understandable by humans: Reverse Engineering needs abstraction! Reverse Engineering needs automated tools!

More Concrete observation More Abstract observation Modeling the Adversary: Degrees of abstraction

P We can quantify the security achieved by looking at proof complexity! key Proof Reverse Engineering is Interpreting Each tool is an Abstract Interpretation

O(P)O(P) Removing noise means refining abstractions / complicating proofs! (Giacobazzi et al 2000 / 2012) Proof Tracing Monitoring Slicing Profiling Decompiler Disassembler Static Analysis Dynamic Analysis SAT VMware SMT BinDiff BinHunt BinJuice HexRays GDB OllyDbg IDA Pro Theorem Prover Constrained Adversary Concolic Emulation Protecting is obscuring Interpretation Transform code to make all tools blind

Proof complexity Low High Degree of obfuscation Low Measuring Adversary Strength By constraining the adversary within a theorem prover we can quantify the security achieved from obfuscation Force the attacker to use automated tools (programs of large size and highly interconnected) Design code transformations making tools blind Determine lower bounds for proof complexity in obfuscated code Measure the degree of noise/slowdown induced in obfuscation