Presentation is loading. Please wait.

Presentation is loading. Please wait.

Krakatoa: Decompilation in Java “Does Bytecode Reveal Source?” Todd A. Proebsting Scott A. Watterson The University of Arizona Presented by Karl von Randow.

Published byLouisa Kelley Sparks Modified over 9 years ago

Similar presentations

Presentation on theme: "Krakatoa: Decompilation in Java “Does Bytecode Reveal Source?” Todd A. Proebsting Scott A. Watterson The University of Arizona Presented by Karl von Randow."— Presentation transcript:

1 Krakatoa: Decompilation in Java “Does Bytecode Reveal Source?” Todd A. Proebsting Scott A. Watterson The University of Arizona Presented by Karl von Randow

2 Introduction n Decompilation u Transforms low-level language into high-level language. u Inverse of Compilation..class.java Java bytecodeJava source

3 Outline n Recovering source-level expressions. u a = ( 3 * b ) + method( c + 9 ); n Synthesising high-level control constructs. u while ( a < b ) { … } FOCUS: Recovering source-level expressions

4 The Java (Dis)advantage n Java bytecodes closely correspond to Java source. n Class files contain type and name information on variables and methods. n Bytecode must be verifiable.

5 Expression Recovery n The Java VM is Stack based. u Bytecode instructions pop arguments off the stack, and push results. n Local variables are stored in an array. n To recover expressions, simulate running the bytecode, stack and local variable array.

6 Symbolic Execution n Instead of pushing values, push strings to represent the values (source-level expressions). n For example...

7 iload n iload_1 takes the value in the 1st local variable and pushes it onto the stack. n Instead we push the name of the variable. u ie. push “a” rather than 7.

8 imul n Pops two ints off the stack, multiplies them, then pushes the result. n Instead we push a string containing the two popped strings with a “*” in between. String right = pop(); String left = pop(); push( left + “*” + right );

9 Example of a Method public void bar( int a, int b ) { iload_1 iload_2 imul iconst_2 iadd istore_2 }

10 Example of a Method public void bar( int a, int b ) { è iload_1 è iload_2 imul iconst_2 iadd istore_2 } “a” “b”

11 Example of a Method public void bar( int a, int b ) { iload_1 iload_2 è imul iconst_2 iadd istore_2 } “(a*b)” String right = pop(); String left = pop(); push( left + “*” + right ); “a” “b”

12 Example of a Method public void bar( int a, int b ) { iload_1 iload_2 imul è iconst_2 iadd istore_2 } “(a*b)” “2”

13 Example of a Method public void bar( int a, int b ) { iload_1 iload_2 imul iconst_2 è iadd istore_2 } “((a*b)+2)”“(a*b)” “2” String right = pop(); String left = pop(); push( left + “+” + right );

14 Example of a Method public void bar( int a, int b ) { iload_1 iload_2 imul iconst_2 iadd è istore_2 } public void bar( int a, int b ) { b = ((a*b)+2); }

15 Conclusions n It is possible to automate the decompilation of Java bytecode, and to recover high-level, readable code. n How do we protect Java bytecode against decompilation? n How much harder does this make decompilation?

Download ppt "Krakatoa: Decompilation in Java “Does Bytecode Reveal Source?” Todd A. Proebsting Scott A. Watterson The University of Arizona Presented by Karl von Randow."

Similar presentations

18 January 2013Birkbeck College, U. London1 Introduction to Programming Lecturer: Steve Maybank Department of Computer Science and Information Systems.

18 January 2013Birkbeck College, U. London1 Introduction to Programming Lecturer: Steve Maybank Department of Computer Science and Information Systems.
Chapter 16 Java Virtual Machine. To compile a java program in Simple.java, enter javac Simple.java javac outputs Simple.class, a file that contains bytecode.

Chapter 16 Java Virtual Machine. To compile a java program in Simple.java, enter javac Simple.java javac outputs Simple.class, a file that contains bytecode.
Virtual Machines Matthew Dwyer 324E Nichols Hall

Virtual Machines Matthew Dwyer 324E Nichols Hall
1 Lecture 10 Intermediate Representations. 2 front end »produces an intermediate representation (IR) for the program. optimizer »transforms the code in.

1 Lecture 10 Intermediate Representations. 2 front end »produces an intermediate representation (IR) for the program. optimizer »transforms the code in.
Topic 10 Java Memory Management. 1-2 Memory Allocation in Java When a program is being executed, separate areas of memory are allocated for each class.

Topic 10 Java Memory Management. 1-2 Memory Allocation in Java When a program is being executed, separate areas of memory are allocated for each class.
Compilation 2007 Code Generation Michael I. Schwartzbach BRICS, University of Aarhus.

Compilation 2007 Code Generation Michael I. Schwartzbach BRICS, University of Aarhus.
1 1 Lecture 14 Java Virtual Machine Instructors: Fu-Chiung Cheng ( 鄭福炯 ) Associate Professor Computer Science & Engineering Tatung Institute of Technology.

1 1 Lecture 14 Java Virtual Machine Instructors: Fu-Chiung Cheng ( 鄭福炯 ) Associate Professor Computer Science & Engineering Tatung Institute of Technology.
Lightweight Modeling of Java Virtual Machine Security Constraints using Alloy Mark Reynolds BU CS511 Midterm Report March 26, 2008.

Lightweight Modeling of Java Virtual Machine Security Constraints using Alloy Mark Reynolds BU CS511 Midterm Report March 26, 2008.
Cmput 115 - Lecture 8 Department of Computing Science University of Alberta ©Duane Szafron 2000 Revised 1/26/00 The Java Memory Model.

Cmput Lecture 8 Department of Computing Science University of Alberta ©Duane Szafron 2000 Revised 1/26/00 The Java Memory Model.
Lab 9 Java Bytecode & The Jasmin Assembler

Lab 9 Java Bytecode & The Jasmin Assembler
Introduction to By Mati Yanko. Primary Goals of Java Portable Secured Object Oriented.

Introduction to By Mati Yanko. Primary Goals of Java Portable Secured Object Oriented.
Slides prepared by Rose Williams, Binghamton University Chapter 1 Getting Started 1.1 Introduction to Java.

Slides prepared by Rose Williams, Binghamton University Chapter 1 Getting Started 1.1 Introduction to Java.
JETT 2003 Java.compareTo(C++). JAVA Java Platform consists of 4 parts: –Java Language –Java API –Java class format –Java Virtual Machine.

JETT 2003 Java.compareTo(C++). JAVA Java Platform consists of 4 parts: –Java Language –Java API –Java class format –Java Virtual Machine.
Lightweight Modeling of Java Virtual Machine Security Constraints using Alloy Mark Reynolds BU CS511 Final Report May 7, 2008.

Lightweight Modeling of Java Virtual Machine Security Constraints using Alloy Mark Reynolds BU CS511 Final Report May 7, 2008.
JVM-1 Introduction to Java Virtual Machine. JVM-2 Outline Java Language, Java Virtual Machine and Java Platform Organization of Java Virtual Machine Garbage.

JVM-1 Introduction to Java Virtual Machine. JVM-2 Outline Java Language, Java Virtual Machine and Java Platform Organization of Java Virtual Machine Garbage.
Consider With x = 10 we may proceed as (10-1) = 9 (10-7) = 3 (9*3) = 27 (10-11) = -1 27/(-1) = -27 Writing intermediates on paper.

Consider With x = 10 we may proceed as (10-1) = 9 (10-7) = 3 (9*3) = 27 (10-11) = -1 27/(-1) = -27 Writing intermediates on paper.
Chapter 16 Java Virtual Machine. To compile a java program in Simple.java, enter javac Simple.java javac outputs Simple.class, a file that contains bytecode.

Chapter 16 Java Virtual Machine. To compile a java program in Simple.java, enter javac Simple.java javac outputs Simple.class, a file that contains bytecode.
5/6/99 Ashish Sabharwal1 JVM Architecture n Local storage area –Randomly accessible –Just like standard RAM –Stores variables (eg. an array) –Have to specify.

5/6/99 Ashish Sabharwal1 JVM Architecture n Local storage area –Randomly accessible –Just like standard RAM –Stores variables (eg. an array) –Have to specify.
Compiler design Computer Science Rensselaer Polytechnic Lecture 1.

Compiler design Computer Science Rensselaer Polytechnic Lecture 1.
1 Memory Model of A Program, Methods Overview l Memory Model of JVM »Method Area »Heap »Stack.

1 Memory Model of A Program, Methods Overview l Memory Model of JVM »Method Area »Heap »Stack.

Similar presentations

Ads by Google