USA flag logo/image

An Official Website of the United States Government

Deobfuscating tools for the validation and verification of tamper-proofed…

Award Information

Agency:
Department of Defense
Branch:
Office of the Secretary of Defense
Award ID:
78086
Program Year/Program:
2007 / STTR
Agency Tracking Number:
O064-NC5-1013
Solicitation Year:
N/A
Solicitation Topic Code:
N/A
Solicitation Number:
N/A
Small Business Information
GrammaTech, Inc
531 Esty Street Ithaca, NY -
View profile »
Woman-Owned: No
Minority-Owned: No
HUBZone-Owned: No
 
Phase 2
Fiscal Year: 2007
Title: Deobfuscating tools for the validation and verification of tamper-proofed software
Agency / Branch: DOD / OSD
Contract: FA8650-07-C-1207
Award Amount: $750,000.00
 

Abstract:

Recently, there has been an increase in the use of anti-tamper techniques (e.g., obfuscation) in all types of software. However, applying anti-tamper techniques is technically challenging, and when applied to large, sophisticated software, there is a danger of introducing subtle bugs, or not introducing sufficient protection. The existing state of anti-tamper technology is undesirable in that it (a) is much too effective at protecting (small) malware samples, but (b) does not offer sufficient guarantees of correctness and protection for (large) legitimate applications. We propose a deobfuscation tool that uses machine-code analysis to check that the (self-protecting) program output from a tamper-proofing tool is indeed protected, and has the same behavior as the input program. This deobfuscator leverages concolic analysis techniques. Program analysis techniques can be divided into dynamic analyses that observe the subject program when executed on a set of inputs, and static analyses that consider all possible executions, without executing the subject program on any particular input. Each approach has its strengths and weaknesses. Concolic analysis combines static and dynamic analyses and leverage the strengths of each to counter the weaknesses of the other.

Principal Investigator:

Thomas Johnson
Software Engineer
6072737340
tjohnson@grammatech.com

Business Contact:

Ray Teitelbaum
CEO/Chairman
6072737340
tt@grammatech.com
Small Business Information at Submission:

GRAMMATECH, INC.
317 N. Aurora Street Ithaca, NY 14850

EIN/Tax ID: 161338879
DUNS: N/A
Number of Employees:
Woman-Owned: No
Minority-Owned: No
HUBZone-Owned: No
Research Institution Information:
THE JOHNS HOPKINS UNIV-APL
11100 Johns Hopkins Road
Laurel, MD 20723 6099
Contact: Andy Thompson
Contact Phone: (240) 228-0708
RI Type: Domestic nonprofit research organization