Tornado: an Automatic Source-code Obfuscator

Award Information
Agency:
Department of Defense
Branch
Navy
Amount:
$597,781.00
Award Year:
2004
Program:
SBIR
Phase:
Phase II
Contract:
N00178-04-C-3035
Agency Tracking Number:
N02-100-01
Solicitation Year:
2002
Solicitation Topic Code:
N02-100
Solicitation Number:
2002.1
Small Business Information
ARCHITECTURE TECHNOLOGY CORP.
9971 Valley View Road, Eden Prairie, MN, 55344
Hubzone Owned:
N
Socially and Economically Disadvantaged:
N
Woman Owned:
N
Duns:
052062833
Principal Investigator:
Kevin Millikin
R&D Engineer
(952) 829-5864
kmillikin@atcorp.com
Business Contact:
Kenenth Thurber
President
(952) 829-5864
kthurber@atcorp.com
Research Institution:
n/a
Abstract
A malicious reverse engineering attack is an attempt by an adversary to learn information about the behavior and implementation of software from analysis of the binary executable code. One technique to counter the threat of reverse engineering attacks is to obfuscate the software. Obfuscation is translation of a computer program so that it remains a computer program with the same functionality as the original, but is more difficult to reverse engineer. We propose Tornado, a software tool for automatic obfuscation of program source code. Tornado is able to reason about the susceptibility of software to reverse engineering. Tornado can intelligently transform software for the purposes of increasing the costs and difficulty of reverse engineering the software. Tornado is not limited to a fixed set of transformations, since it is designed to be extensible in order to cope with new types of threats. Tornado is able to account for the unique software requirements of software found in the real-time and embedded domains.

* information listed above is at the time of submission.

Agency Micro-sites

US Flag An Official Website of the United States Government