-
1.发明授权Performing boolean logic operations using arithmetic operations by code obfuscation 有权使用代码混淆的算术运算执行布尔逻辑运算公开(公告)号:US08707053B2
公开(公告)日:2014-04-22
申请号:US13024258
申请日:2011-02-09
IPC分类号: G06F12/14
CPC分类号: G06F21/14
摘要: Method and apparatus for obfuscating computer software code, to protect against reverse-engineering of the code. The obfuscation here is of the part of the code that performs a Boolean logic operation such as an exclusive OR on two (or more) data variables. In the obfuscated code, each of the two variables is first modified by applying to it a function which deconstructs the value of each of the variables, and then the exclusive OR operation is replaced by an arithmetic operation such as addition, subtraction, or multiplication, which is performed on the two deconstructed variables. The non-obfuscated result is recovered by applying a third function to the value generated by the arithmetic operation. This obfuscation is typically carried out by suitably annotating (modifying) the original source code.
摘要翻译: 用于模糊计算机软件代码的方法和装置,以防止代码的逆向工程化。 这里的混淆是执行布尔逻辑运算的代码的一部分,例如两个(或多个)数据变量上的异或运算。 在混淆代码中,首先通过对两个变量中的每一个进行修改来解构每个变量的值,然后通过诸如加法,减法或乘法的算术运算来代替异或运算, 这是对两个解构变量进行的。 通过对由算术运算产生的值应用第三函数来恢复未混淆的结果。 这种混淆通常通过适当地注释(修改)原始源代码来执行。
-
公开(公告)号:US08661549B2
公开(公告)日:2014-02-25
申请号:US13411099
申请日:2012-03-02
CPC分类号: G06F21/10 , G06F8/30 , G06F21/14 , G11B20/00086 , G11B20/0021
摘要: First source code of a computer program having a plurality of lines of instructions is received. An obfuscation process is performed on the first source code, including at least two of a shuffling operation, a fertilizing operation, an aggregating operation, and a neutralizing operation. Second source code is generated based on the obfuscation process, where the second source code, when executed by a processor, produces an identical result as the first source code.
摘要翻译: 接收具有多行指令的计算机程序的第一源代码。 对第一源代码执行混淆处理,包括混洗操作,施肥操作,聚合操作和中和操作中的至少两个。 基于模糊处理产生第二源代码,其中第二源代码在由处理器执行时产生与第一源代码相同的结果。
-
3.发明申请公开(公告)号:US20130259226A1
公开(公告)日:2013-10-03
申请号:US13437687
申请日:2012-04-02
IPC分类号: G06F21/24
CPC分类号: H04L9/08 , G06F21/14 , H04L9/002 , H04L9/0631 , H04L9/30 , H04L2209/16
摘要: A method and an apparatus that generate a plurality of elements randomly as a split representation of an input used to provide an output data cryptographically representing an input data are described. The input may correspond to a result of a combination operation on the elements. Cryptographic operations may be performed on the input data and the elements to generate a plurality of data elements without providing data correlated with the key. The combination operation may be performed on the data elements for the output data.
摘要翻译: 描述了随机生成多个元素作为用于提供密码地表示输入数据的输出数据的输入的分割表示的方法和装置。 输入可以对应于元素上的组合操作的结果。 可以对输入数据和元素执行密码操作以生成多个数据元素,而不提供与密钥相关的数据。 可以对输出数据的数据元素执行组合操作。
-
公开(公告)号:US20130232578A1
公开(公告)日:2013-09-05
申请号:US13411099
申请日:2012-03-02
CPC分类号: G06F21/10 , G06F8/30 , G06F21/14 , G11B20/00086 , G11B20/0021
摘要: First source code of a computer program having a plurality of lines of instructions is received. An obfuscation process is performed on the first source code, including at least two of a shuffling operation, a fertilizing operation, an aggregating operation, and a neutralizing operation. Second source code is generated based on the obfuscation process, where the second source code, when executed by a processor, produces an identical result as the first source code.
摘要翻译: 接收具有多行指令的计算机程序的第一源代码。 对第一源代码执行混淆处理,包括混洗操作,施肥操作,聚合操作和中和操作中的至少两个。 基于模糊处理产生第二源代码,其中第二源代码在由处理器执行时产生与第一源代码相同的结果。
-
公开(公告)号:US08504845B2
公开(公告)日:2013-08-06
申请号:US13076362
申请日:2011-03-30
申请人: Augustin J. Farrugia , Mathieu Ciet , Thomas Icart
发明人: Augustin J. Farrugia , Mathieu Ciet , Thomas Icart
IPC分类号: H04L9/28
CPC分类号: G06F21/602 , G06F21/52
摘要: In the field of computer enabled cryptography, such as a keyed block cipher having a plurality of rounds, the cipher is hardened against an attack by a protection process which obscures the cipher states and/or the round keys using the properties of group field automorphisms and applying multiplicative masks (instead of conventional XOR masks) to the states of the cipher, for encryption or decryption. This is especially advantageous in a “White Box” environment where an attacker has full access to the cipher algorithm, including the algorithm's internal state during its execution. This method and the associated computing apparatus are useful for protection against known attacks on “White Box” ciphers, by eliminating XOR operations with improved masking techniques and increasing complexity of reverse engineering and of attacks.
摘要翻译: 在诸如具有多个回合的密钥分组密码的计算机启用密码学领域中,使用组域自动生成的属性,使密码状态和/或循环密钥隐藏的保护过程针对攻击进行加密, 将乘法掩码(而不是常规XOR掩码)应用于密码的状态,以进行加密或解密。 这在“白盒”环境中特别有利,攻击者可以完全访问密码算法,包括算法的执行过程中的内部状态。 该方法和相关联的计算装置对于通过利用改进的掩蔽技术消除XOR操作并增加逆向工程和攻击的复杂性来防止已知的对“白盒”密码的攻击是有用的。
-
公开(公告)号:US09189425B2
公开(公告)日:2015-11-17
申请号:US13286117
申请日:2011-10-31
CPC分类号: G06F12/1408 , G09C1/00 , H04L9/0631 , H04L2209/16 , H04L2209/24
摘要: In the field of computer enabled cryptography, such as a cipher using lookup tables, the cipher is hardened against an attack by a protection process which obscures the lookup tables using the properties of bijective functions and applying masks to the tables' input and output values, for encryption or decryption. This is especially advantageous in a “White Box” environment where an attacker has full access to the cipher algorithm, including the algorithm's internal state during its execution. This method and the associated computing apparatus are useful for protection against known attacks on “White Box” ciphers, by obfuscating lookup table data, thereby increasing the cipher's complexity against reverse engineering and other attacks.
摘要翻译: 在计算机启用密码学领域,例如使用查找表的密码,密码被针对使用双射函数的属性遮蔽查找表并且将掩码应用于表的输入和输出值的保护过程的攻击加强, 用于加密或解密。 这在“白盒”环境中特别有利,攻击者可以完全访问密码算法,包括算法的执行过程中的内部状态。 该方法和相关联的计算装置对于通过模糊查找表数据来防止对“白盒”密码的已知攻击是有用的,从而增加了对逆向工程和其他攻击的密码复杂性。
-
7.发明授权公开(公告)号:US08966279B2
公开(公告)日:2015-02-24
申请号:US12975123
申请日:2010-12-21
CPC分类号: H04L9/002 , H04L9/0631 , H04L2209/16 , H04L2209/24
摘要: In the field of computer enabled cryptography, such as a keyed block cipher having a plurality of rounds, the cipher is hardened against an attack by protecting the cipher key by means of a key expansion process which obscures the cipher and/or the round keys by increasing their lengths to provide an expanded version of the keys for carrying out encryption or decryption using the cipher. This is especially advantageous in a “White Box” environment where an attacker has full access to the cipher algorithm, including the algorithm's internal state during its execution. This method and the associated computing apparatus are useful where the key is derived through a process and so is unknown when the software code embodying the cipher is compiled. This is typically the case where there are many users of the cipher and each has his own key, or where each user session has its own key.
摘要翻译: 在诸如具有多个回合的密钥分组密码的计算机启用密码学领域中,通过利用通过密钥扩展处理来保护密码密码来抵御攻击来加密密码,该密钥扩展过程掩盖了密码和/或循环密钥, 增加其长度以提供用于使用密码进行加密或解密的密钥的扩展版本。 这在“白盒”环境中特别有利,攻击者可以完全访问密码算法,包括算法的执行过程中的内部状态。 该方法和相关联的计算装置在通过过程导出密钥是有用的,并且当体现密码的软件代码被编译时是未知的。 通常情况下,密码的用户很多,每个用户都有自己的密钥,或者每个用户会话都有自己的密钥。
-
8.发明授权公开(公告)号:US08605894B2
公开(公告)日:2013-12-10
申请号:US13271841
申请日:2011-10-12
CPC分类号: H04L9/0631 , H04L2209/043 , H04L2209/16
摘要: A cryptographic process (such as the AES cipher) which uses table look up operations (TLUs) is hardened against reverse engineering attacks intended to recover the table contents and thereby the cipher key. This hardening involves removing any one-to-one correspondence between the TLU inputs and outputs, by altering the output of the TLU dynamically, e.g. at each execution (call) of the TLU. This is done by increasing the size of the tables, applying a dynamically determined mask value to the table input and/or output, or using an inverse of the table.
摘要翻译: 使用表查找操作(TLU)的加密过程(例如AES密码)被硬化以防止旨在恢复表内容和密码密钥的反向工程攻击。 这种硬化包括通过动态地改变TLU的输出来例如TLU输入和输出之间的一对一的对应关系。 在TLU的每次执行(调用)时。 这是通过增加表的大小,将动态确定的掩码值应用于表输入和/或输出,或使用表的倒数完成的。
-
公开(公告)号:US09264234B2
公开(公告)日:2016-02-16
申请号:US13357454
申请日:2012-01-24
CPC分类号: H04L9/3247 , H04L9/06 , H04L2209/16
摘要: In the field of computer and data security, the identifier (ID) of a computing device is protected by providing a secure signature used to verify the ID. The signature is computed from the ID using a “White Box” cryptographic process and a hash function. This provides a signature that is computationally easy to verify but difficult or impossible to generate by a hacker (unauthorized user). This method of first creating the signature and later verifying the identifier using the signature and the associated computing apparatus are thereby useful for protection against hacking of such identifiers of computing devices.
摘要翻译: 在计算机和数据安全领域,通过提供用于验证ID的安全签名来保护计算设备的标识符(ID)。 使用“白盒”加密过程和散列函数从ID计算签名。 这提供了计算上容易验证但由黑客(未经授权的用户)产生困难或不可能的签名。 因此,首先创建签名并随后使用签名和相关联的计算装置验证标识符的这种方法因此有助于防止这些计算设备的这种标识符的黑客入侵。
-
10.发明授权公开(公告)号:US08976960B2
公开(公告)日:2015-03-10
申请号:US13437687
申请日:2012-04-02
CPC分类号: H04L9/08 , G06F21/14 , H04L9/002 , H04L9/0631 , H04L9/30 , H04L2209/16
摘要: A method and an apparatus that generate a plurality of elements randomly as a split representation of an input used to provide an output data cryptographically representing an input data are described. The input may correspond to a result of a combination operation on the elements. Cryptographic operations may be performed on the input data and the elements to generate a plurality of data elements without providing data correlated with the key. The combination operation may be performed on the data elements for the output data.
摘要翻译: 描述了随机地生成多个元素作为用于提供密码地表示输入数据的输出数据的输入的分割表示的方法和装置。 输入可以对应于元素上的组合操作的结果。 可以对输入数据和元素执行密码操作以生成多个数据元素,而不提供与密钥相关的数据。 可以对输出数据的数据元素执行组合操作。
-
-
-
-
-
-
-
-
-
搜索结果
174 条记录 (耗时 0.032 秒)
