专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20110167407A1 SYSTEM AND METHOD FOR SOFTWARE DATA REFERENCE OBFUSCATION 审中-公开
标题翻译：用于软件数据参考的系统和方法
公开(公告)号：US20110167407A1
公开(公告)日：2011-07-07
申请号：US12683145
申请日：2010-01-06
申请人： Pierre Betouin , Mathieu Ciet , Augustin J. Farrugia , Julien Lerouge , Ginger M. Myles
发明人： Pierre Betouin , Mathieu Ciet , Augustin J. Farrugia , Julien Lerouge , Ginger M. Myles
IPC分类号： G06F9/44
CPC分类号： G06F21/14
摘要： Disclosed herein are systems, methods, and computer-readable storage media for obfuscating software data references. The obfuscation process locates pointers to data within source code and loads the pointers into an ordered set of pools. The process further shuffles the pointers in the ordered set of pools and adds a function within the source code that when executed uses the ordered set of pools to retrieve the data. The obfuscation process utilizes pool entry shuffling, pool chaining shuffling and cross-pointer shuffling.
摘要翻译：本文公开了用于模糊软件数据引用的系统，方法和计算机可读存储介质。混淆过程将指针指向源代码中的数据，并将指针加载到有序的池集中。该过程进一步将指针排序在有序的池集中，并在源代码中添加一个函数，当执行时使用有序的池集来检索数据。混淆过程利用池进入洗牌，池链接洗牌和交叉指针洗牌。

2. 发明申请

US20090235089A1 COMPUTER OBJECT CODE OBFUSCATION USING BOOT INSTALLATION 有权
标题翻译：使用引导安装的计算机对象代码OBFUSCATION
公开(公告)号：US20090235089A1
公开(公告)日：2009-09-17
申请号：US12047207
申请日：2008-03-12
申请人： Mathieu CIET , Julien Lerouge , Augustin J. Farrugia
发明人： Mathieu CIET , Julien Lerouge , Augustin J. Farrugia
IPC分类号： G06F21/00
CPC分类号： G06F21/14 , G06F21/577
摘要： In the field of computer software, obfuscation techniques for enhancing software security are applied to compiled (object) software code. The obfuscation results here in different versions (instances) of the obfuscated code being provided to different installations (recipient computing devices). The complementary code execution uses a boot loader or boot installer-type program at each installation which contains the requisite logic. Typically, the obfuscation results in a different instance of the obfuscated code for each intended installation (recipient) but each instance being semantically equivalent to the others. This is accomplished in one version by generating a random value or other parameter during the obfuscation process, and using the value to select a particular version of the obfuscating process, and then communicating the value along with boot loader or installer program software. This boot loader then selects which particular process to use for the code execution at the time of installation in accordance with the value. This results in different versions of the obfuscated code being provided to each recipient installation, which further enhances security of the code against reverse engineering by hackers.
摘要翻译：在计算机软件领域，用于增强软件安全性的混淆技术应用于编译（对象）软件代码。这里的混淆结果在不同版本（实例）的混淆代码提供给不同的安装（收件人计算设备）。互补代码执行在每个安装时使用引导加载程序或引导安装程序类型程序，其中包含必需的逻辑。通常，混淆导致每个预期安装（接收者）的混淆代码的不同实例，但每个实例在语义上等同于其他安装。这在一个版本中通过在混淆过程中产生随机值或其他参数来实现，并且使用该值来选择混淆过程的特定版本，然后与引导加载程序或安装程序软件一起传送该值。然后，该引导加载程序根据该值选择在安装时用于执行代码的特定进程。这导致了向每个接收方安装提供了不同版本的混淆代码，这进一步增强了代码的安全性，防止了黑客的反向工程。

3. 发明授权

US08881290B2 Method and apparatus for computer code obfuscation and deobfuscation using boot installation 有权
标题翻译：使用引导安装的计算机代码混淆和去模糊的方法和装置
公开(公告)号：US08881290B2
公开(公告)日：2014-11-04
申请号：US13434619
申请日：2012-03-29
申请人： Mathieu Ciet , Julien Lerouge , Augustin J. Farrugia
发明人： Mathieu Ciet , Julien Lerouge , Augustin J. Farrugia
IPC分类号： G06F11/00 , G06F12/14 , G06F12/16 , G06F21/14 , G06F21/57
CPC分类号： G06F21/14 , G06F21/577
摘要： In the field of computer software, obfuscation techniques for enhancing software security are applied to compiled (object) software code. The obfuscation results here in different versions (instances) of the obfuscated code being provided to different installations (recipient computing devices). The complementary code execution uses a boot loader or boot installer-type program at each installation which contains the requisite logic. Typically, the obfuscation results in a different instance of the obfuscated code for each intended installation (recipient) but each instance being semantically equivalent to the others. This is accomplished in one version by generating a random value or other parameter during the obfuscation process, and using the value to select a particular version of the obfuscating process, and then communicating the value along with boot loader or installer program software.
摘要翻译：在计算机软件领域，用于增强软件安全性的混淆技术应用于编译（对象）软件代码。这里的混淆结果在不同版本（实例）的混淆代码提供给不同的安装（收件人计算设备）。互补代码执行在每个安装时使用引导加载程序或引导安装程序类型程序，其中包含必需的逻辑。通常，混淆导致每个预期安装（接收者）的混淆代码的不同实例，但每个实例在语义上等同于其他安装。这在一个版本中通过在混淆过程中产生随机值或其他参数来实现，并且使用该值来选择混淆过程的特定版本，然后与引导加载程序或安装程序软件一起传送该值。

4. 发明授权

US08176337B2 Computer object code obfuscation using boot installation 有权
标题翻译：使用引导安装的计算机对象代码模糊
公开(公告)号：US08176337B2
公开(公告)日：2012-05-08
申请号：US12047207
申请日：2008-03-12
申请人： Mathieu Ciet , Julien Lerouge , Augustin J. Farrugia
发明人： Mathieu Ciet , Julien Lerouge , Augustin J. Farrugia
IPC分类号： G06F12/14 , G06F9/45 , G06F11/00
CPC分类号： G06F21/14 , G06F21/577
摘要： In the field of computer software, obfuscation techniques for enhancing software security are applied to compiled (object) software code. The obfuscation results here in different versions (instances) of the obfuscated code being provided to different installations (recipient computing devices). The complementary code execution uses a boot loader or boot installer-type program at each installation which contains the requisite logic. Typically, the obfuscation results in a different instance of the obfuscated code for each intended installation (recipient) but each instance being semantically equivalent to the others. This is accomplished in one version by generating a random value or other parameter during the obfuscation process, and using the value to select a particular version of the obfuscating process, and then communicating the value along with boot loader or installer program software. This boot loader then selects which particular process to use for the code execution at the time of installation in accordance with the value. This results in different versions of the obfuscated code being provided to each recipient installation, which further enhances security of the code against reverse engineering by hackers.
摘要翻译：在计算机软件领域，用于增强软件安全性的混淆技术应用于编译（对象）软件代码。这里的混淆结果在不同版本（实例）的混淆代码提供给不同的安装（收件人计算设备）。互补代码执行在每个安装时使用引导加载程序或引导安装程序类型程序，其中包含必需的逻辑。通常，混淆导致每个预期安装（接收者）的混淆代码的不同实例，但每个实例在语义上等同于其他安装。这在一个版本中通过在混淆过程中产生随机值或其他参数来实现，并且使用该值来选择混淆过程的特定版本，然后与引导加载程序或安装程序软件一起传送该值。然后，该引导加载程序根据该值选择在安装时用于执行代码的特定进程。这导致了向每个接收方安装提供了不同版本的混淆代码，这进一步增强了代码的安全性，防止了黑客的反向工程。

5. 发明授权

US08756434B2 System and method for executing an encrypted binary from a memory pool 有权
标题翻译：从内存池执行加密二进制的系统和方法
公开(公告)号：US08756434B2
公开(公告)日：2014-06-17
申请号：US13083497
申请日：2011-04-08
申请人： Ganna Zaks , Pierre Betouin , Augustin J. Farrugia , Julien Lerouge , Jon McLachlan , Gideon M. Myles , Cédric Tessier
发明人： Ganna Zaks , Pierre Betouin , Augustin J. Farrugia , Julien Lerouge , Jon McLachlan , Gideon M. Myles , Cédric Tessier
IPC分类号： G06F12/14
CPC分类号： G06F12/1408 , G06F21/51 , G06F21/602 , G06F21/71 , G06F21/72
摘要： Disclosed herein are systems, methods, and non-transitory computer-readable storage media for executing encrypted computer code. A system configured to practice the method receives a request to execute encrypted computer code. In response to the request, the system identifies a portion of the encrypted computer code for execution and decrypts the portion to yield decrypted computer code. Then the system stores the decrypted computer code in a pool of memory and executes the decrypted computer code from the pool of memory. The system can store the decrypted computer code in the pool of memory based on a randomization algorithm so that identical executions of the encrypted computer code result in selections of different available memory locations within the pool of memory. Related portions can be stored non-consecutively in the pool of memory. The pool of memory can store different portions of decrypted computer code over time.
摘要翻译：这里公开了用于执行加密的计算机代码的系统，方法和非暂时的计算机可读存储介质。配置为执行该方法的系统接收执行加密的计算机代码的请求。响应于该请求，系统识别加密的计算机代码的一部分用于执行，并解密部分以产生解密的计算机代码。然后，系统将解密的计算机代码存储在存储器池中，并从存储器池中执行解密的计算机代码。系统可以基于随机化算法将解密的计算机代码存储在存储器池中，使得加密的计算机代码的相同执行导致在存储器池内的不同可用存储器位置的选择。相关部分可以非连续地存储在存储器池中。内存池可以随时间存储解密的计算机代码的不同部分。

6. 发明申请

US20130232507A1 DATA PROTECTION FOR OPAQUE DATA STRUCTURES 有权
标题翻译：数据保护用于OPAQUE数据结构
公开(公告)号：US20130232507A1
公开(公告)日：2013-09-05
申请号：US13615974
申请日：2012-09-14
申请人： Augustin J. Farrugia , Daniel F. Reynaud , Gianpaolo Fasoli , Jonathan Gregory McLachlan , Julien Lerouge
发明人： Augustin J. Farrugia , Daniel F. Reynaud , Gianpaolo Fasoli , Jonathan Gregory McLachlan , Julien Lerouge
IPC分类号： G06F9/54
CPC分类号： G06F9/4423 , G06F9/4482 , G06F21/14 , G06F21/52
摘要： Methods, media and systems that use an encoded opaque pointer in an API between a client process and a library process. An encoded opaque pointer, in one embodiment, can be received by the library process from the client process, and the library process can decode the opaque pointer to obtain an address in memory containing a data structure pointed to by the opaque pointer. The library process can operate on the data structure to create a revised or processed data structure, stored in the same or different address in heap memory or stack memory, and the library process can encode and return a new opaque pointer, for the processed data structure, to the client process.
摘要翻译：在客户端进程和库进程之间的API中使用编码的不透明指针的方法，介质和系统。在一个实施例中，编码的不透明指针可以由库进程从客户端进程接收，并且库进程可以对不透明指针进行解码以获得包含由不透明指针指向的数据结构的存储器中的地址。库过程可以对数据结构进行操作以创建存储在堆存储器或堆栈存储器中的相同或不同地址中的修改或处理的数据结构，并且库过程可以编码并返回新的不透明指针，用于处理的数据结构，到客户端进程。

7. 发明授权

US08302210B2 System and method for call path enforcement 有权
标题翻译：呼叫路径执行的系统和方法
公开(公告)号：US08302210B2
公开(公告)日：2012-10-30
申请号：US12546520
申请日：2009-08-24
申请人： Ginger M. Myles , Srinivas Vedula , Gianpaolo Fasoli , Julien Lerouge , Tanya Michelle Lattner , Augustin J. Farrugia
发明人： Ginger M. Myles , Srinivas Vedula , Gianpaolo Fasoli , Julien Lerouge , Tanya Michelle Lattner , Augustin J. Farrugia
IPC分类号： G06F21/00
CPC分类号： G06F21/54 , G06F9/4484 , G06F9/544 , G06F9/545
摘要： Disclosed herein are systems, computer-implemented methods, and computer-readable storage media for call path enforcement. The method includes tracking, during run-time, a run-time call order for a series of function calls in a software program, and when executing a protected function call during run-time, allowing or causing proper execution of a protected function call only if the run-time call order matches a predetermined order. The predetermined order can be an expected run-time call order based on a programmed order of function calls in the software program. The method can include maintaining an evolving value associated with the run-time call order and calling the protected function by passing the evolving value and function parameters corrupted based on the evolving value. The protected function uncorrupts the corrupted parameters based on the passed evolving value and an expected predetermined call order. A buffer containing the uncorrupted parameters can replace the corrupted parameters.
摘要翻译：本文公开了用于呼叫路径实施的系统，计算机实现的方法和计算机可读存储介质。该方法包括在运行期间跟踪软件程序中一系列函数调用的运行时调用顺序，以及在运行时执行受保护函数调用时，只允许或导致仅受保护函数调用的正确执行如果运行时间调用顺序与预定顺序相匹配。预定顺序可以是基于软件程序中的功能调用的编程顺序的期望的运行时呼叫顺序。该方法可以包括维护与运行时呼叫顺序相关联的演进值，并通过传递基于演进值而破坏的演进值和功能参数来调用受保护功能。受保护的功能基于传递的演进值和预期的预定呼叫顺序来破坏已损坏的参数。包含未受损参数的缓冲区可以替换损坏的参数。

8. 发明申请

US20120260102A1 SYSTEM AND METHOD FOR EXECUTING AN ENCRYPTED BINARY FROM A MEMORY POOL 有权
标题翻译：从记忆池执行加密二进制的系统和方法
公开(公告)号：US20120260102A1
公开(公告)日：2012-10-11
申请号：US13083497
申请日：2011-04-08
申请人： Ganna Zaks , Pierre Betouin , Augustin J. Farrugia , Julien Lerouge , Jon McLachlan , Gideon M. Myles , Cédric Tessier
发明人： Ganna Zaks , Pierre Betouin , Augustin J. Farrugia , Julien Lerouge , Jon McLachlan , Gideon M. Myles , Cédric Tessier
IPC分类号： G06F12/14
CPC分类号： G06F12/1408 , G06F21/51 , G06F21/602 , G06F21/71 , G06F21/72
摘要： Disclosed herein are systems, methods, and non-transitory computer-readable storage media for executing encrypted computer code. A system configured to practice the method receives a request to execute encrypted computer code. In response to the request, the system identifies a portion of the encrypted computer code for execution and decrypts the portion to yield decrypted computer code. Then the system stores the decrypted computer code in a pool of memory and executes the decrypted computer code from the pool of memory. The system can store the decrypted computer code in the pool of memory based on a randomization algorithm so that identical executions of the encrypted computer code result in selections of different available memory locations within the pool of memory. Related portions can be stored non-consecutively in the pool of memory. The pool of memory can store different portions of decrypted computer code over time.
摘要翻译：这里公开了用于执行加密的计算机代码的系统，方法和非暂时的计算机可读存储介质。配置为执行该方法的系统接收执行加密的计算机代码的请求。响应于该请求，系统识别加密的计算机代码的一部分用于执行，并解密部分以产生解密的计算机代码。然后，系统将解密的计算机代码存储在存储器池中，并从存储器池中执行解密的计算机代码。系统可以基于随机化算法将解密的计算机代码存储在存储器池中，使得加密的计算机代码的相同执行导致在存储器池内的不同可用存储器位置的选择。相关部分可以非连续地存储在存储器池中。内存池可以随时间存储解密的计算机代码的不同部分。

9. 发明申请

US20110041183A1 SYSTEM AND METHOD FOR CALL REPLACEMENT 有权
标题翻译：用于呼叫替换的系统和方法
公开(公告)号：US20110041183A1
公开(公告)日：2011-02-17
申请号：US12540195
申请日：2009-08-12
申请人： Ginger M. Myles , Julien Lerouge , Tanya Michelle Lattner , Augustin J. Farrugia
发明人： Ginger M. Myles , Julien Lerouge , Tanya Michelle Lattner , Augustin J. Farrugia
IPC分类号： G06F21/22 , G06F9/45
CPC分类号： G06F21/14
摘要： Disclosed herein are systems, computer-implemented methods, and computer-readable storage media for obfuscating a function call. The method receives a computer program having an annotated function and determines prolog instructions for setting up a stack frame of the annotated function and epilog instructions for tearing down the stack frame. The method places a first portion of the prolog instructions in the computer program preceding a jump to the annotated function and a second portion of the prolog instructions at a beginning of the annotated function. The method places a first portion of the epilog instructions at an end of the annotated function and a second portion of the epilog instructions in the computer program after the jump. Executing the first and second portions of the prolog instructions together sets up the stack frame. Executing the first and the second portions of the epilog instructions together tears down the stack frame.
摘要翻译：这里公开的是系统，计算机实现的方法和用于模糊功能调用的计算机可读存储介质。该方法接收具有注释功能的计算机程序，并且确定用于建立注释功能的堆栈帧的序言指令和用于拆除堆栈帧的epilog指令。该方法将前导序列指令的第一部分放置在跳转之前的计算机程序中，并且在注释的函数的开始处将序言指令的第二部分放置到注释的函数中。该方法将epilog指令的第一部分放置在注释功能的末尾，并且在跳转之后在计算机程序中放置epilog指令的第二部分。执行序言指令的第一和第二部分一起设置堆栈帧。执行epilog指令的第一部分和第二部分一起撕下堆栈帧。

10. 发明授权

US08429637B2 System and method for conditional expansion obfuscation 有权
标题翻译：用于条件扩展混淆的系统和方法
公开(公告)号：US08429637B2
公开(公告)日：2013-04-23
申请号：US12202909
申请日：2008-09-02
申请人： Gideon M. Myles , Tanya Michelle Lattner , Julien Lerouge , Augustin J. Farrugia
发明人： Gideon M. Myles , Tanya Michelle Lattner , Julien Lerouge , Augustin J. Farrugia
IPC分类号： G06F9/45
CPC分类号： G06F21/14
摘要： Disclosed herein are systems, methods, and computer readable-media for obfuscating code through conditional expansion obfuscation. The method includes identifying a conditional expression in a computer program, identifying a sequence of conditional expressions that is semantically equivalent to the conditional expression, and replacing the conditional expression with the semantically equivalent sequence of conditional expressions. One option replaces each like conditional expression in the computer program with a diverse set of sequences of semantically equivalent conditional expressions. A second option rearranges computer instructions that are to be processed after the sequence of conditional expression is evaluated so that a portion of the instructions is performed before the entire sequence of conditional expressions is evaluated. A third option performs conditional expansion obfuscation of a conditional statement in combination with branch extraction obfuscation.
摘要翻译：本文公开了用于通过条件扩展混淆来模糊代码的系统，方法和计算机可读介质。该方法包括识别计算机程序中的条件表达式，识别在语义上等同于条件表达式的条件表达式的序列，以及用条件表达式的语义等价序列替换条件表达式。一个选项用计算机程序中的条件表达式替换各种语义等价条件表达式的序列集合。在评估条件表达式的序列之后，第二个选项重新排列要处理的计算机指令，使得在评估整个条件表达式序列之前执行指令的一部分。第三个选项与条件语句结合使用分支提取混淆来执行条件扩展模糊处理。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式