专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明公开

EP2913774A1 Run-time continuous address space layout randomization of flattened control flow graph 审中-公开
标题翻译： Laufzeit kontinuerliche地址空间布局Randomisierung von einem abgeflachten Kontrollflussgraphen
公开(公告)号：EP2913774A1
公开(公告)日：2015-09-02
申请号：EP15156737.7
申请日：2015-02-26
申请人： Thomson Licensing
发明人： Monsifrot, Antoine , Salmon-Legagneur, Charles
IPC分类号： G06F21/14
CPC分类号： G06F8/443 , G06F21/14 , G06F21/54 , G06F21/60 , G06F2221/2125
摘要： It is provided a method for hardening of control flow graph flattening, wherein each Basic Block is stored on a slot and jumps to a single function that computes the address of the next Basic Block, comprising the steps of: each time after executing a Basic Block, copying the Basic Block at a start offset selected in an available slot; inserting at least one junk code at least one of before, after and inside the Basic Block on the basis of a reference image of the Basic Block; and updating a database including a current address and image of each Basic Block.
摘要翻译：提供了一种用于硬化控制流程图平坦化的方法，其中每个基本块被存储在时隙上并且跳转到计算下一个基本块的地址的单个功能，包括以下步骤：每次执行基本块，在可用插槽中选择的起始偏移处复制基本块; 基于基本块的参考图像，在基本块之前，之后和之内插入至少一个垃圾代码; 并更新包含每个基本块的当前地址和图像的数据库。

2. 发明公开

EP2674891A1 A method, a device and a computer program support for execution of encrypted computer code 审中-公开
标题翻译： Verfahren，Vorrichtung undComputerprogrammproduktunterstützungzurAusführungeinesverschlüsseltenComputercodes
公开(公告)号：EP2674891A1
公开(公告)日：2013-12-18
申请号：EP12305667.3
申请日：2012-06-12
申请人： Thomson Licensing
发明人： Monsifrot, Antoine , Salmon-Legagneur, Charles
IPC分类号： G06F21/70
CPC分类号： G06F21/72 , G06F21/75
摘要： A device (100) stores program code in a plurality of slots in its memory (120). When a processor (110) of the device receives a call (310) to an encrypted function (341, 342), uses a slot table (320) to find the location of the cipher function (341, 342) and the cipher module (343, 344) and the key to decrypt the encrypted module. The encrypted module is decrypted (S1), executed (S2), re-encrypted (S3) and moved to a new memory slot (S4). The cipher function used is moved (S5) to a further new slot and the slot table is updated (S6). Also provided is a method and a computer program support (150). The invention can make it more difficult to analyse execution traces of the program code.
摘要翻译：设备（100）将程序代码存储在其存储器（120）中的多个时隙中。当设备的处理器（110）接收到加密功能（341,342）的呼叫（310）时，使用时隙表（320）来查找密码函数（341,342）和加密模块（ 343，344）和解密加密模块的密钥。加密模块被解密（S1），执行（S2），重新加密（S3）并移动到新的存储器插槽（S4）。所使用的密码函数（S5）被移动到另一新的时隙，并更新时隙表（S6）。还提供了一种方法和计算机程序支持（150）。本发明可以使得更难分析程序代码的执行轨迹。

3. 发明公开

EP2196938A1 Methods and devices for instruction level software encryption 有权
标题翻译： Verfahren und Vorrichtungen zurSoftwareverschlüsselungauf Befehlsebene
公开(公告)号：EP2196938A1
公开(公告)日：2010-06-16
申请号：EP09176197.3
申请日：2009-11-17
申请人： Thomson Licensing
发明人： Onno, Stephane , Karroumi, Mohamed , Monsifrot, Antoine
IPC分类号： G06F21/22
CPC分类号： G06F21/14 , G06F21/125 , G06F2221/2107 , H01L2924/30107 , H04L9/0637 , H04L9/0656 , H01L2924/00
摘要： A method of encrypting compiled computer code instructions to be decrypted instruction by instruction during execution. The computer code instructions are encrypted using a chaining mode so that an encrypted instruction ({Instr. 8}) depends on the values of the instruction (I 8 ), the value of the preceding instruction (I 5 , I 7 ) and a pseudo-random number. As it may happen that the instruction can be arrived at from more than one preceding instruction (I 5 , I 7 ), at least one of the preceding instructions (I 5 , I 7 ) is associated with a random number compensator for use during decryption of the encrypted instruction, so that the decryption of the encrypted instruction yields the same result regardless of which the preceding instruction was. Also provided are an encryption device, a decryption device and method, and a digital support medium storing encrypted compiled computer code instructions.
摘要翻译：在执行期间通过指令加密编译的计算机代码指令以进行解密指令的方法。使用链接模式来加密计算机代码指令，使得加密指令（{Instr.8}）取决于指令（I 8）的值，前一条指令（I 5，I 7）的值和伪随机数。可能发生的是，可以从多于一个的先前指令（I 5，I 7）到达指令，至少一个前述指令（I 5，I 7）与解密期间使用的随机数补偿器相关联的加密指令的解密，使得加密指令的解密产生相同的结果，而不管前面的指令是哪一个。还提供了加密装置，解密装置和方法以及存储加密编译的计算机代码指令的数字支持介质。

4. 发明公开

EP2913773A1 Run-time Continuous Address Space Layout Randomization of flattened Control Flow Graph 审中-公开
标题翻译：运行时连续地址空间布局扁平化控制流图的随机化
公开(公告)号：EP2913773A1
公开(公告)日：2015-09-02
申请号：EP14305278.5
申请日：2014-02-27
申请人： Thomson Licensing
发明人： Monsifrot, Antoine , Salmon-Legagneur, Charles
IPC分类号： G06F21/14
CPC分类号： G06F8/443 , G06F21/14 , G06F21/54 , G06F21/60 , G06F2221/2125
摘要： It is provided a method for hardening of control flow graph flattening, wherein the control flow graph is flattened, and each Basic Block is stored on a slot, comprising the steps of: selecting an available slot each after executing a Basic Block; selecting a random start offset inside the slot; copying the Basic Block at the start offset in the slot; inserting at least one junk code at least one of before, after and inside the Basic Block on the basis of a reference image of the Basic Block; and updating a database including an current address and image of each Basic Block.
摘要翻译：提供了一种用于控制流程图压扁的硬化的方法，其中控制流程图被平坦化，并且每个基本块被存储在一个槽中，该方法包括以下步骤：在执行基本块之后每个选择一个可用槽; 选择槽内的随机起始偏移量; 在槽中的起始偏移处复制基本块; 基于基本块的参考图像，在基本块之前，之后和之内至少之一插入至少一个垃圾代码; 以及更新包括每个基本块的当前地址和图像的数据库。

5. 发明公开

EP2674892A1 A method, a device and a computer program support for execution of encrypted computer code 有权
标题翻译： Verfahren，Vorrichtung undComputerprogrammunterstützungzurAusführungeinesverschlüsseltenComputercodes
公开(公告)号：EP2674892A1
公开(公告)日：2013-12-18
申请号：EP13171163.2
申请日：2013-06-10
申请人： Thomson Licensing
发明人： Monsifrot, Antoine , Salmon-Legagneur, Charles
IPC分类号： G06F21/75
CPC分类号： G06F21/72 , G06F21/75
摘要： A device (100) stores program code in a plurality of slots in its memory (120). When a processor (110) of the device receives a call (310) to an encrypted function (341, 342), it uses a slot table (320) to find the location of the cipher function (341, 342) and the cipher module (343, 344) and the key to decrypt the encrypted module. The encrypted module is decrypted (S1), executed (S2), re-encrypted (S3) and moved to a new memory slot (S4). The cipher function used is moved (S5) to a further new slot and the slot table is updated (S6). Also provided is a method and a computer program support (150). The invention can make it more difficult to analyse execution traces of the program code.
摘要翻译：设备（100）将程序代码存储在其存储器（120）中的多个时隙中。当设备的处理器（110）接收到加密功能（341,342）的呼叫（310）时，它使用时隙表（320）来查找密码函数（341,342）的位置和加密模块（343,344）和解密加密模块的密钥。加密模块被解密（S1），执行（S2），重新加密（S3）并移动到新的存储器插槽（S4）。所使用的密码函数（S5）被移动到另一新的时隙，并更新时隙表（S6）。还提供了一种方法和计算机程序支持（150）。本发明可以使得更难分析程序代码的执行轨迹。

6. 发明授权

EP2378452B1 Method, device and computer program support for verification of checksums for self-modified computer code 有权
标题翻译：改性的计算机代码的方法，装置和计算机程序产品，用于校验和验证本身
公开(公告)号：EP2378452B1
公开(公告)日：2012-12-19
申请号：EP10305394.8
申请日：2010-04-16
申请人： Thomson Licensing
发明人： Salmon-Legagneur, Charles , Monsifrot, Antoine
IPC分类号： G06F21/00 , G06F12/14
CPC分类号： G06F21/14 , G06F21/54

7. 发明公开

EP2197145A3 Methods and devices for a chained encryption mode 审中-公开
标题翻译：一种用于链Verschlüsslungsmodus方法和装置
公开(公告)号：EP2197145A3
公开(公告)日：2012-08-01
申请号：EP09176200.5
申请日：2009-11-17
申请人： Thomson Licensing, Inc.
发明人： Karroumi, Mohamed , Onno, Stephane , Monsifrot, Antoine
IPC分类号： H04L9/06 , H04L9/12
CPC分类号： H04L9/0637 , H04L2209/24
摘要： An encryption chaining mode takes (910) plaintext block N, generates (920) encryption key N by combining, preferably by XOR, encryption key N-1 and plaintext block N-1 and encrypts (930) plaintext block N using an encryption algorithm with encryption key N to output (940) ciphertext block N. Encryption key for the first plaintext block is generated by XOR-ing a random Initialization vector (IV) and a random initialization key K. In a preferred embodiment, initialization key K is subkeys resulting from a key schedule algorithm and encryption key N-1 is only one of the subkeys. Encryption key for the first plaintext block is generated by XOR-ing a random Initialization vector (IV) and one subkey resulting from a key schedule algorithm. Also provided is a corresponding decryption method, an encryption device (1110), a decryption device (1120).

8. 发明公开

EP3057021A1 Control flow graph flattening device and method obfuscating branches via interprocedural data 审中-公开
标题翻译：维基百科，自由的百科全书
公开(公告)号：EP3057021A1
公开(公告)日：2016-08-17
申请号：EP15305231.1
申请日：2015-02-16
申请人： Thomson Licensing
发明人： Salmon-Legagneur, Charles , Monsifrot, Antoine
IPC分类号： G06F21/14 , G06F9/30 , G06F9/45
CPC分类号： G06F21/14 , G06F8/433
摘要： Control Flow Graph flattening of a function of software code comprising a plurality of basic blocks having an address and at least one instruction. A processor (710) creates (508) a dispatcher basic block comprising instructions to look up an address in a jump table and to jump to the address, creates (510) the jump table associating a label (X i ) of each basic block with the address of the basic block, creates (512) a coefficient array comprising diffusion function coefficients, replaces (514) a Jump terminal instruction by a jump to the dispatcher basic block in each of the plurality of basic blocks, creates and inserts (518) a first branch function (B1 i ()) and a second branch function (B2 i ()), the first branch function (B1 i ()) calculating the label (X i+1 ) of a subsequent basic block based on a diffusion function (D Pi ) for the present basic block, the second branch function (B2 i ()) calculating the diffusion function index (P i+1 ) of the subsequent basic block based on the present diffusion function index (P i ), creates and inserts (524) a transition function (F()) into the dispatcher basic block, the transition function obtaining the address in the jump table based on at least the label (X i+1 ) of a subsequent basic block, and creates and inserts (522) diffusion functions (D Pi ) in the plurality of basic blocks, each diffusion function calculating a value based on at least one diffusion coefficient in the coefficient array and the label (X i ) of the present basic block.
摘要翻译：控制流程图包括具有地址和至少一个指令的多个基本块的软件代码功能的平坦化。处理器（710）创建（508）调度器基本块，其包括查找跳转表中的地址并跳转到地址的指令，创建（510）将每个基本块的标签（X i）与基本块的地址创建（512）包括扩散函数系数的系数阵列，通过跳转到多个基本块中的每一个中的调度器基本块来替换（514）跳转终端指令，创建并插入（518）第一分支函数（B1i（））和第二分支函数（B2 i（）），基于扩散计算后续基本块的标签（X i + 1）的第一分支函数（B1 i（）基于本扩散函数指数（P i）计算后续基本块的扩散函数指数（P i + 1）的第二分支函数（B2 i（i）），产生用于本基本块的函数（D Pi）并将过渡函数（F（））插入（524）到调度器基本块中，转换fu 基于至少基于后续基本块的标签（X i + 1）获得跳转表中的地址，并且在多个基本块中创建并插入（522）扩散函数（D Pi），每个扩散函数计算基于系数数组中的至少一个扩散系数和本基本块的标号（X i）的值。

9. 发明公开

EP2490143A1 Method and device for controlling distribution of licenses 审中-公开
标题翻译： Verfahren und Vorrichtung zur Kontrolle der Lizenzausgabe
公开(公告)号：EP2490143A1
公开(公告)日：2012-08-22
申请号：EP11305132.0
申请日：2011-02-10
申请人： Thomson Licensing
发明人： Monsifrot, Antoine , Doerr, Gwenael , Courtay, Olivier , Robert, Antoine , Joye, Marc
IPC分类号： G06F21/00
CPC分类号： G06F21/105 , G06F21/10
摘要： A method for controlling distribution of licenses (251; 351), a license being for an excerpt (252; 352) of a content item (211; 311), the content item comprising a set (100) of continuous units (110), each excerpt (252; 352) comprising a subset of the set (100) of continuous units. A device (230; 340) receives an identifier of a receiver (230; 330) of a license, and the license (251) or a request (322) to generate the license (351), the license or the request (322) to generate the license (351) comprising a content identifier and at least one indicator of the units covered by the license (251; 351); retrieves stored information regarding licenses previously delivered to the receiver; compares a limit value for the content item with the stored information combined with information from the license or the request (322) to generate the license (351); and allows the receiver access to the license only if the limit value is not exceeded by the stored information combined with information from the license or the request (322) to generate the license (351). Also provided is the device (230; 340).
摘要翻译：一种用于控制许可证分发的方法（251; 351），用于内容项（211; 311）的摘录（252; 352）的许可证，所述内容项包括连续单元（110）的集合（100）每个摘录（252; 352）包括所述组（100）连续单元的子集。设备（230; 340）接收许可证的接收器（230; 330）的标识符，以及许可证（251）或生成许可证的请求（322）（351），许可证或请求（322）以产生许可证（351），其包括内容标识符和许可证所覆盖的单元的至少一个指标（251; 351）; 检索关于先前传送给接收者的许可证的存储信息; 将所述内容项的限制值与存储的信息结合来自所述许可证或所述请求（322）的信息进行比较以生成所述许可证（351）; 并且只有当存储的信息与来自许可证的信息或者请求（322）的信息不超过限制值才允许接收者访问许可证（351）。还提供了装置（230; 340）。

10. 发明公开

EP2378452A1 Method, device and computer program support for verification of checksums for self-modified computer code 有权
标题翻译：改性的计算机代码的方法，装置和计算机程序产品，用于校验和验证本身
公开(公告)号：EP2378452A1
公开(公告)日：2011-10-19
申请号：EP10305394.8
申请日：2010-04-16
申请人： Thomson Licensing
发明人： Salmon-Legagneur, Charles , Monsifrot, Antoine
IPC分类号： G06F21/00 , G06F12/14
CPC分类号： G06F21/14 , G06F21/54
摘要： A function (220) of a software program is stored in a memory (200) during execution (410) in a device (100) of the software program. A processor relocates (420) the function (220) in a region (R) of the memory (200) comprising dummy code (231, 232), transforms the dummy code (231, 232) in a predictable manner, generates a predicted checksum for the region (R) based on a previous checksum, generates a calculated checksum over the region (R), and verifies (440) the integrity of the function (220) by comparing the predicted checksum and the calculated checksum. Also provided are a device (100) and a computer program product (150).
摘要翻译：的软件程序的功能（220）被存储在在软件程序的装置（100）执行（410）期间，一个存储器（200）。处理器再定位（420）的区域中的存储器的（R）（200），包括哑代码（231，232）的函数（220），变换所述哑代码（231，232）以可预测的方式，生成一个预测的校验为基于先前的校验和的区域（R），基因速率的计算的校验和在所述区域（R），并验证（440）的函数（220）的通过比较预测的校验和与计算的校验和的完整性。所以本发明提供一种装置（100）和一种计算机程序产品（150）。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式