专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明授权

US08756434B2 System and method for executing an encrypted binary from a memory pool 有权
标题翻译：从内存池执行加密二进制的系统和方法
公开(公告)号：US08756434B2
公开(公告)日：2014-06-17
申请号：US13083497
申请日：2011-04-08
申请人： Ganna Zaks , Pierre Betouin , Augustin J. Farrugia , Julien Lerouge , Jon McLachlan , Gideon M. Myles , Cédric Tessier
发明人： Ganna Zaks , Pierre Betouin , Augustin J. Farrugia , Julien Lerouge , Jon McLachlan , Gideon M. Myles , Cédric Tessier
IPC分类号： G06F12/14
CPC分类号： G06F12/1408 , G06F21/51 , G06F21/602 , G06F21/71 , G06F21/72
摘要： Disclosed herein are systems, methods, and non-transitory computer-readable storage media for executing encrypted computer code. A system configured to practice the method receives a request to execute encrypted computer code. In response to the request, the system identifies a portion of the encrypted computer code for execution and decrypts the portion to yield decrypted computer code. Then the system stores the decrypted computer code in a pool of memory and executes the decrypted computer code from the pool of memory. The system can store the decrypted computer code in the pool of memory based on a randomization algorithm so that identical executions of the encrypted computer code result in selections of different available memory locations within the pool of memory. Related portions can be stored non-consecutively in the pool of memory. The pool of memory can store different portions of decrypted computer code over time.
摘要翻译：这里公开了用于执行加密的计算机代码的系统，方法和非暂时的计算机可读存储介质。配置为执行该方法的系统接收执行加密的计算机代码的请求。响应于该请求，系统识别加密的计算机代码的一部分用于执行，并解密部分以产生解密的计算机代码。然后，系统将解密的计算机代码存储在存储器池中，并从存储器池中执行解密的计算机代码。系统可以基于随机化算法将解密的计算机代码存储在存储器池中，使得加密的计算机代码的相同执行导致在存储器池内的不同可用存储器位置的选择。相关部分可以非连续地存储在存储器池中。内存池可以随时间存储解密的计算机代码的不同部分。

2. 发明申请

US20120260102A1 SYSTEM AND METHOD FOR EXECUTING AN ENCRYPTED BINARY FROM A MEMORY POOL 有权
标题翻译：从记忆池执行加密二进制的系统和方法
公开(公告)号：US20120260102A1
公开(公告)日：2012-10-11
申请号：US13083497
申请日：2011-04-08
申请人： Ganna Zaks , Pierre Betouin , Augustin J. Farrugia , Julien Lerouge , Jon McLachlan , Gideon M. Myles , Cédric Tessier
发明人： Ganna Zaks , Pierre Betouin , Augustin J. Farrugia , Julien Lerouge , Jon McLachlan , Gideon M. Myles , Cédric Tessier
IPC分类号： G06F12/14
CPC分类号： G06F12/1408 , G06F21/51 , G06F21/602 , G06F21/71 , G06F21/72
摘要： Disclosed herein are systems, methods, and non-transitory computer-readable storage media for executing encrypted computer code. A system configured to practice the method receives a request to execute encrypted computer code. In response to the request, the system identifies a portion of the encrypted computer code for execution and decrypts the portion to yield decrypted computer code. Then the system stores the decrypted computer code in a pool of memory and executes the decrypted computer code from the pool of memory. The system can store the decrypted computer code in the pool of memory based on a randomization algorithm so that identical executions of the encrypted computer code result in selections of different available memory locations within the pool of memory. Related portions can be stored non-consecutively in the pool of memory. The pool of memory can store different portions of decrypted computer code over time.
摘要翻译：这里公开了用于执行加密的计算机代码的系统，方法和非暂时的计算机可读存储介质。配置为执行该方法的系统接收执行加密的计算机代码的请求。响应于该请求，系统识别加密的计算机代码的一部分用于执行，并解密部分以产生解密的计算机代码。然后，系统将解密的计算机代码存储在存储器池中，并从存储器池中执行解密的计算机代码。系统可以基于随机化算法将解密的计算机代码存储在存储器池中，使得加密的计算机代码的相同执行导致在存储器池内的不同可用存储器位置的选择。相关部分可以非连续地存储在存储器池中。内存池可以随时间存储解密的计算机代码的不同部分。

3. 发明申请

US20120284688A1 SYSTEM AND METHOD FOR BLURRING INSTRUCTIONS AND DATA VIA BINARY OBFUSCATION 有权
标题翻译：用于通过二进制补偿来引导指令和数据的系统和方法
公开(公告)号：US20120284688A1
公开(公告)日：2012-11-08
申请号：US13100041
申请日：2011-05-03
申请人： Jon McLachlan , Ganna Zaks , Julien Lerouge , Pierre Betouin , Augustin J. Farrugia , Gideon M. Myles , Cédric Tessier
发明人： Jon McLachlan , Ganna Zaks , Julien Lerouge , Pierre Betouin , Augustin J. Farrugia , Gideon M. Myles , Cédric Tessier
IPC分类号： G06F9/44
CPC分类号： G06F21/14 , G06F21/125
摘要： Disclosed herein are systems, methods, and non-transitory computer-readable storage media for obfuscating a computer program. A system configured to practice the method identifies a set of executable instructions at a first location in an instruction section of the computer program and identifies a second location in a data section of the computer program. Then the system moves the set of executable instructions to the second location and patches references in the computer program to the set of executable instructions to point to the second location. The instruction section of the computer program can be labeled as _TEXT,_text and the data section of the computer program is labeled as _DATA,_data. The set of executable instructions can include one or more non-branching instructions optionally followed by a branching instruction. The placement of the first and second locations can be based on features of a target computing architecture, such as cache size.
摘要翻译：本文公开了用于模糊计算机程序的系统，方法和非暂时的计算机可读存储介质。被配置为练习该方法的系统在计算机程序的指令部分中的第一位置识别一组可执行指令，并且识别计算机程序的数据部分中的第二位置。然后系统将可执行指令集移动到第二位置，并将计算机程序中的引用修补到指向第二位置的可执行指令集。计算机程序的指令部分可以标记为_TEXT，_text，计算机程序的数据部分标记为_DATA，_data。该可执行指令集可以包括一个或多个非分支指令，可选地跟随分支指令。第一和第二位置的放置可以基于诸如高速缓存大小的目标计算架构的特征。

4. 发明授权

US08615735B2 System and method for blurring instructions and data via binary obfuscation 有权
标题翻译：通过二进制混淆模糊指令和数据的系统和方法
公开(公告)号：US08615735B2
公开(公告)日：2013-12-24
申请号：US13100041
申请日：2011-05-03
申请人： Jon McLachlan , Ganna Zaks , Julien Lerouge , Pierre Betouin , Augustin J. Farrugia , Gideon M. Myles , Cédric Tessier
发明人： Jon McLachlan , Ganna Zaks , Julien Lerouge , Pierre Betouin , Augustin J. Farrugia , Gideon M. Myles , Cédric Tessier
IPC分类号： G06F9/44
CPC分类号： G06F21/14 , G06F21/125
摘要： Disclosed herein are systems, methods, and non-transitory computer-readable storage media for obfuscating a computer program. A system configured to practice the method identifies a set of executable instructions at a first location in an instruction section of the computer program and identifies a second location in a data section of the computer program. Then the system moves the set of executable instructions to the second location and patches references in the computer program to the set of executable instructions to point to the second location. The instruction section of the computer program can be labeled as _TEXT,_text and the data section of the computer program is labeled as _DATA,_data. The set of executable instructions can include one or more non-branching instructions optionally followed by a branching instruction. The placement of the first and second locations can be based on features of a target computing architecture, such as cache size.
摘要翻译：本文公开了用于模糊计算机程序的系统，方法和非暂时的计算机可读存储介质。被配置为练习该方法的系统在计算机程序的指令部分中的第一位置识别一组可执行指令，并且识别计算机程序的数据部分中的第二位置。然后系统将可执行指令集移动到第二位置，并将计算机程序中的引用修补到指向第二位置的可执行指令集。计算机程序的指令部分可以标记为_TEXT，_text，计算机程序的数据部分标记为_DATA，_data。该可执行指令集可以包括一个或多个非分支指令，可选地跟随分支指令。第一和第二位置的放置可以基于诸如高速缓存大小的目标计算架构的特征。

5. 发明申请

US20120179898A1 SYSTEM AND METHOD FOR ENFORCING SOFTWARE SECURITY THROUGH CPU STATISTICS GATHERED USING HARDWARE FEATURES 审中-公开
标题翻译：通过使用硬件特性获得CPU统计信息执行软件安全的系统和方法
公开(公告)号：US20120179898A1
公开(公告)日：2012-07-12
申请号：US12987743
申请日：2011-01-10
申请人： Pierre Betouin , Jon McLachlan , Gianpaolo Fasoli , Julien Lerouge , Ganna Zaks , Augustin J. Farrugia
发明人： Pierre Betouin , Jon McLachlan , Gianpaolo Fasoli , Julien Lerouge , Ganna Zaks , Augustin J. Farrugia
IPC分类号： G06F9/30
CPC分类号： G06F9/3005 , G06F9/30076 , G06F9/3851 , G06F11/3476 , G06F21/71 , G06F2201/865 , G06F2201/88 , G06F2221/2101
摘要： This disclosure is directed to measuring hardware-based statistics, such as the number of instructions executed in a specific section of a program during execution, for enforcing software security. The counting can be accomplished through a specific set of instructions, which can either be implemented in hardware or included in the instruction set of a virtual machine. For example, the set of instructions can include atomic instructions of reset, start, stop, get instruction count, and get CPU cycle count. To obtain information on a specific section of code, a software developer can insert start and stop instructions around the desired code section. For each instruction in the identified code block, when the instruction is executed, a counter is incremented. The counter can be stored in a dedicated register. The gathered statistics can be used for a variety of purposes, such as detecting unauthorized code modifications or measuring code performance.
摘要翻译：本公开涉及测量基于硬件的统计，诸如在执行期间在程序的特定部分中执行的指令的数量，用于执行软件安全性。计数可以通过一组特定的指令来实现，这些指令可以在硬件中实现，也可以包含在虚拟机的指令集中。例如，该指令集可以包括复位，开始，停止，获取指令计数以及获取CPU周期计数的原子指令。要获取有关特定部分代码的信息，软件开发人员可以在所需代码段周围插入启动和停止指令。对于识别的代码块中的每个指令，执行指令时，计数器递增。计数器可以存储在专用寄存器中。收集的统计信息可以用于各种目的，例如检测未经授权的代码修改或测量代码性能。

6. 发明申请

US20110167414A1 SYSTEM AND METHOD FOR OBFUSCATION BY COMMON FUNCTION AND COMMON FUNCTION PROTOTYPE 有权
标题翻译：通过共同功能和常用功能原型进行OBFUSCING的系统和方法
公开(公告)号：US20110167414A1
公开(公告)日：2011-07-07
申请号：US12651953
申请日：2010-01-04
申请人： Christopher Arthur Lattner , Tanya Michelle Lattner , Julien Lerouge , Ginger M. Myles , Augustin J. Farrugia , Pierre Betouin
发明人： Christopher Arthur Lattner , Tanya Michelle Lattner , Julien Lerouge , Ginger M. Myles , Augustin J. Farrugia , Pierre Betouin
IPC分类号： G06F9/45
CPC分类号： G06F8/70 , G06F21/14
摘要： Disclosed herein are systems, methods, and computer-readable storage media for obfuscating by a common function. A system configured to practice the method identifies a set of functions in source code, generates a transformed set of functions by transforming each function of the set of functions to accept a uniform set of arguments and return a uniform type, and merges the transformed set of functions into a single recursive function. The single recursive function can allocate memory in the heap. The stack can contain a pointer to the allocated memory in the heap. The single recursive function can include instructions for creating and explicitly managing a virtual stack in the heap. The virtual stack can emulate what would happen to the real stack if one of the set of functions was called. The system can further compile the source code including the single recursive function.
摘要翻译：本文公开了用于通过共同功能进行混淆的系统，方法和计算机可读存储介质。被配置为实施该方法的系统识别源代码中的一组函数，通过将函数集合的每个函数变换为接受统一的参数集合并返回统一类型来生成变换的函数集合，并且将经变换的集合函数转换为单个递归函数。单个递归函数可以在堆中分配内存。堆栈可以包含指向堆中分配的内存的指针。单个递归函数可以包括用于创建和显式管理堆中的虚拟堆栈的说明。如果调用了一组函数，虚拟堆栈可以模拟真实堆栈将会发生什么。该系统可以进一步编译包含单个递归函数的源代码。

7. 发明申请

US20110167407A1 SYSTEM AND METHOD FOR SOFTWARE DATA REFERENCE OBFUSCATION 审中-公开
标题翻译：用于软件数据参考的系统和方法
公开(公告)号：US20110167407A1
公开(公告)日：2011-07-07
申请号：US12683145
申请日：2010-01-06
申请人： Pierre Betouin , Mathieu Ciet , Augustin J. Farrugia , Julien Lerouge , Ginger M. Myles
发明人： Pierre Betouin , Mathieu Ciet , Augustin J. Farrugia , Julien Lerouge , Ginger M. Myles
IPC分类号： G06F9/44
CPC分类号： G06F21/14
摘要： Disclosed herein are systems, methods, and computer-readable storage media for obfuscating software data references. The obfuscation process locates pointers to data within source code and loads the pointers into an ordered set of pools. The process further shuffles the pointers in the ordered set of pools and adds a function within the source code that when executed uses the ordered set of pools to retrieve the data. The obfuscation process utilizes pool entry shuffling, pool chaining shuffling and cross-pointer shuffling.
摘要翻译：本文公开了用于模糊软件数据引用的系统，方法和计算机可读存储介质。混淆过程将指针指向源代码中的数据，并将指针加载到有序的池集中。该过程进一步将指针排序在有序的池集中，并在源代码中添加一个函数，当执行时使用有序的池集来检索数据。混淆过程利用池进入洗牌，池链接洗牌和交叉指针洗牌。

8. 发明授权

US07841010B2 Software or other information integrity verification using variable block length and selection 有权
标题翻译：使用可变块长度和选择的软件或其他信息完整性验证
公开(公告)号：US07841010B2
公开(公告)日：2010-11-23
申请号：US11651359
申请日：2007-01-08
申请人： Julien Lerouge , Pierre Betouin , Gianpaolo Fasoli , Augustin J. Farrugia
发明人： Julien Lerouge , Pierre Betouin , Gianpaolo Fasoli , Augustin J. Farrugia
IPC分类号： G06F7/04 , G06F17/30 , H04N7/16
CPC分类号： G06F21/64
摘要： An integrity verification process and associated apparatus to detect tampering or other alterations to computer code (software) or other computer files, and especially useful to detect tampering with code by hackers who might try to plant their own malicious code in the software. To make the verification process more robust versus hackers, each e.g., object code file to be protected is first selected using some sort of rule, then partitioned into variable length blocks or portions, the lengths varying in an unpredictable manner. Each portion has its checksum or hash value computed. An accompanying verification file is created which includes a vector for each portion including the portion's start address in memory, length, and the computed checksum or hash value. When the code is later to be run (executed) the verification file is conventionally read and each portion is verified by computing its checksum or hash value using the same algorithm as before, and comparing that to the value in the associated verification file vector. Lack of a match in the two values indicates tampering, so execution of the code can be halted.
摘要翻译：完整性验证过程和相关联的设备，用于检测对计算机代码（软件）或其他计算机文件的篡改或其他更改，并且特别有用于检测骇客可能尝试在软件中种植自己的恶意代码的篡改代码。为了使验证过程比黑客更健壮，每个例如待保护的目标代码文件首先使用某种规则来选择，然后被分割成可变长度的块或部分，长度以不可预测的方式变化。每个部分都有其计算的校验和或散列值。创建伴随的验证文件，其中包括每个部分的向量，包括部分在内存中的起始地址，长度以及计算的校验和或哈希值。当代码稍后运行（执行）时，常规地读取验证文件，并且通过使用与之前相同的算法计算其校验和或散列值来验证每个部分，并将其与相关联的验证文件向量中的值进行比较。两个值中缺少匹配表示篡改，因此可以停止执行代码。

9. 发明授权

US08645930B2 System and method for obfuscation by common function and common function prototype 有权
标题翻译：通用功能和通用功能原型混淆的系统和方法
公开(公告)号：US08645930B2
公开(公告)日：2014-02-04
申请号：US12651953
申请日：2010-01-04
申请人： Christopher Arthur Lattner , Tanya Michelle Lattner , Julien Lerouge , Ginger M. Myles , Augustin J. Farrugia , Pierre Betouin
发明人： Christopher Arthur Lattner , Tanya Michelle Lattner , Julien Lerouge , Ginger M. Myles , Augustin J. Farrugia , Pierre Betouin
IPC分类号： G06F9/44 , G06F9/45
CPC分类号： G06F8/70 , G06F21/14
摘要： Disclosed herein are systems, methods, and computer-readable storage media for obfuscating by a common function. A system configured to practice the method identifies a set of functions in source code, generates a transformed set of functions by transforming each function of the set of functions to accept a uniform set of arguments and return a uniform type, and merges the transformed set of functions into a single recursive function. The single recursive function can allocate memory in the heap. The stack can contain a pointer to the allocated memory in the heap. The single recursive function can include instructions for creating and explicitly managing a virtual stack in the heap. The virtual stack can emulate what would happen to the real stack if one of the set of functions was called. The system can further compile the source code including the single recursive function.
摘要翻译：本文公开了用于通过共同功能进行混淆的系统，方法和计算机可读存储介质。被配置为实施该方法的系统识别源代码中的一组函数，通过将函数集合的每个函数变换为接受统一的参数集合并返回统一类型来生成变换的函数集合，并且将经变换的集合函数转换为单个递归函数。单个递归函数可以在堆中分配内存。堆栈可以包含指向堆中分配的内存的指针。单个递归函数可以包括用于创建和显式管理堆中的虚拟堆栈的说明。如果调用了一组函数，虚拟堆栈可以模拟真实堆栈将会发生什么。该系统可以进一步编译包含单个递归函数的源代码。

10. 发明申请

US20080168564A1 Software or other information integrity verification using variable block length and selection 有权
标题翻译：使用可变块长度和选择的软件或其他信息完整性验证
公开(公告)号：US20080168564A1
公开(公告)日：2008-07-10
申请号：US11651359
申请日：2007-01-08
申请人： Julien Lerouge , Pierre Betouin , Gianpaolo Fasoli , Augustin J. Farrugia
发明人： Julien Lerouge , Pierre Betouin , Gianpaolo Fasoli , Augustin J. Farrugia
IPC分类号： G06F12/14
CPC分类号： G06F21/64
摘要： An integrity verification process and associated apparatus to detect tampering or other alterations to computer code (software) or other computer files, and especially useful to detect tampering with code by hackers who might try to plant their own malicious code in the software. To make the verification process more robust versus hackers, each e.g., object code file to be protected is first selected using some sort of rule, then partitioned into variable length blocks or portions, the lengths varying in an unpredictable manner. Each portion has its checksum or hash value computed. An accompanying verification file is created which includes a vector for each portion including the portion's start address in memory, length, and the computed checksum or hash value. When the code is later to be run (executed) the verification file is conventionally read and each portion is verified by computing its checksum or hash value using the same algorithm as before, and comparing that to the value in the associated verification file vector. Lack of a match in the two values indicates tampering, so execution of the code can be halted.
摘要翻译：完整性验证过程和相关联的设备，用于检测对计算机代码（软件）或其他计算机文件的篡改或其他更改，并且特别有用于检测骇客可能尝试在软件中种植自己的恶意代码的篡改代码。为了使验证过程比黑客更健壮，每个例如待保护的目标代码文件首先使用某种规则来选择，然后被分割成可变长度的块或部分，长度以不可预测的方式变化。每个部分都有其计算的校验和或散列值。创建伴随的验证文件，其中包括每个部分的向量，包括部分在内存中的起始地址，长度以及计算的校验和或哈希值。当代码稍后运行（执行）时，常规地读取验证文件，并且通过使用与之前相同的算法计算其校验和或散列值来验证每个部分，并将其与相关联的验证文件向量中的值进行比较。两个值中缺少匹配表示篡改，因此可以停止执行代码。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式