Static analysis and code protection
Scientific Disciplinary Sector (SSD)
ING-INF/05 - INFORMATION PROCESSING SYSTEMS
I sem. dal Oct 1, 2014 al Jan 30, 2015.
The goal is to reach a deep comprehension and development ability in program analysis and protection. The application area concerns the development of tools for analysis an code certification, reverse engineering of code, digital forensics and code protection against theft (IPP). Particular emphasis is devoted to code protection by code obfuscation, watermarking, tamper-proofing and code attack by malware.
Mathematical bases: Lattice theory and Fixpoint theory; Attack and defense: Attack, Data Flow Analysis, Static Attack, Dynamic Attack, Program Monitoring, Levels of interpretation and specialization, Code Slicing; Approximation: fix point approximation, Abstract Interpretation, Completeness, incompleteness and obfuscation; Obfuscation theory: impossibility and obfuscation via interpretation, Static Obfuscation and Dynamic Obfuscation; Tamper-proofing; Watermarking: definitions (water/birth/finger marking), Static Watermarking, Dynamic Watermarking, Abstract Watermarking; Similarity analysis, Law references and principles of digital forensics.
Cooperative project in SPY-Lab on code analysis and/or protection. The exams are 4, scheduled 1 in each Session, each individual exam scheduled by appointment with the teacher.