Cloud Protection by Obfuscation: Techniques and Metrics
- 1 November 2012
- conference paper
- conference paper
- Published by Institute of Electrical and Electronics Engineers (IEEE)
- p. 369-372
- https://doi.org/10.1109/3pgcic.2012.18
Abstract
This paper presents a survey of software protection based on the concept of security by obscurity, code obfuscation is now a hot topic in the field of digital right management, protecting against reverse engineering and tampering. Obfuscation comes in handy in situations where depending on cryptographic techniques is not enough, this is typical in remote execution situations where the software is executed on an unforeseen exposed hostile environment, such as the new computing platforms: cloud-computing paradigm and smartphones. Obfuscation is popular among malware and virus developers but also game developers and industrials who need to protect their intellectual property. They use it to conceal the operation of their code while executing in an uncontrolled environment. In this paper, we discuss the same concepts but for the different purpose of cloud security. We explore the state-of-the art in techniques and algorithms for software obfuscation. We also address how to assess the strength of these techniques via a concrete set of metrics.Keywords
This publication has 7 references indexed in Scilit:
- Gaming security by obscurityPublished by Association for Computing Machinery (ACM) ,2011
- Malware Obfuscation Techniques: A Brief SurveyPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2010
- Program obfuscationPublished by Association for Computing Machinery (ACM) ,2007
- Information theory-based software metrics and obfuscationJournal of Systems and Software, 2004
- Chapter 43 Incomplete informationPublished by Elsevier BV ,2002
- Information hiding-a surveyProceedings of the IEEE, 1999
- New directions in cryptographyIEEE Transactions on Information Theory, 1976