基于白盒CLEFIA实现的软件防篡改方案

Software Tamper Resistance Scheme Based on White-Box CLEFIA Implementation

下载PDF

导出

摘要 2002年,CHOW等人根据数字版权管理(Digital Rights Management,DRM)应用场景定义了白盒攻击环境的概念,并将其模型化为一种极端的攻击模型,即白盒模型。白盒模型颠覆了以往攻击模型中对攻击者能力的诸多限制,从软件保护角度考虑,攻击者被认为拥有对目标软件及其执行的完全控制权。因此,在白盒模型中,数字版权管理系统中的设备,如智能卡、机顶盒等都存在被攻击者篡改的可能。文章基于CLEFIA算法的白盒实现方案,为数字版权管理系统提供一种软件防篡改方案。该方案将软件的二进制代码文件所解释的查找表隐藏在CLEFIA算法的白盒实现方案的查找表集合中,使软件的防篡改安全性与CLEFIA算法的白盒实现方案的加解密正确性结合在一起。一旦软件发生篡改,CLEFIA算法的白盒实现方案的加解密结果将产生错误。CLEFIA算法白盒实现方案的明密文对也将发生变化,而攻击者很难对其进行修复。 In 2002,Chow et al.defined the concept of white-box attack context according to the application scenario of digital rights management(DRM),and modeled it as an extreme attack model,namely white-box model.The white-box model subverts many restrictions on the ability of the attacker in the previous attack model.From the point of view of software protection,the attacker is considered to have complete control over the target software and its execution.Therefore,in the white-box model,devices in digital rights management systems,such as smart cards and set-top boxes,may be tampered with by attackers.Based on the white-box implementation scheme of CLEFIA algorithm,this paper proposed a software tamper-resistance scheme for digital rights management system.This scheme hided the lookup table interpreted by the binary code file of the software in the lookup table set of the white-box implementation scheme of the CLEFIA algorithm,so that the tamper-resistance security of the software was combined with the encryption and decryption correctness of the white-box implementation scheme of the CLEFIA algorithm.If the software suffers tampering,an error will occur in the encryption and decryption result of the white-box implementation of CLEFIA algorithm.In addition,it is difficult for the attacker to repair the correctness of the encryption and decryption of the white-box implementation of the CLEFIA algorithm.

作者罗一诺姚思陈杰董晓丽 LUO Yinuo;YAO Si;CHEN Jie;DONG Xiaoli(School of Telecommunications Engineering,Xidian University,Xi’an 710071,China;Henan Key Laboratory of Network Cryptography Technology,Zhengzhou 100190,China;School of Cyberspace Security,Xi’an University of Posts and Telecommunications,Xi’an 710121,China)

机构地区西安电子科技大学通信工程学院河南省网络密码技术重点实验室西安邮电大学网络空间安全学院

出处《信息网络安全》 CSCD 北大核心 2023年第6期66-73,共8页 Netinfo Security

基金 “十三五”国家密码发展基金[MMJJ20180219] 陕西省自然科学基础研究计划基金[2021JM-126] 河南省网络密码技术重点实验室研究课题[LNCT2022-A08] 陕西省重点研发计划[2023-YBGY-015]。

关键词软件防篡改白盒攻击环境白盒实现查找表 CLEFIA算法 software tamper resistance white-box attack context white-box implementation lookup table CLEFIA algorithm

分类号 TP309 [自动化与计算机技术—计算机系统结构]

引文网络
相关文献

参考文献3

1王朝坤,付军宁,王建民,余志伟.软件防篡改技术综述[J].计算机研究与发展,2011,48(6):923-933. 被引量：25
2林婷婷,来学嘉.对白盒SMS4实现的一种有效攻击[J].软件学报,2013,24(9):2238-2249. 被引量：14
3姚思,陈杰,宫雅婷,徐东.CLEFIA算法的一种新型白盒实现[J].西安电子科技大学学报,2020,47(5):150-158. 被引量：3

二级参考文献53

1Hoi C, Atallah J M. Protecting software code by guards [G]//LNCS 2320: Proc of DRM Workshop. Berlin: Springer, 2001: 125-141.
2Business Software Alliance. Fifth Annual BSA and IDC Global Software Piracy Study [R/OL]. Washington, DC: Business Software Alliance, 2008. [2010-01-16]. http:// portal. bsa. org/ideglobalstudy2007/studies/2007_global_piracy_ study. pdf.
3Business Software Alliance. Sixth Annual BSA and IDC Global Software Piracy Study [R/OL]. Washington, DC: Business Software Alliance, 2009. [2010-01-16]. http:// portal. bsa. org/globalpiracy2008/studies/globalpiracy2008. pdf.
4David L, Thekkath C, Mitchell M, et al. Architectural support for copy and tamper resistant software [C] //Proc of the 9th Int Conf on Architectural Support for Programming Languages and Operating Systems, New York: ACM, 2000: 168-177.
5Aucsmith D. Tamper Resistant Software : An implementation [G]//LNCS 1174: Proc of the 1st Int Workshop on Information Hiding. Berlin: Springer, 1996: 317-333.
6Bryant E D, Atallah M J, Stytz M R. A Survey of Anti-tamper Technologies [J]. CrossTalk: The Journal of Defense Software Engineering, 2004, 17(11): 12-16.
7Gleb N, Nasir M. Preventing piracy, reverse engineering, and tampering[J]. IEEE Computer, 2003, 36(7): 64-71.
8Collberg C, Thomborson C. Watermarking, tamper-proofing, and obfuscation-tools for software protection [J]. IEEE Trans on Software Engineering, 2002, 28(8) : 735-746.
9Giffin J T, Christodoreseu M, Kruger L. Strengthening software self-checksumming via self-modifying code [C] // Proc of the 21st ACSAC. Washington, DC: IEEE Computer Society, 2005:23-32.
10Wurster G, Oorschot P C, Somayaji A, et al. A generic attack on checksumming-based software tamper resistance [C]//Proc of IEEE Syrup on S&P. Washington, DC.. IEEE Computer Society, 2005: 127-138.

共引文献38

1余艳玮,赵亚鑫.基于三线程保护和软件哨兵的防篡改技术[J].计算机应用,2013,33(1):1-3. 被引量：9
2钟家民,侯贵法.一种安全增强的虚拟加密狗共享软件保护方法[J].计算机应用与软件,2013,30(5):323-326. 被引量：1
3周清雷,李斌.基于防篡改的双重软件水印方案[J].计算机工程,2013,39(7):185-188. 被引量：5
4张贵民,李清宝,王炜,朱毅.基于函数级控制流监控的软件防篡改[J].计算机应用,2013,33(9):2520-2524. 被引量：6
5张强.浅谈高校网站安全解决方案[J].实验室科学,2013,16(4):86-89. 被引量：2
6尤作琴.软件防篡改技术综述[J].中国新技术新产品,2013(18):32-32. 被引量：1
7朱毅,李清宝,钟春丽,王炜.独立可执行设备支持的终端代码防篡改技术研究[J].小型微型计算机系统,2013,34(12):2809-2813. 被引量：2
8陈芸,蔡昭权,卢庆武,曾裕林,胡辉.网络应用数据安全综合防护系统的设计与实现[J].现代计算机（中旬刊）,2014(1):62-66. 被引量：1
9吴雅云,庄绍燕,洪瑞安.基于PCI接口的跨网络安全数据通信模式[J].中国医疗设备,2014,29(3):45-47. 被引量：2
10段国云,陈浩,黄文,唐亚纯.一种Web程序防篡改系统的设计与实现[J].计算机工程,2014,40(5):149-153. 被引量：10

1刘强,宋宝燕,纪婉婷,王俊陆.区块链多矿池恶意攻击模型研究[J].计算机科学与探索,2023,17(7):1719-1728. 被引量：1
2Kevin C.Klatt,Kevin Bass,John R.Speakman,Kevin D.Hall.Chowing down:diet considerations in rodent models of metabolic disease[J].Life Metabolism,2023,2(3):10-18.
3闫金彪,王莎,张华荣.甲烷干重整制氢催化剂抗积碳性能研究进展[J].上海工程技术大学学报,2023,37(1):1-6. 被引量：1
4Fatima Amer-Sarsour,Rana Tarabeih,Itzhak Ofek,Fuad A.Iraqi.Lowering fasting blood glucose with non-dialyzable material of cranberry extract is dependent on host genetic background,sex and diet[J].Animal Models and Experimental Medicine,2023,6(3):196-210. 被引量：2
5Chenguang Duan,Yuling Jiao,Yanming Lai,Dingwei Li,Xiliang Lu,Jerry Zhijian Yang.Convergence Rate Analysis for Deep Ritz Method[J].Communications in Computational Physics,2022,31(4):1020-1048. 被引量：4
6Patrick J.Ferrara,Marisa J.Lang,Jordan M.Johnson,Shinya Watanabe,Kelsey L.McLaughlin,John Alan Maschek,Anthony R.P.Verkerke,Piyarat Siripoksup,Amandine Chaix,James E.Cox,Kelsey H.Fisher-Wellman,Katsuhiko Funai.Weight loss increases skeletal muscle mitochondrial energy efficiency in obese mice[J].Life Metabolism,2023,2(2):23-34. 被引量：1
7Jian Wang.The life of Xuan Zhou, founding father of the Gastrodia elata cultivation and industry in China[J].Plant Diversity,2023,45(3):241-242.
8Xiaojing Wu,Xian-Hua Ma,Jie Lin,Xiaohang Yang,Jian-Hui Shi,Zhifang Xie,Yu-Xia Chen,Weiping J.Zhang.Fluorescent visualization and evaluation of NPC1L1- mediated vesicular endocytosis during intestinal cholesterol absorption in mice[J].Life Metabolism,2023,2(2):35-43.

信息网络安全

2023年第6期

浏览历史

内容加载中请稍等...

基于白盒CLEFIA实现的软件防篡改方案

参考文献3

二级参考文献53

共引文献38

相关作者

相关机构

相关主题

浏览历史