Proceedings of the 3rd ACM Workshop on Software Protection

SPRO'19: Proceedings of the 3rd ACM Workshop on Software Protection

November 2019

2019 Proceeding

General Chair:
Paolo Falcarin
University of East London, UK
,
Program Chair:
Michael 'MiZu' Zunke
Thales Group, Germany

Publisher:

Association for Computing Machinery
New York
NY
United States

Conference:

CCS '19: 2019 ACM SIGSAC Conference on Computer and Communications Security London United Kingdom 15 November 2019

ISBN:

978-1-4503-6835-3

Published:

15 November 2019

Sponsors:

SIGSAC

Recommend ACM DL

ALREADY A SUBSCRIBER?SIGN IN

Get Alerts for this ConferenceAlerts Save to BinderBinder

Save to Binder

Create a New Binder

Name

Export CitationCitation

Share on

Next Conference

CCS '24

Sponsor:
sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 14 - 18, 2024

Salt Lake City , UT , USA

Bibliometrics

Citation count

Downloads (6 weeks)

Downloads (12 months)

401

Downloads (cumulative)

3,417

Sections

SPRO'19: Proceedings of the 3rd ACM Workshop on Software Protection

2019

Previous Next

Skip Abstract Section

Abstract

It is our great pleasure to welcome you to the 3rd International Workshop on Software PROtection - SPRO-2019. For the third year, this one-day workshop hopes to bring researchers and practitioners from academia and from industry together in Europe to focus on all matters relevant to the protection of software against man-at-the-end attacks.

For this third edition, we received eight papers from Europe and the United States, of which six were selected for presentation and publication. The papers cover the research areas of reverse engineering protected code, de-obfuscation with machine learning, malware mutation, virtualization obfuscation, code guards, and runtime verification. We are sure the six presentations, spread over two research paper sessions, will help you in acquiring new insights and will spark interesting discussions.

We also encourage attendees to attend the two keynote presentations: one keynote from industry titled "Modern Static Analysis of Obfuscated Code" by Rusty Wagner (BinaryNinja - Vector35), and another keynote from academia titled "Cheat Protection in Online Games" by Stijn Volckaert (KU Leuven). Furthermore, we look forward to the tutorial on the Ghidra open source reverse engineering tool that will be presented by Roman Rohleder (Thales Group).

This valuable and insightful talk, discussion, and hands-on demonstration will guide us to a better understanding of the current state-of-the-art and of the challenges our community should focus and collaborate on in the near future.

Proceeding Downloads

PDF(Title Page, Copyright, Welcome, Contents, Organization, Sponsors)

PDF(Author Index)

Skip Table Of Content Section

Select All

Export Citations Save to Binder

SESSION: Industry Keynote Address

keynote

Modern Static Analysis of Obfuscated Code

Rusty Wagner

pp 1https://doi.org/10.1145/3338503.3357718

Static analysis tools have improved significantly in recent years with advances in intermediate representations, symbolic execution, constraint solving, control flow recovery, and static data flow analysis. Scripting of static analysis has improved at ...

- 2
- 217
Metrics
Total Citations2
Total Downloads217
Last 12 Months23
Last 6 weeks3

Abstract
Get Access

SESSION: Research Papers: Reverse Engineering

research-article

Defeating Opaque Predicates Statically through Machine Learning and Binary Analysis

Ramtine Tofighi-Shirazi,
Irina-Mariuca Asavoae,
Philippe Elbaz-Vincent,
Thanh-Ha Le

pp 3–14https://doi.org/10.1145/3338503.3357719

We present a new approach that bridges binary analysis techniques with machine learning classification for the purpose of providing a static and generic evaluation technique for opaque predicates, regardless of their constructions. We use this technique ...

- 10
- 302
Metrics
Total Citations10
Total Downloads302
Last 12 Months57
Last 6 weeks12

Abstract
Get Access

research-article

MetaHunt: Towards Taming Malware Mutation via Studying the Evolution of Metamorphic Virus

Li Wang,
Dongpeng Xu,
Jiang Ming,
Yu Fu,
Dinghao Wu

pp 15–26https://doi.org/10.1145/3338503.3357720

As the underground industry of malware prospers, malware developers consistently attempt to camouflage malicious code and undermine malware detection with various obfuscation schemes. Among them, metamorphism is known to have the potential to defeat the ...

- 4
- 225
Metrics
Total Citations4
Total Downloads225
Last 12 Months34
Last 6 weeks8

Abstract
Get Access

research-article

SATURN - Software Deobfuscation Framework Based On LLVM

Peter Garba,
Matteo Favaro

pp 27–38https://doi.org/10.1145/3338503.3357721

The strength of obfuscated software has increased over the recent years. Compiler based obfuscation has become the de facto standard in the industry and recent papers also show that injection of obfuscation techniques is done at the compiler level. In ...

- 11
- 393
Metrics
Total Citations11
Total Downloads393
Last 12 Months77
Last 6 weeks7

Abstract
Get Access

SESSION: Academic Keynote Address

keynote

Cheat Protection in Online Games

Stijn Volckaert

pp 39https://doi.org/10.1145/3338503.3357726

Competitive online video gaming (or eSports for short) is a booming industry. Current estimates predict global revenues of well over 1 billion dollars by the end of this year, Twitch.tv the largest eSports streaming network is now one of the biggest ...

- 0
- 506
Metrics
Total Citations0
Total Downloads506
Last 12 Months68
Last 6 weeks8

Abstract
Get Access

SESSION: Research Papers: Software Protection

research-article

Epona and the Obfuscation Paradox: Transparent for Users and Developers, a Pain for Reversers

Pierrick Brunet,
Béatrice Creusillet,
Adrien Guinet,
Juan Manuel Martinez

pp 41–52https://doi.org/10.1145/3338503.3357722

Code obfuscation aims at protecting the intellectual property of applications delivered in an unmanaged environment. The process usually involves selecting and successively applying various transformation techniques, for instance at compile time, with ...

- 2
- 120
Metrics
Total Citations2
Total Downloads120
Last 12 Months10
Last 6 weeks0

Abstract
Get Access

research-article

VirtSC: Combining Virtualization Obfuscation with Self-Checksumming

Mohsen Ahmadvand,
Daniel Below,
Sebastian Banescu,
Alexander Pretschner

pp 53–63https://doi.org/10.1145/3338503.3357723

Self-checksumming (SC) is a tamper-proofing technique that ensures certain program segments (code) in memory hash to known values at runtime. SC has few restrictions on application and hence can protect a vast majority of programs. The code verification ...

- 1
- 135
Metrics
Total Citations1
Total Downloads135
Last 12 Months12
Last 6 weeks0

Abstract
Get Access

research-article

Detecting Fault Injection Attacks with Runtime Verification

Ali Kassem,
Yliès Falcone

pp 65–76https://doi.org/10.1145/3338503.3357724

Fault injections are increasingly used to attack/test secure applications. In this paper, we define formal models of runtime monitors that can detect fault injections that result in test inversion attacks and arbitrary jumps in the control flow. Runtime ...

- 6
- 135
Metrics
Total Citations6
Total Downloads135
Last 12 Months11
Last 6 weeks0

Abstract
Get Access

SESSION: Tutorial

tutorial

Hands-On Ghidra - A Tutorial about the Software Reverse Engineering Framework

Roman Rohleder

pp 77–78https://doi.org/10.1145/3338503.3357725

In this tutorial, the Ghidra software reverse engineering framework will be presented, its characteristics highlighted and its features to the hitherto industry standard in reverse engineering tools, IDA Pro - the interactive disassembler, compared ...

- 10
- 1,384
Metrics
Total Citations10
Total Downloads1,384
Last 12 Months109
Last 6 weeks16

Abstract
Get Access

Save to Binder

Create a New Binder

Name

Contributors

Paolo Falcarin
University of East London
- Publication Years2003 - 2023
- Publication counts37
- Citation count170
- Available for Download9
- Downloads (cumulative)2,051
- Downloads (12 months)65
- Downloads (6 weeks)11
- Average Downloads per Article228
- Average Citation per Article5
View Full Profile
Michael Mi Zu Zunke
Thales Group
- Publication Years2016 - 2019
- Publication counts2
- Citation count2
- Available for Download2
- Downloads (cumulative)320
- Downloads (12 months)7
- Downloads (6 weeks)2
- Average Downloads per Article160
- Average Citation per Article1
View Full Profile

Recommendations

WiSe '04: Proceedings of the 3rd ACM workshop on Wireless security
Read More
MobileHealth '13: Proceedings of the 3rd ACM MobiHoc workshop on Pervasive wireless healthcare
Read More
NetGames '04: Proceedings of 3rd ACM SIGCOMM workshop on Network and system support for games
Read More

Acceptance Rates

Overall Acceptance Rate8of14submissions,57%

Year	Submitted	Accepted	Rate
SPRO '16	14	8	57%
Overall	14	8	57%

Comments

Export Citations

Select Citation format

Please download or close your previous search result export first before starting a new bulk export.
Preview is not available.
By clicking download,a status dialog will open to start the export process. The process may takea few minutes but once it finishes a file will be downloadable from your browser. You may continue to browse the DL while the export process is in progress.
Download
- Download citation
- Copy citation

Save to Binder

Sections

Proceeding Downloads

Save to Binder

Recommendations

WiSe '04: Proceedings of the 3rd ACM workshop on Wireless security

MobileHealth '13: Proceedings of the 3rd ACM MobiHoc workshop on Pervasive wireless healthcare

NetGames '04: Proceedings of 3rd ACM SIGCOMM workshop on Network and system support for games

Acceptance Rates