• May 14, 2019 News!IJIET Vol. 7, No. 9-Vol. 8, No. 8 have been indexed by EI (Inspec).   [Click]
  • Apr 15, 2019 News![Call for Papers] Special Issue on Education, Research and Innovation   [Click]
  • Jun 11, 2019 News!Vol. 9, No. 7 issue has been published online!   [Click]
General Information
    • ISSN: 2010-3689 (Online)
    • Abbreviated Title: Int. J. Inf. Educ. Technol.
    • Frequency: Monthly
    • DOI: 10.18178/IJIET
    • Editor-in-Chief: Prof. Dr. Steve Thatcher
    • Executive Editor: Ms. Nancy Y. Liu
    • Abstracting/ Indexing: Scopus (Since 2019), EI(INSPEC, IET), EBSCO, Electronic Journals Library, Google Scholar, Crossref, etc.
    • E-mail: ijiet@ejournal.net
Prof. Dr. Steve Thatcher
CQUniversity, Australia
It is my honor to be the editor-in-chief of IJIET. The journal publishes good-quality papers which focous on the advanced researches in the field of information and education technology. Hopefully, IJIET will become a recognized journal among the scholars in the related fields.

IJIET 2015 Vol.5(8): 571-576 ISSN: 2010-3689
DOI: 10.7763/IJIET.2015.V5.570

An Efficient Categorization of the Instructions Based on Binary Excutables for Dynamic Software Birthmark

Donghoon Lee, Younsung Choi, Jaewook Jung, Jiye Kim, and Dongho Won
Abstract—Software birthmark is a unique characteristic of program extracted from a program without source code. Through the comparison of original program and modified program, code similarity can be measured. Furthermore, birthmark can be used to measure the similarity of existing program to detect code theft or malware. Software birthmark can be mainly divided into static method and dynamic method. In the related works using dynamic method, birthmark was extracted by using API function name, call frequency, grammar structure, opcode, etc. If birthmark is extracted through API function name or call frequency, resilience can be increased but it could cause false-positive in similarity. In addition, extraction method using grammar structure or opcode could increase similarity but it decreases resilience, thereby causing different extraction result even for program with same structure. This paper proposes a method that can simultaneously satisfy resilience and uniqueness by reflecting unique characteristics while maintaining the meaning of instruction through the categorization according to instruction function and the removal of consecutive duplication for dynamic software birthmark, which will also be verified through experiment.

Index Terms—Dynamic software birthmark, code theft detection, information security, dynamic analysis.

The authors are with the School of Information and Communication Engineering, Sungkyunkwan University, Korea (e-mail: dhlee@security.re.kr, yschoi@security.re.kr, jwjung@security.re.kr, jykim@security.re.kr, dhwon@security.re.kr).


Cite: Donghoon Lee, Younsung Choi, Jaewook Jung, Jiye Kim, and Dongho Won, "An Efficient Categorization of the Instructions Based on Binary Excutables for Dynamic Software Birthmark," International Journal of Information and Education Technology vol. 5, no. 8, pp. 571-576, 2015.

Copyright © 2008-2019. International Journal of Information and Education Technology. All rights reserved.
E-mail: ijiet@ejournal.net