• May 03, 2016 News! IJIET Vol. 5, No. 10 has been indexed by EI (Inspec).   [Click]
  • Jun 28, 2017 News!Vol. 7, No. 9 has been indexed by Crossref.
  • Jun 22, 2017 News!Vol. 7, No. 9 issue has been published online!   [Click]
General Information
    • ISSN: 2010-3689
    • Frequency: Bimonthly (2011-2014); Monthly (Since 2015)
    • DOI: 10.18178/IJIET
    • Editor-in-Chief: Prof. Dr. Steve Thatcher
    • Executive Editor: Ms. Nancy Y. Liu
    • Abstracting/ Indexing: EI (INSPEC, IET), Electronic Journals Library, Google Scholar, Crossref and ProQuest
    • E-mail: ijiet@ejournal.net
Editor-in-chief
Prof. Dr. Steve Thatcher
University of South Australia, Australia
It is my honor to be the editor-in-chief of IJIET. The journal publishes good papers which focous on the advanced researches in the field of information and education technology. Hopefully, IJIET will become a recognized journal among the scholars in the filed of information and education technology.
IJIET 2015 Vol.5(8): 571-576 ISSN: 2010-3689
DOI: 10.7763/IJIET.2015.V5.570

An Efficient Categorization of the Instructions Based on Binary Excutables for Dynamic Software Birthmark

Donghoon Lee, Younsung Choi, Jaewook Jung, Jiye Kim, and Dongho Won
Abstract—Software birthmark is a unique characteristic of program extracted from a program without source code. Through the comparison of original program and modified program, code similarity can be measured. Furthermore, birthmark can be used to measure the similarity of existing program to detect code theft or malware. Software birthmark can be mainly divided into static method and dynamic method. In the related works using dynamic method, birthmark was extracted by using API function name, call frequency, grammar structure, opcode, etc. If birthmark is extracted through API function name or call frequency, resilience can be increased but it could cause false-positive in similarity. In addition, extraction method using grammar structure or opcode could increase similarity but it decreases resilience, thereby causing different extraction result even for program with same structure. This paper proposes a method that can simultaneously satisfy resilience and uniqueness by reflecting unique characteristics while maintaining the meaning of instruction through the categorization according to instruction function and the removal of consecutive duplication for dynamic software birthmark, which will also be verified through experiment.

Index Terms—Dynamic software birthmark, code theft detection, information security, dynamic analysis.

The authors are with the School of Information and Communication Engineering, Sungkyunkwan University, Korea (e-mail: dhlee@security.re.kr, yschoi@security.re.kr, jwjung@security.re.kr, jykim@security.re.kr, dhwon@security.re.kr).

[PDF]

Cite: Donghoon Lee, Younsung Choi, Jaewook Jung, Jiye Kim, and Dongho Won, "An Efficient Categorization of the Instructions Based on Binary Excutables for Dynamic Software Birthmark," International Journal of Information and Education Technology vol. 5, no. 8, pp. 571-576, 2015.

Copyright © 2008-2017. International Journal of Information and Education Technology. All rights reserved.
E-mail: ijiet@ejournal.net