A method and system for obfuscating program control flow based on sgx

A technology of control flow and original program, applied in the direction of program/content distribution protection, instrumentation, computing, etc., can solve problems such as high-performance overhead, security limitations, etc., and achieve high confidentiality and ensure confidentiality

Active Publication Date: 2021-05-07
XIDIAN UNIV
View PDF3 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Control flow obfuscation is a straightforward approach to protect the confidentiality of program logic, however, existing control flow obfuscation work mainly focuses on software-based transformations, which have limitations in terms of security and high performance overhead

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A method and system for obfuscating program control flow based on sgx
  • A method and system for obfuscating program control flow based on sgx
  • A method and system for obfuscating program control flow based on sgx

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0047]The present invention will be further described below through specific embodiments.

[0048] It should be noted that the step identification involved in the specific implementation of the present invention is only for making the document look clearer, and the order of the steps can be adjusted accordingly during specific implementation.

[0049] see figure 1 As shown, a method for obfuscating program control flow in the present invention includes:

[0050] S101, hiding variable definitions, hiding the definitions of variables in all branch statement conditions in the original program; the variables are called hidden variables;

[0051] S102, variable hiding, converting all program statements including the hidden variables to hide the hidden variables, and obtaining a converted program and a control flow matrix; the control flow matrix includes the unique identifier of the converted program statement in the original program, right One or more of the identifier of the op...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses an SGX-based program control flow obfuscation method and system. The method includes: hiding the definitions of variables in all branch statement conditions in the original program, and the variables are called hidden variables; All program statements are converted to hide the hidden variables, and the conversion program and the control flow matrix are obtained; the conversion program and the control flow matrix are sent to a remote computing unit, and the conversion program is stored in an untrusted environment of the remote computing unit wherein, the control flow matrix is ​​stored in the trusted environment SGX Enclave of the remote computing unit; based on the control flow matrix, the conversion program is executed in the remote computing unit. The invention combines the program transformation technology and the Intel software protection extension technology, by converting the condition of each branch statement and moving its evaluation to an opaque and credible hardware execution environment, so as to ensure high control flow confidentiality.

Description

technical field [0001] The present invention relates to the technical field of control flow obfuscation, in particular to a program control flow obfuscation method and system, an SGX-based program control flow obfuscation method and system, which can hide the variables of each branch statement condition and protect the remote execution environment scene This ensures the confidentiality of the application logic, preventing the application logic from being obtained and utilized maliciously by external attackers. Background technique [0002] SGX is a hardware function introduced by Intel since the sixth generation of CPU. It is a set of x86-64ISA extensions, which can set up a protected execution environment (called enclave), so that users only need to trust the processor and code users place in their enclave. code within. The enclave is protected by the processor: the processor controls access to the enclave's memory, preventing illegal instructions that attempt to read from...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): G06F21/14G06F21/60
CPCG06F21/14G06F21/602
Inventor 王永智苏翠翠沈玉龙
Owner XIDIAN UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products