Static analysis and code protection (2012/2013)

Course code 4S02908 Teacher Roberto Giacobazzi Coordinator Roberto Giacobazzi training credits 6 Study courses to which this belongs Laurea magistrale in Ingegneria e scienze informatiche"> Laurea magistrale in Ingegneria e scienze informatiche Disciplinary sector ING-INF/05 - Information Processing Systems Teaching language Italian Period I semestre dal Oct 1, 2012 al Jan 31, 2013. Web page http://profs.sci.univr.it/~giaco/asp.html

Links Course news Seminars related to the course

Lecture timetable

Educational objectives

The goal is to reach a deep comprehension and development ability in program analysis and protection. The application area concerns the development of tools for analysis an code certification, reverse engineering of code, digital forensics and code protection against theft (IPP). Particular emphasis is devoted to code protection by code obfuscation, watermarking, tamper-proofing and code attack by malware.

Syllabus

Mathematical bases: Lattice theory and Fixpoint theory; Attack and defense: Attack, Data Flow Analysis, Static Attack, Dynamic Attack, Program Monitoring, Levels of interpretation and specialization, Code Slicing; Approximation: fix point approximation, Abstract Interpretation, Completeness, incompleteness and obfuscation; Obfuscation theory: impossibility and obfuscation via interpretation, Static Obfuscation and Dynamic Obfuscation; Tamper-proofing; Watermarking: definitions (water/birth/finger marking), Static Watermarking, Dynamic Watermarking, Abstract Watermarking; Similarity analysis, Law references and principles of digital forensics.

Exam methods

Cooperative project in SPY-Lab on code analysis and/or protection. The exams are 6, scheduled 2 in each Session, each individual exam scheduled by appointment with the teacher.

Statistics on students' past performance (Art. 2 del D.M. 31/10/2007, n. 544)

Data from AA 2012/2013 are not available yet