Upload File

[ieee 14th working conference on reverse engineering (wcre 2007) - vancouver, bc, canada...

  • Home
  • Documents
  • [IEEE 14th Working Conference on Reverse Engineering (WCRE 2007) - Vancouver, BC, Canada (2007.10.28-2007.10.31)] 14th Working Conference on Reverse Engineering (WCRE 2007) - The Dark
1
The Dark Side of Software Reverse Engineering Donald J. Reifer, President Reifer Consultants, Inc., USA [email protected] Abstract During the past decade, substantial advances have been made in the field of software reverse engineering. Tools and techniques that have been developed for program understanding, design recovery and reengineering and/or refactoring have been commercialized and deployed to reduce the software maintenance burden. However, along with the good comes the dark side of software reverse engineering. These same tools and techniques can be and have been used for nefarious purposes. Take the disassemblers/debuggers used for exploring binary programs for which source code is not available. Besides being able to figure out what functions the software performs and in what manner, these tools can be used to identify sensitive information hidden in the code (data, algorithms, etc.). For example, such tools can be used to get at this sensitive information even when it is guarded, obfuscated or encrypted. In addition, those tools and techniques employed to figure out how a program works can also be used to determine how it breaks. For example, exploiters can use the same exceptions that were put into the code to improve safety to crash the system. The challenge posed to the reverse engineering community is to find ways to prevent the misuse of their technology along with its proper use.

Upload: donald-j

Post on 11-Mar-2017

212 views

Category:

Documents


0 download

Report

TRANSCRIPT

Page 1: [IEEE 14th Working Conference on Reverse Engineering (WCRE 2007) - Vancouver, BC, Canada (2007.10.28-2007.10.31)] 14th Working Conference on Reverse Engineering (WCRE 2007) - The Dark

The Dark Side of Software Reverse Engineering

Donald J. Reifer, PresidentReifer Consultants, Inc., USA

[email protected]

Abstract

During the past decade, substantial advances have been made in the field of software reverse engineering. Tools andtechniques that have been developed for program understanding, design recovery and reengineering and/or refactoringhave been commercialized and deployed to reduce the software maintenance burden. However, along with the good comesthe dark side of software reverse engineering. These same tools and techniques can be and have been used for nefariouspurposes. Take the disassemblers/debuggers used for exploring binary programs for which source code is not available.Besides being able to figure out what functions the software performs and in what manner, these tools can be used to identifysensitive information hidden in the code (data, algorithms, etc.). For example, such tools can be used to get at this sensitiveinformation even when it is guarded, obfuscated or encrypted. In addition, those tools and techniques employed to figure outhow a program works can also be used to determine how it breaks. For example, exploiters can use the same exceptions thatwere put into the code to improve safety to crash the system. The challenge posed to the reverse engineering community is tofind ways to prevent the misuse of their technology along with its proper use.

QualityGate on CSMR WCRE 2014 conference

philip kotler - SAGE Pub · Philip Kotler 2016 First published 2016 The Reverse Pyramid Organizational Chart from KOTLER, PHILIP; KELLER, KEVIN LANE, MARKETING MANAGEMENT, 14th edition

Presentation of Capabilities Reverse Logistics...Presentation of Capabilities Reverse Logistics v081617 Reverse Logistics About Us Description of Services Reverse Distribution Channels

Dansk Mejeriteknisk Selskab Billund, June 14th 2018 ... · Ultra High Pressure RO and NF Technology 8 • Reverse Osmosis is a widely used technology for concentration of liquids

Welcome to WCRE 2013 in Koblenz 14-17 October 2013softlang/wcre13-booklet.pdf · Welcome to WCRE 2013 in Koblenz 14-17 October 2013 Sponsored by: Technical co-sponsor: ... 15.45 Traceability

SQA-Mashup @CSMR-WCRE 2014

ECOS: Ecological Studies of Open Source Software Ecosystems (@ CSMR-WCRE 2014 Projects Track)

Migrating Legacy Spreadsheets-based Systems to …wpage.unina.it/ptramont/Download/WCRE-CSMR 2014...Data Model Reverse Engineering Structure based rules (SBRs) analyze the structure

1. Introduction The Evolution of Reverse Mortgages Sale-Leaseback Transactions Reverse Annuity Mortgage Reverse Mortgage Current Reverse Mortgage Plans

44CON London 2015 - reverse reverse engineering

REVERSE OSMOSIS TECHNOLOGY - Matten Technologies · REVERSE OSMOSIS TECHNOLOGY ... SYSTEM DESIGN, FEATURES AND BENEFITS Matten Reverse Osmosis Systems REVERSE OSMOSIS

Stuttgart October 2001 From an informal textual lexicon to a well-structured lexical database: An experiment in data reverse engineering WCRE 2001, Stuttgart,

Reverse Engineering - agz.esagz.es/Reverse-Engineering/Basic/Reverse Engineering [Security... · © 2008 Security Awareness Korea - i - Reverse Engineering Table of Content Module

ISSN 0918~2365 - core.ac.uk · Colpoda aspera . I:MT . Q ..... tfljmt~~ . ... Nakamasu F. Akutsu H. Hongo F. Shinjio A, ... es wcre carried

Triangularwave Technologies, Inc. Explore Innovative Solutions RO_16pg.pdf · REVERSE OSMOSIS REVERSE OSMOSIS REVERSE OSMOSIS Reverse Osmosis? Reverse Osmosis (RO) is a modern process

131016 wcre-matching

WCRE 2001, Stuttgart, October 2001 Gérard Huet INRIA

14th issue

14th WWC Regulations v114wwc.iwuf.org/.../07/14th-World-Wushu-Championships-Regulations.pdf · REGULATIONS The 14th World Wushu Championships (14th WWC) is the official world championship

A Literature Survey on Empirical Evidence in Software Engineering … · 2014-05-06 · Reverse Engineering (WCRE). We choose these conferences because i) they cover software engineering

14th Arrodissement

Best Reverse Mortgages - Z Reverse Mortgage

Lookbook The Wrap 2019 - Anton Dell€¦ · Reverse! Reverse! Reverse Cloudy/ Blue Sky Reverse Wild cat/ Black

reverse - Verisurf · • CATIA V4 • CATIA V5 • AutoCAD feAtures & benefits reverse BASIC MEASURE BUILD ANALYSIS. reverse Powerful, versAtile reverse engineering solutions

August 27, 2014 14th Workshop Software Engineering Education and Reverse Engineering Role of Agent Middleware in Teaching Distributed Network Application

December 14th

Essentiality of Context in Software Analytics · Haidar Osman, Mircea Lungu, and Oscar Nierstrasz. In Software Maintenance, Reengineering and Reverse Engineering (CSMR-WCRE), 2014

14th WWC Regulations v1oceaniakungfuwushu.com/wp-content/uploads/2017/05/14th...2 | Page THE 14th WORLD WUSHU CHAMPIONSHIPS REGULATIONS The 14th World Wushu Championships (14th WWC)

Reverse DNS. Overview Principles Creating reverse zones Setting up nameservers Reverse delegation procedures IPv6 reverse delegations Current status

1 of 63 WCRE 1999 / 2009 Experiments with clustering as a software remodularization method Nicolas Anquetil Timothy C. Lethbridge

Bin 2 Plaza - alkhabeer.com · WCRE - Valuation Report

Structuring Reverse and Forward Triangular Mergersmedia.straffordpub.com/products/structuring-reverse-and-forward... · Structuring Reverse and Forward Triangular ... Reverse and

14th amendment

Reverse Engineering archeology: Reverse engineering

On the evolutionary nature of architectural violations - WCRE 2012