A survey on aims and environments of diversification and obfuscation in software security

Shohreh Hosseinzadeh; Sampsa Rauti; Samuel Laurén; Jari Matti Mäkelä; Johannes Holvitie; Sami Hyrynsalmi; Ville Leppänen

doi:10.1145/2983468.2983479

A survey on aims and environments of diversification and obfuscation in software security

Shohreh Hosseinzadeh, Sampsa Rauti, Samuel Laurén, Jari Matti Mäkelä, Johannes Holvitie, Sami Hyrynsalmi, Ville Leppänen

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Scientific › peer-review

9 Citations (Scopus)

Abstract

Diversification and obfuscation methods are promising approaches used tosecuresoftware and prevent malware from functioning. Diversification makes each software instance unique so that malware attacks cannot rely on the knowledge of the program's execution environment and/or internal structure anymore. We present a systematic literature review on the state of-the-art of diversification and obfuscation research aiming to improve software security between 1993 and 2014. As the result of systematic search, in the final phase, 209 related papers were included in this study. In this study we focus on two specific research questions: what are the aims of diversification and obfuscation techniques and what are the environments they are applied to. The former question includes the languages and the execution environments that can benefit from these two techniques, while the second question presents the goals of the techniques and also the type of attacks they mitigate. is held by the owner/author(s). Publication rights licensed to ACM.

Original language	English
Title of host publication	Computer Systems and Technologies 17th International Conference, CompSysTech 2016 - Proceedings
Publisher	ACM
Pages	113-120
Number of pages	8
Volume	1164
ISBN (Electronic)	9781450341820
DOIs	https://doi.org/10.1145/2983468.2983479
Publication status	Published - 23 Jun 2016
Externally published	Yes
Publication type	A4 Article in conference proceedings
Event	17th International Conference on Computer Systems and Technologies, CompSysTech 2016 - Palermo, Italy Duration: 23 Jun 2016 → 24 Jun 2016

Conference

Conference	17th International Conference on Computer Systems and Technologies, CompSysTech 2016
Country/Territory	Italy
City	Palermo
Period	23/06/16 → 24/06/16

Keywords

Diversification
Obfuscation
Software security
Systematic literature review (SLR)

ASJC Scopus subject areas

Human-Computer Interaction
Computer Networks and Communications
Computer Vision and Pattern Recognition
Software

Access to Document

10.1145/2983468.2983479

Cite this

Hosseinzadeh, S., Rauti, S., Laurén, S., Mäkelä, J. M., Holvitie, J., Hyrynsalmi, S., & Leppänen, V. (2016). A survey on aims and environments of diversification and obfuscation in software security. In Computer Systems and Technologies 17th International Conference, CompSysTech 2016 - Proceedings (Vol. 1164, pp. 113-120). ACM. https://doi.org/10.1145/2983468.2983479

@inproceedings{39681c3b0d96475bb0e96e16da17c05e,

title = "A survey on aims and environments of diversification and obfuscation in software security",

abstract = "Diversification and obfuscation methods are promising approaches used tosecuresoftware and prevent malware from functioning. Diversification makes each software instance unique so that malware attacks cannot rely on the knowledge of the program's execution environment and/or internal structure anymore. We present a systematic literature review on the state of-the-art of diversification and obfuscation research aiming to improve software security between 1993 and 2014. As the result of systematic search, in the final phase, 209 related papers were included in this study. In this study we focus on two specific research questions: what are the aims of diversification and obfuscation techniques and what are the environments they are applied to. The former question includes the languages and the execution environments that can benefit from these two techniques, while the second question presents the goals of the techniques and also the type of attacks they mitigate. is held by the owner/author(s). Publication rights licensed to ACM.",

keywords = "Diversification, Obfuscation, Software security, Systematic literature review (SLR)",

author = "Shohreh Hosseinzadeh and Sampsa Rauti and Samuel Laur{\'e}n and M{\"a}kel{\"a}, {Jari Matti} and Johannes Holvitie and Sami Hyrynsalmi and Ville Lepp{\"a}nen",

year = "2016",

month = jun,

day = "23",

doi = "10.1145/2983468.2983479",

language = "English",

volume = "1164",

pages = "113--120",

booktitle = "Computer Systems and Technologies 17th International Conference, CompSysTech 2016 - Proceedings",

publisher = "ACM",

address = "United States",

note = "17th International Conference on Computer Systems and Technologies, CompSysTech 2016 ; Conference date: 23-06-2016 Through 24-06-2016",

}

Hosseinzadeh, S, Rauti, S, Laurén, S, Mäkelä, JM, Holvitie, J, Hyrynsalmi, S & Leppänen, V 2016, A survey on aims and environments of diversification and obfuscation in software security. in Computer Systems and Technologies 17th International Conference, CompSysTech 2016 - Proceedings. vol. 1164, ACM, pp. 113-120, 17th International Conference on Computer Systems and Technologies, CompSysTech 2016, Palermo, Italy, 23/06/16. https://doi.org/10.1145/2983468.2983479

A survey on aims and environments of diversification and obfuscation in software security. / Hosseinzadeh, Shohreh; Rauti, Sampsa; Laurén, Samuel et al.
Computer Systems and Technologies 17th International Conference, CompSysTech 2016 - Proceedings. Vol. 1164 ACM, 2016. p. 113-120.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Scientific › peer-review

TY - GEN

T1 - A survey on aims and environments of diversification and obfuscation in software security

AU - Hosseinzadeh, Shohreh

AU - Rauti, Sampsa

AU - Laurén, Samuel

AU - Mäkelä, Jari Matti

AU - Holvitie, Johannes

AU - Hyrynsalmi, Sami

AU - Leppänen, Ville

PY - 2016/6/23

Y1 - 2016/6/23

N2 - Diversification and obfuscation methods are promising approaches used tosecuresoftware and prevent malware from functioning. Diversification makes each software instance unique so that malware attacks cannot rely on the knowledge of the program's execution environment and/or internal structure anymore. We present a systematic literature review on the state of-the-art of diversification and obfuscation research aiming to improve software security between 1993 and 2014. As the result of systematic search, in the final phase, 209 related papers were included in this study. In this study we focus on two specific research questions: what are the aims of diversification and obfuscation techniques and what are the environments they are applied to. The former question includes the languages and the execution environments that can benefit from these two techniques, while the second question presents the goals of the techniques and also the type of attacks they mitigate. is held by the owner/author(s). Publication rights licensed to ACM.

AB - Diversification and obfuscation methods are promising approaches used tosecuresoftware and prevent malware from functioning. Diversification makes each software instance unique so that malware attacks cannot rely on the knowledge of the program's execution environment and/or internal structure anymore. We present a systematic literature review on the state of-the-art of diversification and obfuscation research aiming to improve software security between 1993 and 2014. As the result of systematic search, in the final phase, 209 related papers were included in this study. In this study we focus on two specific research questions: what are the aims of diversification and obfuscation techniques and what are the environments they are applied to. The former question includes the languages and the execution environments that can benefit from these two techniques, while the second question presents the goals of the techniques and also the type of attacks they mitigate. is held by the owner/author(s). Publication rights licensed to ACM.

KW - Diversification

KW - Obfuscation

KW - Software security

KW - Systematic literature review (SLR)

UR - http://www.scopus.com/inward/record.url?scp=85000983786&partnerID=8YFLogxK

U2 - 10.1145/2983468.2983479

DO - 10.1145/2983468.2983479

M3 - Conference contribution

AN - SCOPUS:85000983786

VL - 1164

SP - 113

EP - 120

BT - Computer Systems and Technologies 17th International Conference, CompSysTech 2016 - Proceedings

PB - ACM

T2 - 17th International Conference on Computer Systems and Technologies, CompSysTech 2016

Y2 - 23 June 2016 through 24 June 2016

ER -

A survey on aims and environments of diversification and obfuscation in software security

Abstract

Conference

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this