25 Books to Read Before You Die
 
 

Recently Viewed clear list


The Powell's Playlist | August 6, 2014

Graham Joyce: IMG The Powell’s Playlist: Graham Joyce



The Ghost in the Electric Blue Suit is set on the English coast in the hot summer of 1976, so the music in this playlist is pretty much all from the... Continue »
  1. $17.47 Sale Hardcover add to wish list

spacer
Qualifying orders ship free.
$60.25
List price: $64.99
New Trade Paper
Ships in 1 to 3 days
Add to Wishlist
available for shipping or prepaid pickup only
Available for In-store Pickup
in 7 to 12 days
Qty Store Section
3 Remote Warehouse Communications- Information Theory

More copies of this ISBN

Surreptitious Software: Obfuscation, Watermarking, and Tamperproofing for Software Protection (Addison-Wesley Software Security)

by

Surreptitious Software: Obfuscation, Watermarking, and Tamperproofing for Software Protection (Addison-Wesley Software Security) Cover

 

Synopses & Reviews

Publisher Comments:

“Without protection, software is vulnerable to reverse engineering, piracy, and tampering. Every software vendor should be aware of this threat and make use of techniques such as those described inSurreptitious Software to protect their valuable intellectual property. This is the first book of its kind and it provides an excellent description of these challenges as well as possible solutions.”

—Sandy Ring, Founder and CEO of Pikewerks Corporation

“This book gives a thorough scholarly coverage of an area of growing importance in computer security, and is a ‘must have’ for every researcher, student, and practicing professional in software protection.”

—Mikhail Atallah, Distinguished Professor of Computer Science at Purdue University

Breakthrough Techniques for Fighting Software Piracy, Tampering, and Malicious Reverse Engineering

Leading-edge researchers have developed several pioneering approaches to preventing or resisting software piracy and tampering. These techniques are indispensable for software developers seeking to protect vital intellectual property: They can mean the difference between business survival and failure. Surreptitious Software is the first authoritative, comprehensive resource for developers who want to understand them, choose amongst them, and apply them with minimal performance impact.

Christian Collberg and Jasvir Nagra bring together techniques drawn from all areas of computer science, including cryptography, steganography, watermarking, software metrics, reverse engineering, and compiler optimization. Using extensive sample code, they show how to implement protection schemes ranging from birthmarking and fingerprinting to code obfuscation. They also demonstrate how to manage virtually any IP protection challenge, from tracing piracy to preventing the removal of license checks.

Coverage includes

•    Predicting the comparative effectiveness of different algorithms and approaches in resisting attack

•    Mastering techniques that both attackers and defenders use to analyze programs

•    Using code obfuscation to make software harder to read, understand, and steal

•    Fingerprinting software to identify the source of piracy

•    Tamperproofing software with authorization checks, guards, and other techniques

•    Strengthening content protection through dynamic watermarks

•    Resisting piracy via software similarity analysis and birthmarking algorithms

•    Using software to defend against hardware exploits

Whatever your role in protecting software or content, it’s harder than ever to stay ahead of the crackers and pirates. You can’t do it without the tools, techniques, and code you’ll find in Surreptitious Software.

Synopsis:

“This book gives thorough, scholarly coverage of an area of growing importance in computer security and is a ‘must have’ for every researcher, student, and practicing professional in software protection.”

    —Mikhail Atallah, Distinguished Professor of Computer Science at Purdue University

Theory, Techniques, and Tools for Fighting Software Piracy, Tampering, and Malicious Reverse Engineering

The last decade has seen significant progress in the development of techniques for resisting software piracy and tampering. These techniques are indispensable for software developers seeking to protect vital intellectual property. Surreptitious Software is the first authoritative, comprehensive resource for researchers, developers, and students who want to understand these approaches, the level of security they afford, and the performance  penalty they incur.

Christian Collberg and Jasvir Nagra bring together techniques drawn from related areas of computer science, including cryptography, steganography, watermarking, software metrics, reverse engineering, and compiler optimization. Using extensive sample code, they show readers how to implement protection schemes ranging from code obfuscation and software fingerprinting to tamperproofing and birthmarking, and discuss the theoretical and practical limitations of these techniques.

Coverage includes

  • Mastering techniques that both attackers and defenders use to analyze programs
  • Using code obfuscation to make software harder to analyze and understand
  • Fingerprinting software to identify its author and to trace software pirates
  • Tamperproofing software using guards that detect and respond to illegal modifications of code and data
  • Strengthening content protection through dynamic watermarking and dynamic obfuscation
  • Detecting code theft via software similarity analysis and birthmarking algorithms
  • Using hardware techniques to defend software and media against piracy and tampering
  • Detecting software tampering in distributed system
  • Understanding the theoretical limits of code obfuscation

About the Author

Christian Collberg received a B.Sc. in computer science and numerical analysis and a Ph.D. in computer science from Lund University, Sweden. He is currently an associate professor in the department of computer science at the University of Arizona and has also worked at the University of Auckland, New Zealand, and the Chinese Academy of Sciences in Beijing. Professor Collberg is a leading researcher in the intellectual property protection of software, and also maintains an interest in compiler and programming language research. In his spare time he writes songs, sings, and plays guitar for The Zax and hopes one day to finish his Great Swedish Novel.

Jasvir Nagra received his B.Sc. in mathematics and computer science and a Ph.D. in computer science from the University of Auckland, New Zealand. He’s been a postdoctoral scholar on the RE-TRUST project at the University of Trento, where his focus is on applying obfuscation, tamperproofing, and watermarking techniques to protect the integrity of software executing on a remote untrusted platform. His research interests also include the design of programming languages and its impact on the security of applications. He’s currently with Google Inc., where he is building Caja, an open source, secure subset of JavaScript. In his spare time Jasvir dabbles with Lego and one day hopes to finish building his Turing machine made entirely out of Lego blocks.

Table of Contents

Preface xv

About the Authors xxv

Acknowledgments xxvii

Chapter 1: What Is Surreptitious Software?      1

1.1   Setting the Scene 1

1.2   Attack and Defense 6

1.3   Program Analysis 7

1.4   Code Obfuscation 13

1.5   Tamperproofing 32

1.6   Software Watermarking 36

1.7   Software Similarity 43

1.8   Hardware-Based Protection Techniques 49

1.9   Discussion 55

1.10 Notation 58

Chapter 2: Methods of Attack and Defense      59

2.1   Attack Strategies 60

2.2   Defense Strategies 86

2.3   Discussion 114

Chapter 3: Program Analysis      117

3.1   Static Analysis 118

3.2   Dynamic Analysis 145

3.3   Reconstituting Source 170

3.4   Pragmatic Analysis 190

3.5   Discussion 198

Chapter 4: Code Obfuscation      201

4.1   Semantics-Preserving Obfuscating Transformations 202

4.2   Definitions 217

4.3   Complicating Control Flow 225

4.4   Opaque Predicates 246

4.5   Data Encodings 258

4.6   Breaking Abstractions 277

4.7   Discussion 298

Chapter 5: Obfuscation Theory      301

5.1   Definitions 304

5.2   Provably Secure Obfuscation: Possible or Impossible? 307

5.3   Provably Secure Obfuscation: It’s Possible (Sometimes)! 313

5.4   Provably Secure Obfuscation: It’s Impossible (Sometimes)! 335

5.5   Provably Secure Obfuscation: Can It Be Saved? 344

5.6   Discussion 354

Chapter 6: Dynamic Obfuscation      357

6.1   Definitions 360

6.2   Moving Code Around 362

6.3   Encryption 383

6.4   Discussion 398

Chapter 7: Software Tamperproofing      401

7.1   Definitions 405

7.2   Introspection 412

7.3   Algorithm TPTCJ: Response Mechanisms 440

7.4   State Inspection 444

7.5   Remote Tamperproofing 453

7.6   Discussion 464

Chapter 8: Software Watermarking      467

8.1   History and Applications 468

8.2   Watermarking Software 478

8.3   Definitions 480

8.4   Watermarking by Permutation 486

8.5   TamperproofingWatermarks 494

8.6   Improving Resilience 498

8.7   Improving Stealth 505

8.8   Steganographic Embeddings 522

8.9   SplittingWatermark Integers 526

8.10 Graph Codecs 533

8.11 Discussion 537

Chapter 9: Dynamic Watermarking      541

9.1   Algorithm WMCT: Exploiting Aliasing 546

9.2   Algorithm WMNT: Exploiting Parallelism 565

9.3   Algorithm WMCCDKHLSpaths: Expanding Execution Paths 583

9.4   Algorithm WMCCDKHLSbf : Tamperproofing Execution Paths 592

9.5   Discussion 598

Chapter 10: Software Similarity Analysis      601

10.1   Applications 602

10.2   Definitions 611

10.3   k-gram-Based Analysis 616

10.4   API-Based Analysis 625

10.5   Tree-Based Analysis 631

10.6   Graph-Based Analysis 635

10.7   Metrics-Based Analysis 644

10.8   Discussion 652

Chapter 11: Hardware for Protecting Software      655

11.1   Anti-Piracy by Physical Distribution 657

11.2   Authenticated Boot Using a Trusted Platform Module 670

11.3   Encrypted Execution 683

11.4   Attacks on Tamperproof Devices 695

11.5   Discussion 711

Bibliography 713

Index 737

Product Details

ISBN:
9780321549259
Author:
Collberg, Christian
Publisher:
Addison-Wesley Professional
Author:
Nagra, Jasvir
Author:
Myles, Ginger
Subject:
Information Theory
Subject:
Social Aspects - General
Subject:
Computer security
Subject:
Data protection
Subject:
Security - General
Subject:
Security
Subject:
Communications-Information Theory
Copyright:
Edition Description:
Trade paper
Series:
Addison-Wesley Software Security Series
Publication Date:
July 2009
Binding:
TRADE PAPER
Grade Level:
Professional and scholarly
Language:
English
Illustrations:
Y
Pages:
792
Dimensions:
9.00x7.00x1.70 in. 2.65 lbs.

Related Subjects

Computers and Internet » Computers Reference » General
Computers and Internet » Computers Reference » Social Aspects » General
Computers and Internet » Networking » Computer Security
Computers and Internet » Software Engineering » General
Computers and Internet » Software Engineering » Quality Assurance and Testing
Engineering » Communications » Information Theory

Surreptitious Software: Obfuscation, Watermarking, and Tamperproofing for Software Protection (Addison-Wesley Software Security) New Trade Paper
0 stars - 0 reviews
$60.25 In Stock
Product details 792 pages Addison-Wesley Professional - English 9780321549259 Reviews:
"Synopsis" by , “This book gives thorough, scholarly coverage of an area of growing importance in computer security and is a ‘must have’ for every researcher, student, and practicing professional in software protection.”

    —Mikhail Atallah, Distinguished Professor of Computer Science at Purdue University

Theory, Techniques, and Tools for Fighting Software Piracy, Tampering, and Malicious Reverse Engineering

The last decade has seen significant progress in the development of techniques for resisting software piracy and tampering. These techniques are indispensable for software developers seeking to protect vital intellectual property. Surreptitious Software is the first authoritative, comprehensive resource for researchers, developers, and students who want to understand these approaches, the level of security they afford, and the performance  penalty they incur.

Christian Collberg and Jasvir Nagra bring together techniques drawn from related areas of computer science, including cryptography, steganography, watermarking, software metrics, reverse engineering, and compiler optimization. Using extensive sample code, they show readers how to implement protection schemes ranging from code obfuscation and software fingerprinting to tamperproofing and birthmarking, and discuss the theoretical and practical limitations of these techniques.

Coverage includes

  • Mastering techniques that both attackers and defenders use to analyze programs
  • Using code obfuscation to make software harder to analyze and understand
  • Fingerprinting software to identify its author and to trace software pirates
  • Tamperproofing software using guards that detect and respond to illegal modifications of code and data
  • Strengthening content protection through dynamic watermarking and dynamic obfuscation
  • Detecting code theft via software similarity analysis and birthmarking algorithms
  • Using hardware techniques to defend software and media against piracy and tampering
  • Detecting software tampering in distributed system
  • Understanding the theoretical limits of code obfuscation

spacer
spacer
  • back to top
Follow us on...




Powell's City of Books is an independent bookstore in Portland, Oregon, that fills a whole city block with more than a million new, used, and out of print books. Shop those shelves — plus literally millions more books, DVDs, and gifts — here at Powells.com.