A Computability Perspective on Self-Modifying Programs

14 years 6 months ago

Download hal.archives-ouvertes.fr

Abstract—In order to increase their stealth, malware commonly use the self-modiﬁcation property of programs. By doing so, programs can hide their real code so that it is difﬁcult to deﬁne a signature for it. But then, what is the meaning of those programs: the obfuscated form, or the hidden one? Furthermore, from a computability perspective, it becomes hard to speak about the program since, its own code varies over time. To cope with these issues, we provide an operational semantics for self-modifying programs and we show that they can be constructively rewritten to a non-modifying program. Keywords-Self-modifying code, semantics, computability, virus, obfuscation

Guillaume Bonfante, Jean-Yves Marion, Daniel Reyna

Real-time Traffic

Abstract—In Order | Real Code | SEFM 2009 | Self-modiﬁcation Property | Software Engineering |

claim paper

Post Info
More Details (n/a)

Added	21 May 2010
Updated	21 May 2010
Type	Conference
Year	2009
Where	SEFM
Authors	Guillaume Bonfante, Jean-Yves Marion, Daniel Reynaud-Plantey

Comments (0)

Sciweavers

A Computability Perspective on Self-Modifying Programs

Abstract—In Order | Real Code | SEFM 2009 | Self-modiﬁcation Property | Software Engineering |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers