Control Flow Obfuscation for FJ using Continuation Passing
Kenny Zhuo Ming Lu
TL;DR
This paper introduces a control flow obfuscation method for Featherweight Java (FJ) using continuation passing style (CPS), enhancing resistance against static analysis attacks without affecting runtime behavior.
Contribution
The paper presents a novel CPS-based source transformation for FJ control flow obfuscation, specifically addressing exception handling and analysis resistance.
Findings
CPS transformation increases difficulty for static analysis attacks.
Obfuscation preserves original program behavior.
Enhanced security against context-insensitive and context-sensitive static analysis.
Abstract
Control flow obfuscation deters software reverse engineering attempts by altering the program's control flow transfer. The alternation should not affect the software's run-time behaviour. In this paper, we propose a control flow obfuscation approach for FJ with exception handling. The approach is based on a source to source transformation using continuation passing style (CPS). We argue that the proposed CPS transformation causes malicious attacks using context insensitive static analysis and context sensitive analysis with fixed call string to lose precision.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsAdvanced Malware Detection Techniques · Security and Verification in Computing · Digital and Cyber Forensics