Surreptitious Software: Obfuscation, Watermarking, and Tamperproofing for Software Protection (Addison-Wesley Software Security)

内容紹介

<i>&ldquo;This book gives thorough, scholarly coverage of an area of growing importance in computer security and is a &lsquo;must have&rsquo; for every researcher, student, and practicing professional in software protection.&rdquo;</i>

&nbsp;&nbsp;&nbsp; &mdash;Mikhail Atallah, Distinguished Professor of Computer Science at Purdue University

<b>Theory, Techniques, and Tools for Fighting Software Piracy, Tampering, and Malicious Reverse Engineering

</b>

The last decade has seen significant progress in the development of techniques for resisting software piracy and tampering. These techniques are indispensable for software developers seeking to protect vital intellectual property. <b> <i>Surreptitious Software</i> </b> is the first authoritative, comprehensive resource for researchers, developers, and students who want to understand these approaches, the level of security they afford, and the performance&nbsp; penalty they incur.

Christian Collberg and Jasvir Nagra bring together techniques drawn from related areas of computer science, including cryptography, steganography, watermarking, software metrics, reverse engineering, and compiler optimization. Using extensive sample code, they show readers how to implement protection schemes ranging from code obfuscation and software fingerprinting to tamperproofing and birthmarking, and discuss the theoretical and practical limitations of these techniques.

Coverage includes

<ul> <li>Mastering techniques that both attackers and defenders use to analyze programs</li> <li>Using code obfuscation to make software harder to analyze and understand</li> <li>Fingerprinting software to identify its author and to trace software pirates </li> <li>Tamperproofing software using guards that detect and respond to illegal modifications of code and data</li> <li>Strengthening content protection through dynamic watermarking and dynamic obfuscation </li> <li>Detecting code theft via software similarity analysis and birthmarking algorithms</li> <li>Using hardware techniques to defend software and media against piracy and tampering </li> <li>Detecting software tampering in distributed system</li> <li>Understanding the theoretical limits of code obfuscation</li> </ul>

著者について

<b>Christian Collberg</b> received a B.Sc. in computer science and numerical analysis and a Ph.D. in computer science from Lund University, Sweden. He is currently an associate professor in the department of computer science at the University of Arizona and has also worked at the University of Auckland, New Zealand, and the Chinese Academy of Sciences in Beijing. Professor Collberg is a leading researcher in the intellectual property protection of software, and also maintains an interest in compiler and programming language research. In his spare time he writes songs, sings, and plays guitar for The Zax and hopes one day to finish his Great Swedish Novel.

<b>Jasvir Nagra</b> received his B.Sc. in mathematics and computer science and a Ph.D. in computer science from the University of Auckland, New Zealand. He&rsquo;s been a postdoctoral scholar on the RE-TRUST project at the University of Trento, where his focus is on applying obfuscation, tamperproofing, and watermarking techniques to protect the integrity of software executing on a remote untrusted platform. His research interests also include the design of programming languages and its impact on the security of applications. He&rsquo;s currently with Google Inc., where he is building Caja, an open source, secure subset of JavaScript. In his spare time Jasvir dabbles with Lego and one day hopes to finish building his Turing machine made entirely out of Lego blocks.