[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Request: tamper-proofing executables

To: [email protected]
Subject: Re: Request: tamper-proofing executables
From: Ian Farquhar <[email protected]>
Date: Mon, 11 Jul 1994 09:08:59 +1000 (EST)
In-Reply-To: <[email protected]> from "[email protected] +1-510-484-6204" at Jul 10, 94 03:07:20 am
Sender: [email protected]

>Some people have suggested code that does things like encrypt some 
>critical parts of the code and decode them on the fly at runtime,
>using a key that's generated by checksumming the file and XORing
>with the last 8 bytes or some variant.  

The neatest trick I heard of was to use the 68000's single step mode
to decrypt each word of the program on the fly, run it, then write it back
reencrypted under another key, so that a decrypted copy never existed in 
memory, and what was there was a moving target.  Unfortunately, the decrypting 
software did sit in memory, and so you could eventually hack that right out,
and decode the core image.

>I've heard people talk about doing totally encrypted computation,
>but I'm not sure whether anything practical hs been implemented.

There was a CMU (I think) paper on the subject, but it assumed fully
protected hardware (CPU's wrapped in huge quantities of wire all sealed in
epoxy etc.)  Such hardware tricks - as I think the NSA learned with
ViaLink - are never completely satisfactory. :)

							Ian.

Follow-Ups:
- Re: Request: tamper-proofing executables
  - From: [email protected] (Arsen Ray Arachelian)
- Re: Request: tamper-proofing executables
  - From: Roger Bryner <[email protected]>

References:
- Re: Request: tamper-proofing executables
  - From: [email protected] ([email protected] +1-510-484-6204)

Prev by Date: Jim Choate says we have nothing better to do!
Next by Date: Re: Bit counting
Prev by thread: Re: Request: tamper-proofing executables
Next by thread: Re: Request: tamper-proofing executables
Index(es):
- Date
- Thread