基于反汇编的智能电表软件功能检测模型

doi:10.11772/j.issn.1001-9081.2015.02.0555

计算机应用 ›› 2015, Vol. 35 ›› Issue (2): 555-559.DOI: 10.11772/j.issn.1001-9081.2015.02.0555

基于反汇编的智能电表软件功能检测模型

刘金硕¹, 王谢兵¹, 陈鑫¹, 邓娟²

1. 武汉大学计算机学院, 武汉 430072;
2. 武汉大学国际软件学院, 武汉 430072

收稿日期:2014-08-20 修回日期:2014-11-03 出版日期:2015-02-10 发布日期:2015-02-12
通讯作者: 王谢兵
作者简介:刘金硕(1974-),女,吉林辽源人,副教授,博士,CCF会员,主要研究方向:模式识别、图像处理、高性能计算; 王谢兵(1992-),男,安徽芜湖人,硕士研究生,主要研究方向:信息安全、嵌入式系统、大数据; 陈鑫(1989-),男,河南信阳人,硕士研究生,主要研究方向:图像处理、大数据; 邓娟(1976-),女,湖北武汉人,副教授,博士,主要研究方向:数字图像处理、高性能计算。

Smart meter software function test model based on disassembly technique

LIU Jinshuo¹, WANG Xiebing¹, CHEN Xin¹, DENG Juan²

1. Computer School, Wuhan University, Wuhan Hubei 430072, China;
2. International School of Software, Wuhan University, Wuhan Hubei 430072, China

Received:2014-08-20 Revised:2014-11-03 Online:2015-02-10 Published:2015-02-12

摘要/Abstract

摘要：

电力企业在智能电表的生产过程中发现制造商用于招标展示的样品表和竞标成功后大量投产的批量表存在显著差异。由于检测不足,许多投入实际使用的批量表出现工作状态异常、质量不合格的情况,对这些电表的维护造成了不必要的花费。针对此问题制定了一种智能电表软件功能检测方案,设计了一种嵌入式智能电表代码逆向模型。模型以分析智能电表核心程序从而获取系统运行特征为思路,以反汇编算法分析电表固件代码功能为手段,对嵌入式智能电表进行软件功能差异测试。模型包括固件代码提取、固件代码反汇编和软件功能比较三大模块,在反汇编模块中基于现有的线性扫描和递归遍历算法使用了一种改进的单步扫描算法(SDA)。实际应用时对智能电表批量产品和样品进行比较鉴别,对系统功能的差异测量效果明显;同时使用该模型在维护电力企业已使用电表时可控制拟投产电表与已使用电表功能和质量误差在±20%范围内。

关键词: 智能电表, 固件代码提取, 固件代码反汇编, 单步扫描算法, 软件功能检测

Abstract:

During the procedure of smart meter production, electric power enterprises have noticed the fact that there exist significant differences between sample meters used to check and batch meters for large numbers of production. Lots of batch meters either have an unstable working state or become quality rejected, resulting from lack of detection. Maintenance of these meters causes unnecessary expense. Aiming at this problem, a smart meter software function test scheme was formulated and an embedded smart meter code reversal model was figured out. Taking obtaining system operating characteristics via analysis of smart meter kernel program as main idea, the model operated a software function difference test on smart meter with disassembly technology as means to analyze smart meter firmware code function. The model included three modules, namely firmware code extraction, firmware code disassembly and software function comparison. A Single-step Disassembly Algorithm (SDA) was adopted in firmware code disassembly module based on traditional linear sweep and recursive scanning algorithm. It has remarkable effects when applying the model to sample and batch meters identification. Meanwhile, the model can control function and quality error within 20 percent when maintaining meters of used and to be used.

Key words: smart meter, firmware code extraction, firmware code disassembly, Single-step Disassembly Algorithm (SDA), software function test

中图分类号:

TP311.52

刘金硕, 王谢兵, 陈鑫, 邓娟. 基于反汇编的智能电表软件功能检测模型[J]. 计算机应用, 2015, 35(2): 555-559.

LIU Jinshuo, WANG Xiebing, CHEN Xin, DENG Juan. Smart meter software function test model based on disassembly technique[J]. Journal of Computer Applications, 2015, 35(2): 555-559.

参考文献

[1] KRUEGEL C, ROBERTSON W K, VALEUR F, et al. Static disassembly of obfuscated binaries [EB/OL]. (2004-05-18) [2014-06-15]. https://www.usenix.org/legacy/publications/library/proceedings/sec04/tech/full_papers/kruegel/kruegel_html/disassemble.html.
[2] XI Q, ZENG Y, WANG Q, et al. A code disassembly framework combining dynamic and static state [J]. Journal of Chinese Computer Systems, 2013, 34(10): 2251-2255. (奚琪,曾勇军,王清贤,等. 一种动静结合的代码反汇编框架[J]. 小型微型计算机系统,2013, 34(10): 2251-2255)
[3] ZENG M, ZHAO R, YAO J, et al. A relocation information-based revisited method for disassembly [J]. Computer Science, 2007, 34(7): 284-287. (曾鸣,赵荣彩,姚京松,等. 一种基于重定位信息的二次反汇编算法[J]. 计算机科学,2007, 34(7): 284-287)
[4] XIAO W, ZHANG J. Design of disassembly program based on code and data separation [J]. Computer Engineering and Applications, 1996, 32(5): 33-35. (肖文正,张江陵.代码与数据分离的反汇编程序设计[J]. 计算机工程与应用,1996, 32(5): 33-35)
[5] SCHWARZ B, DEBRAY S, ANDREWS G. Disassembly of executable code revisited [C]//Proceedings of the Ninth Working Conference on Reverse Engineering. Piscataway: IEEE, 2002: 45-54.
[6] NANDA S, LI W, LAM L-C, et al. BIRD: Binary interpretation using runtime disassembly [C]//CGO 2006: Proceedings of the International Symposium on Code Generation and Optimization. Piscataway: IEEE, 2006: 358-370.
[7] JIANG L, HAN X, FEI Q, et al. Study on program structure analyzing algorithm for assembly code [J]. Computer Engineering, 2007, 33(7): 68-69. (蒋烈辉,韩小琨,费勤福,等. 汇编级代码程序结构分析算法研究[J]. 计算机工程,2007, 33(7): 68-69)
[8] WANG Y, SHU N, XUE A. The disassembly scheme and its implementation [J]. Computer Engineering and Design, 2007, 1986, (3):3-9. (王玉聪,舒迺文,薛爱琴. 反汇编的方案及其实现[J]. 计算机工程与设计,1986, (3):3-9.)
[9] DONG R. Application of disassembly technology in embedded software security analysis [J]. Quality and Reliability, 2011(2): 57-59. (董仁飞. 反汇编技术在嵌入式软件安全性分析中的应用[J]. 质量与可靠性,2011(2):57-59.)
[10] CHIKOFSKY E J, CROSS J H, Ⅱ. Reverse engineering and de-sign recovery: a taxonomy [J]. IEEE Software, 1990, 7(1): 13-17.
[11] OUYANG Q. Disassembly and its implementation [M]. Wuhan: Wuhan University Press, 1992. (欧阳清华. 反汇编原理及其实现技术[M]. 武汉:武汉大学出版社,1992)
[12] JIANG L, ZHOU B, FEI Q, et al. Study of structural analysis algorithm for disassembled code [J]. Journal of Chinese Computer Systems, 2007, 28(6): 1060-1063. (蒋烈辉,周博,费勤福,等. 反汇编结果代码结构分析算法研究[J]. 小型微型计算机系统,2007, 28(6): 1060-1063.)

基于反汇编的智能电表软件功能检测模型

Smart meter software function test model based on disassembly technique

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 1

编辑推荐

Metrics