基于多特征的静态软件胎记提取算法

doi:10.11772/j.issn.1001-9081.2017082068

计算机应用 ›› 2018, Vol. 38 ›› Issue (3): 806-811.DOI: 10.11772/j.issn.1001-9081.2017082068

基于多特征的静态软件胎记提取算法

王曙燕, 赵鹏飞, 孙家泽

西安邮电大学计算机学院, 西安 710121

收稿日期:2017-08-24 修回日期:2017-10-10 出版日期:2018-03-10 发布日期:2018-03-07
通讯作者: 赵鹏飞
作者简介:王曙燕(1964-),女,河南南阳人,教授,博士,CCF会员,主要研究方向:软件测试、数据挖掘;赵鹏飞(1993-),男,陕西西安人,硕士研究生,主要研究方向:计算机软件与理论;孙家泽(1980-),男,河南南阳人,副教授,博士研究生,CCF会员,主要研究方向:智能优化算法。
基金资助:
陕西省工业攻关项目（2017GY-092）。

Software birthmark extraction algorithm based on multiple features

WANG Shuyan, ZHAO Pengfei, SUN Jiaze

School of Computer Science & Technology, Xi'an University of Posts & Telecommunications, Xi'an Shaanxi 710121, China

Received:2017-08-24 Revised:2017-10-10 Online:2018-03-10 Published:2018-03-07
Supported by:
This work is partially supported by Science and Technology Department of Shaanxi Province (2017GY-092).

摘要/Abstract

摘要： 针对使用现有软件胎记进行程序抄袭检测结果不准确的问题，提出一种新的静态软件胎记提取算法。该算法产生的程序胎记由软件的两个方面特征综合生成。算法对源程序和可疑程序进行预处理得到程序元信息，然后通过元信息获取程序的应用程序接口（API）调用集合和指令序列作为两个特征，综合这两项特征生成软件胎记；接着，计算源程序与可疑程序的软件胎记之间的相似度，通过相似度判定两程序之间是否存在抄袭行为。实验验证了该算法得到的软件胎记具有可信性和弹性，与传统的k-gram软件胎记相比更具有弹性。

关键词: 静态软件胎记, 抄袭检测, 应用程序接口调用集合, 指令序列, 特征综合

Abstract: Concerning the low accuracy of existing software birthmark extraction algorithms in detecting code theft problem, a new static software birthmark extraction algorithm was proposed. The birthmark generated by this algorithm covered two kinds of software features. The source program and the suspicious program were preprocessed to get the program meta data, which was used to generate Application Programming Interface (API) call set and instruction sequence as two features. These two features were synthesized to generate software birthmarks. Finally, the similarity of source program and suspicious program was calculated to determine whether there was code theft between the two programs. The experimental result verifies that the birthmark combined by API call set and instruction sequence has credibility and resilience, and has stronger resilience compared with k-gram birthmark.

Key words: static software birthmark, software theft detection, Application Programming Interface (API) call set, instruction sequence, feature synthesis

中图分类号:

TP393.08

王曙燕, 赵鹏飞, 孙家泽. 基于多特征的静态软件胎记提取算法[J]. 计算机应用, 2018, 38(3): 806-811.

WANG Shuyan, ZHAO Pengfei, SUN Jiaze. Software birthmark extraction algorithm based on multiple features[J]. Journal of Computer Applications, 2018, 38(3): 806-811.

参考文献

[1] GROVER D. Program Identification[M]. London:Cambridge University Press,1989:119-150.
[2] MYLES G, COLLBERG C. K-gram based software birthmarks[C]//Proceedings of the 2005 ACM Symposium on Applied Computing. New York:ACM, 2005:314-318.
[3] PARK H, CHOI S, LIM H, et al. Detecting Java theft based on static API trace birthmark[C]//Proceedings of the 3rd International Workshop on Security:Advances in Information and Computer Security. Berlin:Springer, 2008:121-135.
[4] 张杏,徐江峰,李晓阳. 基于系统函数调用频率与指令基本块的软件胎记[J].计算机工程,2016,42(10):86-90.(ZHANG X, XU J F, LI X Y. Software birthmark based on system function call frequency and instruction basic block[J]. Computer Engineering, 2016,42(10):86-90.).
[5] 王勇.基于Java平台的静态软件胎记技术研究[D].郑州:信息工程大学,2013:4-6.(WANG Y. Study on static software birthmarking based on Java platform[D]. Zhengzhou:Information Engineering University, 2013:4-6.)
[6] 黄寿孟,高华玲,潘玉霞. 软件相似性分析算法的研究综述[J]. 计算机科学,2016,43(S1):467-470.(HUANG S M, GAO H L, PAN Y X. Summary of research on similarity analysis of software[J]. Computer Science, 2016,43(S1):467-470.)
[7] 范铭,刘均,郑庆华,等. 基于栈行为动态胎记的软件抄袭检测方法[J]. 山东大学学报(理学版),2014,49(9):9-16.(FAN M, LIU J, ZHENG Q H, et al. SODB:a novel method for software plagiarism detection based on stack operation dynamic birthmark[J]. Journal of Shandong University (Natural Science), 2014, 49(9):9-16.)
[8] 王开云,孔思淇,付云生,等.两种基于双向比较的最长公共子串算法[J].计算机研究与发展,2013,50(11):2444-2454.(WANG K Y, KONG S Q, FU Y S, et al. Two longest common substring algorithms based on bi-directional comparison[J]. Journal of Computer Research and Development, 2013, 50(11):2444-2454.)
[9] 张毅超,车玫,马骏. 求最长公共子串问题的算法分析[J]. 计算机仿真,2007,24(12):97-100.(ZHANG Y C, CHE M, MA J. Analysis of the longest common substring algorithm[J]. Computer Simulation, 2007, 24(12):97-100.)
[10] 马志强,张泽广,闫瑞,等.基于N-Gram模型的蒙古语文本语种识别算法的研究[J].中文信息学报,2016,30(1):133-139.(MA Z Q, ZHANG Z G, YAN R, et al. N-Gram based language identification for Mongolian text[J]. Journal of Chinese Information Processing, 2016, 30(1):133-139.)
[11] 陈林,刘粉林,芦斌,等.基于k-gram频数的静态软件胎记[J].计算机工程,2011,37(4):46-48.(CHEN L, LIU F L, LU B, et al. Static software birthmark based on k-gram frequency[J]. Computer Engineering, 2011, 37(4):46-48.)
[12] 田振洲,刘烃,郑庆华,等.软件抄袭检测研究综述[J].信息安全学报,2016,1(3):52-76.(TIAN Z Z, LIU T, ZHENG Q H, et al. Software plagiarism detection:a survey[J]. Journal of Cyber Security, 2016, 1(3):52-76.)
[13] 喻宝禄,段迅,吴云. BP神经网络数据预测模型的建立及应用[J].计算机与数字程,2016,44(3):482-486.(YU B L, DUAN X, WU Y. Establishment and application of data prediction model based on BP neural network[J]. Computer and Digital Engineering, 2016, 44(3):482-486.)
[14] 王广南.基于系统调用依赖图的程序相似性研究[D].长沙:湖南大学,2009:27-29.(WANG G N. Similarity of programs based on system call dependency graphs[D]. Changsha:Hunan University, 2009:27-29.)
[15] SCHULER D, DALLMEIER V, LINDIG C. A dynamic birthmark for Java[EB/OL].[2017-03-02]. https://www.st.cs.uni-saarland.de/birthmarking/schuler-ase-2007.pdf.

基于多特征的静态软件胎记提取算法

Software birthmark extraction algorithm based on multiple features

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 3

编辑推荐

Metrics

[1]	卢家兴郭帆余敏. 静态检测多态溢出攻击代码的方法[J]. 计算机应用, 2010, 30(12): 3349-3353.
[2]	周立国熊小兵. 基于自封闭代码块的软件保护技术研究[J]. 计算机应用, 2009, 29(3): 817-822.
[3]	吴渝贾学鹏李红波. 基于多特征相似度曲线曲率检测的关键帧提取[J]. 计算机应用, 2008, 28(12): 3084-3088.