Static analysis and code protection (2010/2011)

Course code
4S02908
Name of lecturer
Roberto Giacobazzi
Coordinator
Roberto Giacobazzi
Number of ECTS credits allocated
6
Academic sector
ING-INF/05 - INFORMATION PROCESSING SYSTEMS
Language of instruction
Italian
Period
II semestre dal Mar 1, 2011 al Jun 15, 2011.
Web page
http://profs.sci.univr.it/~giaco/asp.html

Lesson timetable

II semestre
Day Time Type Place Note
Thursday 8:30 AM - 11:30 AM lesson Lecture Hall G  
Friday 8:30 AM - 10:30 AM lesson Lecture Hall G  

Learning outcomes

The goal is to reach a deep comprehension and development ability in program analysis and protection. The application area concerns the development of tools for analysis an code certification, reverse engineering of code and code protection against theft (IPP). Particular emphasis is devoted to code protection by code obfuscation, watermarking, tamper-proofing and code attack by malware.

Syllabus

Program analysis: Anomaly classification, risk analysis and management, static and dynamic, debugging, dataflow Analysis, 0-CFA, intra- e Inter-procedural analysis, Abstract interpretation. Attack techniques and protection:
Code transformation, reverse engineering, program monitors, code slicing,
code obfuscation, SW watermarking, finger-printing and tamper-proofing, program diversification and evolution. Malware analysis, polymorphism and metamorphism. Legal issues in code analysis, attack and protection.

Assessment methods and criteria

Cooperative project in SPY-Lab on code analysis and/or protection.