Hybrid Obfuscation Technique to Protect Source Code From Prohibited Software Reverse Engineering

In this research, a new Hybrid Obfuscation Technique was proposed to prevent prohibited Reverse Engineering. The proposed hybrid technique contains three approaches; first approach is string encryption. The string encryption is about adding a mathematical equation with arrays and loops to the string...

Full description

Saved in:
Bibliographic Details
Published in:IEEE access 2020, Vol.8, p.187326-187342
Main Authors: Al-Hakimi, Asma'a Mahfoud Hezam, Sultan, Abu Bakar Md, Abdul Ghani, Abdul Azim, Ali, Norhayati Mohd, Admodisastro, Novia Indriaty
Format: Article
Language:English
Subjects:
anti reverse engineering
Complexity
Encryption
Experiments
Intellectual property
Java
Obfuscation techniques
Parameter identification
piracy
Reverse engineering
reverse engineering (RE)
Software
Software engineering
software security
Source code
Strings
Citations: Items that this one cites
Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:In this research, a new Hybrid Obfuscation Technique was proposed to prevent prohibited Reverse Engineering. The proposed hybrid technique contains three approaches; first approach is string encryption. The string encryption is about adding a mathematical equation with arrays and loops to the strings in the code to hide the meaning. Second approach is renaming system keywords to Unicode to increase the difficulty and complexity of the code. Third approach is transforming identifiers to junk code to hide the meaning and increase the complexity of the code. An experiment was conducted to evaluate the proposed Hybrid Obfuscation Technique. The experiment contains two phases; the first phase was conducting reverse engineering against java applications that do not use any protection to determine the ability of reversing tools to read the compiled code. The second phase was conducting reverse engineering against the proposed technique to evaluate the effectiveness of it. The experiment of the hybrid obfuscation technique was to test output correctness, syntax, reversed code errors, flow test, identifiers names test, methods, and classes correctness test. With these parameters, it was possible to determine the ability of the proposed technique to defend the attack. The experiment has presented good and promising results, where it was nearly impossible for the reversing tool to read the obfuscated code. Even the revealed code did not perform as well as original and obfuscated code.
ISSN:2169-3536
2169-3536
DOI:10.1109/ACCESS.2020.3028428