Abstract
In this paper, we present an automatic static tool CryFind to identify cryptographic algorithms in a binary executable. Our main strategy is using string match to search for cryptographic constants and API names. To expand our search range and improve our hit rate, our tool matches strings under different encodings and XOR'ed with different keys, as well as incorporates techniques to extract strings on stack. As a result, we have a more effective and efficient detection tool compared with a wide range of state-of-the-art static analysis tools.
| Original language | English |
|---|---|
| Title of host publication | 2021 IEEE Conference on Dependable and Secure Computing, DSC 2021 |
| Publisher | Institute of Electrical and Electronics Engineers Inc. |
| ISBN (Electronic) | 9781728175348 |
| DOIs | |
| State | Published - 30 01 2021 |
| Externally published | Yes |
| Event | 2021 IEEE Conference on Dependable and Secure Computing, DSC 2021 - Aizuwakamatsu, Fukushima, Japan Duration: 30 01 2021 → 02 02 2021 |
Publication series
| Name | 2021 IEEE Conference on Dependable and Secure Computing, DSC 2021 |
|---|
Conference
| Conference | 2021 IEEE Conference on Dependable and Secure Computing, DSC 2021 |
|---|---|
| Country/Territory | Japan |
| City | Aizuwakamatsu, Fukushima |
| Period | 30/01/21 → 02/02/21 |
Bibliographical note
Publisher Copyright:© 2021 IEEE.