Article

SCV: Structure and Constant Value based Binary Diffing

Authors:

Heewan Park,

Seokwoo Choi,

Sunae Seo,

Taisook HanAuthors Info & Claims

ISA '08: Proceedings of the 2008 International Conference on Information Security and Assurance (isa 2008)

Pages 32 - 35

https://doi.org/10.1109/ISA.2008.29

Published: 24 April 2008 Publication History

Publisher Site

Abstract

Binary diffing is a method to find differences in similar binary executables such as two different versions of security patches. Diffing methods using flow information detect control flow changes very fast, but they cannot track constant value changes. We present a binary diffing tool named SCV which utilizes both structure and value information. SCV summarizes structure and constant value information from disassembled code, and matches the summaries to find differences. By analyzing a Microsoft Windows security patch KB938827, we showed that SCV found necessary differences caused by constant value changes whichthe state-of-the-art binary diffing tool BinDiff failed to find.

Index Terms

SCV: Structure and Constant Value based Binary Diffing
1. Security and privacy
  1. Systems security
    1. Information flow control
    2. Operating systems security
2. Theory of computation
  1. Design and analysis of algorithms
    1. Data structures design and analysis
      1. Pattern matching

Recommendations

iBinHunt: binary hunting with inter-procedural control flow
ICISC'12: Proceedings of the 15th international conference on Information Security and Cryptology

Techniques have been proposed to find the semantic differences between two binary programs when the source code is not available. Analyzing control flow, and in particular, intra-procedural control flow, has become an attractive technique in the latest ...
Khaos: The Impact of Inter-procedural Code Obfuscation on Binary Diffing Techniques
CGO '23: Proceedings of the 21st ACM/IEEE International Symposium on Code Generation and Optimization

Software obfuscation techniques can prevent binary diffing techniques from locating vulnerable code by obfuscating the third-party code, to achieve the purpose of protecting embedded device software. With the rapid development of binary diffing ...
Binary diffing as a network alignment problem via belief propagation
ASE '21: Proceedings of the 36th IEEE/ACM International Conference on Automated Software Engineering

In this paper, we address the problem of finding a correspondence, or matching, between the functions of two programs in binary form, which is one of the most common task in binary diffing. We introduce a new formulation of this problem as a particular ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

ISA '08: Proceedings of the 2008 International Conference on Information Security and Assurance (isa 2008)

April 2008

581 pages

ISBN:9780769531267

Publisher

IEEE Computer Society

United States

Publication History

Published: 24 April 2008

Author Tags

Qualifiers

Article

Index Terms

Recommendations

iBinHunt: binary hunting with inter-procedural control flow

Khaos: The Impact of Inter-procedural Code Obfuscation on Binary Diffing Techniques

Binary diffing as a network alignment problem via belief propagation

Comments

Published In

Publisher

Publication History

Author Tags

Qualifiers

Other Metrics

Article Metrics

Other Metrics

Abstract

Index Terms

Recommendations

iBinHunt: binary hunting with inter-procedural control flow

Khaos: The Impact of Inter-procedural Code Obfuscation on Binary Diffing Techniques

Binary diffing as a network alignment problem via belief propagation

Comments

Information

Published In

Publisher

Publication History

Author Tags

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

View options

Share

Share this Publication link

Share on social media

Affiliations