題   目：Value-based program characterization and its application to software plagiarism detection

報(bào)告人：劉鵬教授（賓夕法尼亞州立大學(xué)終身教授、網(wǎng)絡(luò)安全實(shí)驗(yàn)室主任）

時(shí)   間：6月1日下午2:00

地   點(diǎn)：研究生樓101教室

Abstract
        Identifying similar or identical code fragments becomes much more challenging in code theft cases where plagiarizers can use various automated code transformation techniques to hide stolen code from being detected. Previous works in this field are largely limited in that (1) most of them cannot handle advanced obfuscation techniques; (2) the methods based on source code analysis are less practical since the source code of suspicious programs is typically not available until strong evidences are collected; and (3) those depending on the features of specific operating systems or programming languages have limited applicability.
        Based on an observation that some critical runtime values are hard to be replaced or eliminated by semantics-preserving transformation techniques, we introduce a novel approach to dynamic characterization of executable programs. Leveraging such invariant values, our technique is resilient to various control and data obfuscation techniques. We show how the values can be extracted and refined to expose the critical values and how we can apply this runtime property to help solve problems in software plagiarism detection. We have implemented a prototype with a dynamic taint analyzer atop a generic processor emulator. Our experimental results show that the value-based method successfully discriminates 34 plagiarisms obfuscated by SandMark, plagiarisms heavily obfuscated by KlassMaster, programs obfuscated by Thicket, and executables obfuscated by Loco/Diablo.

報(bào)告人簡(jiǎn)介：
        劉鵬教授1999年在美國(guó)喬治梅森大學(xué)獲得博士學(xué)位，1999年~2002年在馬里蘭州立大學(xué)任教，2002年轉(zhuǎn)到賓夕法尼亞州立大學(xué)信息科學(xué)技術(shù)學(xué)院，現(xiàn)是賓夕法尼亞州立大學(xué)的終身教授、網(wǎng)絡(luò)安全實(shí)驗(yàn)室主任。主要研究方向是計(jì)算機(jī)網(wǎng)絡(luò)與系統(tǒng)安全，具體研究領(lǐng)域包括：可存活系統(tǒng)構(gòu)建、攻擊代碼的分析檢測(cè)技術(shù)、軟件安全等。目前累計(jì)承擔(dān)的科研經(jīng)費(fèi)超過(guò)1400萬(wàn)美元，指導(dǎo)學(xué)生發(fā)表高水平論文180余篇，其中包括計(jì)算機(jī)安全頂級(jí)期刊ACM Transactions on Information and Systems Security、IEEE Transactions on Dependable and Secure Computing和國(guó)際頂級(jí)會(huì)議CCS、USENIX Security、NDSS等。
        劉鵬教授是ACM Workshop on Survivable and Self-Regenerative Systems的創(chuàng)始程序主席之一、國(guó)際頂級(jí)會(huì)議ACM Conference on Computer and Communications Security (CCS) 2004/2003的學(xué)報(bào)主席、超過(guò)80種國(guó)際會(huì)議的程序委員會(huì)成員（其中包括ACM CCS、INFOCOM、ESORICS和WWW），同時(shí)也是多種國(guó)際著名期刊的編委。