[HGI-News] HGI Seminar, Montag, 30.5.05

hgi-news at lists.ruhr-uni-bochum.de hgi-news at lists.ruhr-uni-bochum.de
Mi Mai 25 18:20:00 CEST 2005 

========================================================================

 				  Thomas Dullien
			   Ruhr-Universität Bochum		
	
 	   "Structural Comparison of Executable Objects"


               Montag, 30.05.2005, 13:15 Uhr, IC 4/39,


Abstract

 The disclosure of critical security vulnerabilities in open-source
software differs from the disclosure of critical security
vulnerabilities in closed-source software: Due to the transparency of an
open-source patch, all details about the vulnerability are public from
the moment of the publication of the patch onwards. Closed-source
vendors refuse to many details about their fixed vulnerabilities in the
belief that it is infeasible to reverse-engineer the vulnerability given
two executables.

The talk presents a structural approach that applies graph theory to the
problem of comparing two executables. A method that allows to
iteratively construct an isomorphism between the functions, basic
blocks, and finally the instructions of two executables is presented.
Such an isomorphism has multiple interesting applications: It allows
rapid reverse engineering of security updates, automatic classification
of malware and detection of code theft.


========================================================================

EMAIL-VERTEILER: Wenn Sie Vortragsankündigungen auch in Zukunft per
Email erhalten wollen, können Sie hier
http://www.hgi.ruhr-uni-bochum.de/deutsch/newsletter/
unseren Newsletter abonnieren.

ANFAHRT: Eine Wegbeschreibung zum IC Gebäude der RUB ist hier zu finden:
http://www.crypto.ruhr-uni-bochum.de/contact.html

VORTRÄGE IM SS 2005:

25.04 Marcel Holtmann, 13.15 hrs. IC 4/39,
"Bluetooth Security Unleashed"

02.05 Jan Pelzl, COSY - RUB, 13.15 hrs. IC 4/39,
"Hardware-based Factorization of Integers with the Elliptic Curve
Method"

09.05 Michael Schmidt, University of Siegen, 13.15 hrs. IC 4/39,
"Subscriptionless Mobile Networking - A Secure, Privacy-Preserving
Ad-hoc
Service Architecture"
 
23.05 Dario Carluccio, COSY - RUB, 13.15 hrs. IC 4/39,
"Electromagnetic Side Channel Analysis for Embedded Crypto Devices"

30.05 Thomas Dullien, RUB, 13.15 hrs. IC 4/39
"Structural Comparison of Executable Objects"

06.06 Stefan Strobel, cirosec GmbH, 13.15 hrs. IC 4/39,
"Sicherheit von Web-Applikation und E-Business-Systemen"

13.06 Marco Macchetti, Politecnico di Milano, 13.15 hrs. IC 4/39,
TBA

20.06  Philipp Südmeyer, COSY - RUB, 13.15 hrs. IC 4/39,
TBA

27.06  TBA

04.07  Björn Fay, Justus Liebig-Uni Giessen, 13.15 hrs. IC 4/39,
"Anwendung und Sicherheit der Random-Oracle Methode"

11.07  TBA

18.07  TBA




========================================================================

M.Tech. Sandeep Kumar
Chair for Communication Security
Dept. of Electr. Eng. & Information Sciences
Ruhr-University Bochum
44780 Bochum, Germany

URL: www.crypto.rub.de

Mehr Informationen über die Mailingliste Hgi-News-Deutschland