[HGI-News] HGI Seminar, Montag, 30.5.05
hgi-news at lists.ruhr-uni-bochum.de
hgi-news at lists.ruhr-uni-bochum.de
Mi Mai 25 18:20:00 CEST 2005
========================================================================
Thomas Dullien
Ruhr-Universität Bochum
"Structural Comparison of Executable Objects"
Montag, 30.05.2005, 13:15 Uhr, IC 4/39,
Abstract
The disclosure of critical security vulnerabilities in open-source
software differs from the disclosure of critical security
vulnerabilities in closed-source software: Due to the transparency of an
open-source patch, all details about the vulnerability are public from
the moment of the publication of the patch onwards. Closed-source
vendors refuse to many details about their fixed vulnerabilities in the
belief that it is infeasible to reverse-engineer the vulnerability given
two executables.
The talk presents a structural approach that applies graph theory to the
problem of comparing two executables. A method that allows to
iteratively construct an isomorphism between the functions, basic
blocks, and finally the instructions of two executables is presented.
Such an isomorphism has multiple interesting applications: It allows
rapid reverse engineering of security updates, automatic classification
of malware and detection of code theft.
========================================================================
EMAIL-VERTEILER: Wenn Sie Vortragsankündigungen auch in Zukunft per
Email erhalten wollen, können Sie hier
http://www.hgi.ruhr-uni-bochum.de/deutsch/newsletter/
unseren Newsletter abonnieren.
ANFAHRT: Eine Wegbeschreibung zum IC Gebäude der RUB ist hier zu finden:
http://www.crypto.ruhr-uni-bochum.de/contact.html
VORTRÄGE IM SS 2005:
25.04 Marcel Holtmann, 13.15 hrs. IC 4/39,
"Bluetooth Security Unleashed"
02.05 Jan Pelzl, COSY - RUB, 13.15 hrs. IC 4/39,
"Hardware-based Factorization of Integers with the Elliptic Curve
Method"
09.05 Michael Schmidt, University of Siegen, 13.15 hrs. IC 4/39,
"Subscriptionless Mobile Networking - A Secure, Privacy-Preserving
Ad-hoc
Service Architecture"
23.05 Dario Carluccio, COSY - RUB, 13.15 hrs. IC 4/39,
"Electromagnetic Side Channel Analysis for Embedded Crypto Devices"
30.05 Thomas Dullien, RUB, 13.15 hrs. IC 4/39
"Structural Comparison of Executable Objects"
06.06 Stefan Strobel, cirosec GmbH, 13.15 hrs. IC 4/39,
"Sicherheit von Web-Applikation und E-Business-Systemen"
13.06 Marco Macchetti, Politecnico di Milano, 13.15 hrs. IC 4/39,
TBA
20.06 Philipp Südmeyer, COSY - RUB, 13.15 hrs. IC 4/39,
TBA
27.06 TBA
04.07 Björn Fay, Justus Liebig-Uni Giessen, 13.15 hrs. IC 4/39,
"Anwendung und Sicherheit der Random-Oracle Methode"
11.07 TBA
18.07 TBA
========================================================================
M.Tech. Sandeep Kumar
Chair for Communication Security
Dept. of Electr. Eng. & Information Sciences
Ruhr-University Bochum
44780 Bochum, Germany
URL: www.crypto.rub.de
Mehr Informationen über die Mailingliste Hgi-News-Deutschland