Method, device and medium for generating formalized structure of function code in binary program

A binary program and binary code technology, which is applied in the field of formalized structure generation of function codes in binary programs, can solve problems such as difficult binary program code structure analysis, and achieve the effects of ensuring security, wide application range, and strong portability

Active Publication Date: 2021-12-10
武汉江民网安科技有限公司
View PDF14 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0004] In view of this, the present invention proposes a method, device and medium for generating a formalized structure of a function code in a binary program to solve the problem that it is difficult to effectively analyze the code structure of a binary program

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method, device and medium for generating formalized structure of function code in binary program
  • Method, device and medium for generating formalized structure of function code in binary program
  • Method, device and medium for generating formalized structure of function code in binary program

Examples

Experimental program
Comparison scheme
Effect test

Embodiment

[0072] The work flow of the method for generating a formalized structure of function codes in a binary program of the present invention is shown in figure 1 , the processing steps are as follows:

[0073] Because the formats of binary programs in different operating system environments are different, the method for generating the formalized structure of function codes in a binary program proposed by the present invention is used below to generate the matrix representation of the formalized structure of function codes in PE programs in the Windows environment. The specific workflow as an example mainly includes the following steps:

[0074] The first step is to extract effective data describing the binary program and its code based on the file structure description information contained in the binary program. In the Windows environment, common PE files include EXE, DLL, OCX, SYS, COM and other formats. The main file structure is shown in Table 1 below:

[0075] Table 1 Overa...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The present invention proposes a method, device, and medium for generating a formalized structure of function codes in binary programs. The method takes function codes in binary programs as the basic granularity of analysis, classifies binary program codes based on functional attributes, divides the address space of binary codes, and generates each Function code collection of class function attributes, and establish classification function information table and function distribution table describing function code attributes; build machine instruction operand type collection, and generate formal structure of various function codes by formalizing operands in function codes Set; use the formalized structure of the classified function information table, function distribution table, and function code to establish the formalized structure matrix of the function code, which can effectively analyze the formalization of the entire function code in the binary program at the two levels of the whole and the function structure. The invention realizes the effective analysis of the function code structure in the binary program, and provides practical support for accurately detecting the functional attributes of the binary program.

Description

technical field [0001] The invention relates to the field of information security, in particular to a method, device and medium for generating a formalized structure of function codes in a binary program. Background technique [0002] In today's era, systems such as cloud computing platforms, Internet of Things, mobile networks, and industrial Internet have developed rapidly. As an important component of various systems, binary programs are increasingly important for their security, reliability, and credibility. With the development of information security technology, its countermeasure technology has also been developed rapidly. The types of harmful technologies that endanger network and system security are constantly increasing, and the applied technologies are constantly innovating. Since the binary program is composed of machine instructions, it is difficult for existing methods to effectively analyze its code structure, and cannot effectively combat harmful technologies...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): G06F8/30G06F8/75
CPCG06F8/30G06F8/75
Inventor 郭昌盛黄河许团聂永春汪文晓
Owner 武汉江民网安科技有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap