Visible to the public Introducing Code Assets of a New White-Box Security Modeling Language

TitleIntroducing Code Assets of a New White-Box Security Modeling Language
Publication TypeConference Paper
Year of Publication2014
AuthorsSun, H., Liu, L., Feng, L., Gu, Y. X.
Conference Name2014 IEEE 38th International Computer Software and Applications Conference Workshops
Date Publishedjul
KeywordsAnalytical models, attacker, binary code, Binary codes, code assets, code security, composability, Computational modeling, Computer crime, Conferences, data protection, i-WBS, Metrics, pubcrawl, resilience, Resiliency, reverse engineer, security, Security modeling language, Software, software protection solutions, software protection technologies, source code (software), specification languages, Testing, WB security analysis, white box, White Box Security, White-box security, white-box security modeling language

This paper argues about a new conceptual modeling language for the White-Box (WB) security analysis. In the WB security domain, an attacker may have access to the inner structure of an application or even the entire binary code. It becomes pretty easy for attackers to inspect, reverse engineer, and tamper the application with the information they steal. The basis of this paper is the 14 patterns developed by a leading provider of software protection technologies and solutions. We provide a part of a new modeling language named i-WBS (White-Box Security) to describe problems of WB security better. The essence of White-Box security problem is code security. We made the new modeling language focus on code more than ever before. In this way, developers who are not security experts can easily understand what they need to really protect.

Citation Keysun_introducing_2014