Protecting software through a fake cryptographic layer

Assignee

• Apple Inc. · US

Inventors

• Pierre Betouin · Boulogne, FR
• Augustin J. Farrugia · Cupertino, US
• Benoit Chevallier-Mames · Paris, FR
• Bruno Kindarji · Paris, FR
• Cédric Tessier · Paris, FR
• Jean-Baptiste Aviat · Fécamp, FR
• Mathieu Ciet · Paris, FR
• Thomas Icart · Paris, FR

Key dates

Classification

• Technology area (CPC G)Physics
• CPC primaryG06F21/1066
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

The fake cryptographic layer obfuscation technique can be used to lure an attacker into expending reverse engineering efforts on sections of code the attacker would normally ignore. To do this the obfuscation technique can identify sections of code that are likely to be of lesser interest to the attacker and disguise them as higher value sections. This can be achieved by transforming a lower value section of code to include code patterns, constants, or other characteristics known to exist in sections of code of higher value, such as cryptographic routines. To transform a code section, the obfuscation technique can use one or more program modifications including control flow modifications, constant value adjustments to simulate well-known cryptographic scalars, buffer extensions, fake characteristic table insertion, debug-like information insertion, derivation function-code generation linking, and/or cryptographic algorithm specific instruction insertion.