File Download
Links for fulltext
(May Require Subscription)
- Publisher Website: 10.1109/COMPSAC.2011.60
- Scopus: eid_2-s2.0-80055008083
- Find via
Supplementary
-
Citations:
- Scopus: 0
- Appears in Collections:
Conference Paper: JSBiRTH: Dynamic javascript birthmark based on the run-time heap
| Title | JSBiRTH: Dynamic javascript birthmark based on the run-time heap |
|---|---|
| Authors | |
| Keywords | Birthmark Code theft detection JavaScript Software protection |
| Issue Date | 2011 |
| Publisher | IEEE. The Journal's web site is located at http://www.ieeexplore.ieee.org/xpl/conhome.jsp?punumber=1000143 |
| Citation | The 35th IEEE Annual Computer Software and Applications Conference (COMPSAC 2011), Munich, Germany, 18-22 July 2011. In Proceedings of 35th COMPSAC, 2011, p. 407-412 How to Cite? |
| Abstract | JavaScript is currently the dominating client-side scripting language in the web community. However, the source code of JavaScript can be easily copied through a browser. The intellectual property right of the developers lacks protection. In this paper, we consider using dynamic software birthmark for JavaScript. Instead of using control flow trace (which can be corrupted by code obfuscation) and API (which may not work if the software does not have many API calls), we exploit the run-time heap, which reflects substantially the dynamic behavior of a program, to extract birthmarks. We introduce JSBiRTH, a novel software birthmark system for JavaScript based on the comparison of run-time heaps. We evaluated our system using 20 JavaScript programs with most of them being large-scale. Our system gave no false positive or false negative. Moreover, it is robust against code obfuscation attack. We also show that our system is effective in detecting partial code theft. © 2011 IEEE. |
| Persistent Identifier | http://hdl.handle.net/10722/139990 |
| ISSN | |
| References |
| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Chan, PPF | en_HK |
| dc.contributor.author | Hui, LCK | en_HK |
| dc.contributor.author | Yiu, SM | en_HK |
| dc.date.accessioned | 2011-09-23T06:04:28Z | - |
| dc.date.available | 2011-09-23T06:04:28Z | - |
| dc.date.issued | 2011 | en_HK |
| dc.identifier.citation | The 35th IEEE Annual Computer Software and Applications Conference (COMPSAC 2011), Munich, Germany, 18-22 July 2011. In Proceedings of 35th COMPSAC, 2011, p. 407-412 | en_HK |
| dc.identifier.issn | 0730-3157 | en_HK |
| dc.identifier.uri | http://hdl.handle.net/10722/139990 | - |
| dc.description.abstract | JavaScript is currently the dominating client-side scripting language in the web community. However, the source code of JavaScript can be easily copied through a browser. The intellectual property right of the developers lacks protection. In this paper, we consider using dynamic software birthmark for JavaScript. Instead of using control flow trace (which can be corrupted by code obfuscation) and API (which may not work if the software does not have many API calls), we exploit the run-time heap, which reflects substantially the dynamic behavior of a program, to extract birthmarks. We introduce JSBiRTH, a novel software birthmark system for JavaScript based on the comparison of run-time heaps. We evaluated our system using 20 JavaScript programs with most of them being large-scale. Our system gave no false positive or false negative. Moreover, it is robust against code obfuscation attack. We also show that our system is effective in detecting partial code theft. © 2011 IEEE. | en_HK |
| dc.language | eng | en_US |
| dc.publisher | IEEE. The Journal's web site is located at http://www.ieeexplore.ieee.org/xpl/conhome.jsp?punumber=1000143 | - |
| dc.relation.ispartof | Proceedings of IEEE Annual International Computer Software and Applications Conference, COMPSAC 2011 | en_HK |
| dc.subject | Birthmark | en_HK |
| dc.subject | Code theft detection | en_HK |
| dc.subject | JavaScript | en_HK |
| dc.subject | Software protection | en_HK |
| dc.title | JSBiRTH: Dynamic javascript birthmark based on the run-time heap | en_HK |
| dc.type | Conference_Paper | en_HK |
| dc.identifier.email | Hui, LCK:hui@cs.hku.hk | en_HK |
| dc.identifier.email | Yiu, SM:smyiu@cs.hku.hk | en_HK |
| dc.identifier.authority | Hui, LCK=rp00120 | en_HK |
| dc.identifier.authority | Yiu, SM=rp00207 | en_HK |
| dc.description.nature | link_to_subscribed_fulltext | - |
| dc.identifier.doi | 10.1109/COMPSAC.2011.60 | en_HK |
| dc.identifier.scopus | eid_2-s2.0-80055008083 | en_HK |
| dc.identifier.hkuros | 192252 | en_US |
| dc.relation.references | http://www.scopus.com/mlt/select.url?eid=2-s2.0-80055008083&selection=ref&src=s&origin=recordpage | en_HK |
| dc.identifier.spage | 407 | en_HK |
| dc.identifier.epage | 412 | en_HK |
| dc.publisher.place | United States | en_HK |
| dc.description.other | The 35th IEEE Annual Computer Software and Applications Conference (COMPSAC 2011), Munich, Germany, 18-22 July 2011. In Proceedings of 35th COMPSAC, 2011, p. 407-412 | - |
| dc.identifier.scopusauthorid | Chan, PPF=52563246100 | en_HK |
| dc.identifier.scopusauthorid | Hui, LCK=8905728300 | en_HK |
| dc.identifier.scopusauthorid | Yiu, SM=7003282240 | en_HK |
| dc.identifier.issnl | 0730-3157 | - |