1994-07-11 - Re: Request: tamper-proofing executables
Header Data
From: Mike Johnson second login <exabyte!gedora!mikej2@uunet.uu.net>
To: Dan Marner <gedora!uunet!mis.nu.edu!dmarner@uunet.uu.net>
Message Hash: 575a3910711be071513b81bb21982d24ab903d7b31196c90649c73feacdc09d0
Message ID: <Pine.3.89.9407081454.C13416-0100000@gedora>
Reply To: <9407081655.AA29629@mis.nu.edu>
UTC Datetime: 1994-07-11 06:17:37 UTC
Raw Date: Sun, 10 Jul 94 23:17:37 PDT
Raw message
From: Mike Johnson second login <exabyte!gedora!mikej2@uunet.uu.net>
Date: Sun, 10 Jul 94 23:17:37 PDT
To: Dan Marner <gedora!uunet!mis.nu.edu!dmarner@uunet.uu.net>
Subject: Re: Request: tamper-proofing executables
In-Reply-To: <9407081655.AA29629@mis.nu.edu>
Message-ID: <Pine.3.89.9407081454.C13416-0100000@gedora>
MIME-Version: 1.0
Content-Type: text/plain
On Fri, 8 Jul 1994, Dan Marner wrote:
> I would appreciate any pointers to documents, source code or
> programs that deal with using cryptographic techniques to detect
> or prevent modification of executable code. I am looking for
> something that uses either a signature or a one-way hash to detect
> modifications at run time.
> Of particular interest is information on signing a file that
> includes the signature as part of the file. Is this possible with
> any of the common algorithms?
There are lots of ways to detect modification of executable code, and
possibly take some action based on the outcome. The hard part comes when
you consider that the code doing the checking may itself be hacked. A
determined hacker would just patch the code to jump around the test. I
suggest three things to make it harder:`
1. Make more than one test in more than one place in the code, making it
harder to find all of them.
2. If you use any embeded keys, create them at run time from pieces
stored in different places in the code and/or data.
3. Store the code in compressed format. One nice way to do this is with
PKLite Professional with the -e option.
The choice of algorithms used to sign the files (i. e. DSA vs RSA vs
salted hash vs simple CRC) is probably less important than the details
mentioned above. The only way to substantially increase the security of
the check is to add a hardware device (i. e. dongle or custom hardware
card), but people generally hate those since they are usually used just
for copy protection. On the other hand, clever application of the above
software techniques is probably good enough to avoid common virii,
unintentional damage to files, and the average hacker.
Peace to you.
Mike Johnson
Thread
Return to July 1994
- Return to “Adam Shostack <adam@bwh.harvard.edu>”
- Return to “Dan Marner <dmarner@mis.nu.edu>”
- Return to “Michael Handler <grendel@netaxs.com>”
- Return to “michael shiplett <michael.shiplett@umich.edu>”
- Return to “Mike Johnson second login <exabyte!gedora!mikej2@uunet.uu.net>”
- Return to “Patrick G. Bridges <patrick@CS.MsState.Edu>”
Return to “rarachel@prism.poly.edu (Arsen Ray Arachelian)”
- 1994-07-08 (Fri, 8 Jul 94 09:55:56 PDT) - Request: tamper-proofing executables - Dan Marner <dmarner@mis.nu.edu>
- 1994-07-08 (Fri, 8 Jul 94 10:21:07 PDT) - Re: Request: tamper-proofing executables - Michael Handler <grendel@netaxs.com>
- 1994-07-10 (Sun, 10 Jul 94 00:31:22 PDT) - Re: Request: tamper-proofing executables - rarachel@prism.poly.edu (Arsen Ray Arachelian)
- 1994-07-08 (Fri, 8 Jul 94 11:03:20 PDT) - Re: Request: tamper-proofing executables - Adam Shostack <adam@bwh.harvard.edu>
- 1994-07-08 (Fri, 8 Jul 94 11:49:53 PDT) - Re: Request: tamper-proofing executables - Patrick G. Bridges <patrick@CS.MsState.Edu>
- 1994-07-09 (Sat, 9 Jul 94 15:22:56 PDT) - Re: Request: tamper-proofing executables - michael shiplett <michael.shiplett@umich.edu>
- 1994-07-11 (Sun, 10 Jul 94 23:17:37 PDT) - Re: Request: tamper-proofing executables - Mike Johnson second login <exabyte!gedora!mikej2@uunet.uu.net>
- 1994-07-08 (Fri, 8 Jul 94 10:21:07 PDT) - Re: Request: tamper-proofing executables - Michael Handler <grendel@netaxs.com>