An exploratory study of software reverse engineering in a security context

An exploratory study of software reverse engineering in a security context

Illegal cyberspace activities are increasing rapidly and many software engineers are using reverse engineering methods to respond to attacks. The security-sensitive nature of these tasks, such as the understanding of malware or the decryption of encrypted content, brings unique challenges to reverse...

Full description

Saved in:
Bibliographic Details
Main Authors: TREUDE, Christoph, FIGUEIRA FILHO, Fernando, STOREY, Margaret-Anne, SALOIS, Martin
Format: text
Language:English
Published: Institutional Knowledge at Singapore Management University 2011
Subjects:
exploratory study
reverse engineering
security setting
Software Engineering
Online Access:https://ink.library.smu.edu.sg/sis_research/8934
https://ink.library.smu.edu.sg/context/sis_research/article/9937/viewcontent/wcre111.pdf
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Singapore Management University
Language: English
id sg-smu-ink.sis_research-9937
record_format dspace
spelling sg-smu-ink.sis_research-99372024-07-04T08:53:58Z An exploratory study of software reverse engineering in a security context TREUDE, Christoph FIGUEIRA FILHO, Fernando STOREY, Margaret-Anne SALOIS, Martin Illegal cyberspace activities are increasing rapidly and many software engineers are using reverse engineering methods to respond to attacks. The security-sensitive nature of these tasks, such as the understanding of malware or the decryption of encrypted content, brings unique challenges to reverse engineering: work has to be done offline, files can rarely be shared, time pressure is immense, and there is a lack of tool and process support for capturing and sharing the knowledge obtained while trying to understand plain assembly code. To help us gain an understanding of this reverse engineering work, we report on an exploratory study done in a security context at a research and development government organization to explore their work processes, tools, and artifacts. In this paper, we identify challenges, such as the management and navigation of a myriad of artifacts, and we conclude by offering suggestions for tool and process improvements. 2011-10-01T07:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/8934 info:doi/10.1109/WCRE.2011.30 https://ink.library.smu.edu.sg/context/sis_research/article/9937/viewcontent/wcre111.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University exploratory study reverse engineering security setting Software Engineering
institution Singapore Management University
building SMU Libraries
continent Asia
country Singapore
Singapore
content_provider SMU Libraries
collection InK@SMU
language English
topic exploratory study
reverse engineering
security setting
Software Engineering
spellingShingle exploratory study
reverse engineering
security setting
Software Engineering
TREUDE, Christoph
FIGUEIRA FILHO, Fernando
STOREY, Margaret-Anne
SALOIS, Martin
An exploratory study of software reverse engineering in a security context
description Illegal cyberspace activities are increasing rapidly and many software engineers are using reverse engineering methods to respond to attacks. The security-sensitive nature of these tasks, such as the understanding of malware or the decryption of encrypted content, brings unique challenges to reverse engineering: work has to be done offline, files can rarely be shared, time pressure is immense, and there is a lack of tool and process support for capturing and sharing the knowledge obtained while trying to understand plain assembly code. To help us gain an understanding of this reverse engineering work, we report on an exploratory study done in a security context at a research and development government organization to explore their work processes, tools, and artifacts. In this paper, we identify challenges, such as the management and navigation of a myriad of artifacts, and we conclude by offering suggestions for tool and process improvements.
format text
author TREUDE, Christoph
FIGUEIRA FILHO, Fernando
STOREY, Margaret-Anne
SALOIS, Martin
author_facet TREUDE, Christoph
FIGUEIRA FILHO, Fernando
STOREY, Margaret-Anne
SALOIS, Martin
author_sort TREUDE, Christoph
title An exploratory study of software reverse engineering in a security context
title_short An exploratory study of software reverse engineering in a security context
title_full An exploratory study of software reverse engineering in a security context
title_fullStr An exploratory study of software reverse engineering in a security context
title_full_unstemmed An exploratory study of software reverse engineering in a security context
title_sort exploratory study of software reverse engineering in a security context
publisher Institutional Knowledge at Singapore Management University
publishDate 2011
url https://ink.library.smu.edu.sg/sis_research/8934
https://ink.library.smu.edu.sg/context/sis_research/article/9937/viewcontent/wcre111.pdf
_version_ 1814047650965618688

Similar Items