Academic Bibliography

 Search 200 years of publications by Ghent University researchers.
Advanced search
1 file | 1.07 MB
Add to list
  1. Search results
  2. K-hunt++ : improved dynamic cryptogra...

K-hunt++ : improved dynamic cryptographic key extraction

Thomas Faingnaert (UGent) , Willem Van Iseghem and Bjorn De Sutter (UGent)
(2024) PROCEEDINGS OF THE 2024 WORKSHOP ON RESEARCH ON OFFENSIVE AND DEFENSIVE TECHNIQUES IN THE CONTEXT OF MAN AT THE END (MATE) ATTACKS, CHECKMATE 2024. p.22-29
Author
Organization
Project
Abstract
We identified several weaknesses in the state-of-the-art cryptographic key extraction algorithm, K-Hunt. It cannot handle code in which key loading and use are spread apart, has problems with modes such as AES CBC that use small data buffers of constant size, and with complex apps in which functionality handles both the key and data. K-Hunt++ overcomes those weaknesses. We demonstrate it on two apps that trigger them and present an ablation study and qualitative analysis of its robustness in the face of obfuscation.
Keywords
Dynamic binary code analysis, cryptographic key identification

Downloads

  • Download
    (...).pdf
    • full text (Published version)
    • |
    • UGent only
    • |
    • PDF
    • |
    • 1.07 MB

Citation

Please use this url to cite or link to this publication:

MLA
Faingnaert, Thomas, et al. “K-Hunt++ : Improved Dynamic Cryptographic Key Extraction.” PROCEEDINGS OF THE 2024 WORKSHOP ON RESEARCH ON OFFENSIVE AND DEFENSIVE TECHNIQUES IN THE CONTEXT OF MAN AT THE END (MATE) ATTACKS, CHECKMATE 2024, Association for Computing Machinery (ACM), 2024, pp. 22–29, doi:10.1145/3689934.3690818.
APA
Faingnaert, T., Van Iseghem, W., & De Sutter, B. (2024). K-hunt++ : improved dynamic cryptographic key extraction. PROCEEDINGS OF THE 2024 WORKSHOP ON RESEARCH ON OFFENSIVE AND DEFENSIVE TECHNIQUES IN THE CONTEXT OF MAN AT THE END (MATE) ATTACKS, CHECKMATE 2024, 22–29. https://doi.org/10.1145/3689934.3690818
Chicago author-date
Faingnaert, Thomas, Willem Van Iseghem, and Bjorn De Sutter. 2024. “K-Hunt++ : Improved Dynamic Cryptographic Key Extraction.” In PROCEEDINGS OF THE 2024 WORKSHOP ON RESEARCH ON OFFENSIVE AND DEFENSIVE TECHNIQUES IN THE CONTEXT OF MAN AT THE END (MATE) ATTACKS, CHECKMATE 2024, 22–29. New York, NY, USA: Association for Computing Machinery (ACM). https://doi.org/10.1145/3689934.3690818.
Chicago author-date (all authors)
Faingnaert, Thomas, Willem Van Iseghem, and Bjorn De Sutter. 2024. “K-Hunt++ : Improved Dynamic Cryptographic Key Extraction.” In PROCEEDINGS OF THE 2024 WORKSHOP ON RESEARCH ON OFFENSIVE AND DEFENSIVE TECHNIQUES IN THE CONTEXT OF MAN AT THE END (MATE) ATTACKS, CHECKMATE 2024, 22–29. New York, NY, USA: Association for Computing Machinery (ACM). doi:10.1145/3689934.3690818.
Vancouver
1.
Faingnaert T, Van Iseghem W, De Sutter B. K-hunt++ : improved dynamic cryptographic key extraction. In: PROCEEDINGS OF THE 2024 WORKSHOP ON RESEARCH ON OFFENSIVE AND DEFENSIVE TECHNIQUES IN THE CONTEXT OF MAN AT THE END (MATE) ATTACKS, CHECKMATE 2024. New York, NY, USA: Association for Computing Machinery (ACM); 2024. p. 22–9.
IEEE
[1]
T. Faingnaert, W. Van Iseghem, and B. De Sutter, “K-hunt++ : improved dynamic cryptographic key extraction,” in PROCEEDINGS OF THE 2024 WORKSHOP ON RESEARCH ON OFFENSIVE AND DEFENSIVE TECHNIQUES IN THE CONTEXT OF MAN AT THE END (MATE) ATTACKS, CHECKMATE 2024, Salt Lake City, UT, USA, 2024, pp. 22–29.
@inproceedings{01JJKHJFFTPZR7NGWHSXR46TR2,
  abstract     = {{We identified several weaknesses in the state-of-the-art cryptographic key extraction algorithm, K-Hunt. It cannot handle code in which key loading and use are spread apart, has problems with modes such as AES CBC that use small data buffers of constant size, and with complex apps in which functionality handles both the key and data. K-Hunt++ overcomes those weaknesses. We demonstrate it on two apps that trigger them and present an ablation study and qualitative analysis of its robustness in the face of obfuscation.}},
  author       = {{Faingnaert, Thomas and Van Iseghem, Willem and De Sutter, Bjorn}},
  booktitle    = {{PROCEEDINGS OF THE 2024 WORKSHOP ON RESEARCH ON OFFENSIVE AND DEFENSIVE TECHNIQUES IN THE CONTEXT OF MAN AT THE END (MATE) ATTACKS, CHECKMATE 2024}},
  isbn         = {{9798400712302}},
  keywords     = {{Dynamic binary code analysis,cryptographic key identification}},
  language     = {{eng}},
  location     = {{Salt Lake City, UT, USA}},
  pages        = {{22--29}},
  publisher    = {{Association for Computing Machinery (ACM)}},
  title        = {{K-hunt++ : improved dynamic cryptographic key extraction}},
  url          = {{http://doi.org/10.1145/3689934.3690818}},
  year         = {{2024}},
}
Altmetric
View in Altmetric
Web of Science
Times cited: