{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T04:48:46Z","timestamp":1750308526959,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":38,"publisher":"ACM","license":[{"start":{"date-parts":[[2014,12,9]],"date-time":"2014-12-09T00:00:00Z","timestamp":1418083200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2014,12,9]]},"DOI":"10.1145\/2689702.2689707","type":"proceedings-article","created":{"date-parts":[[2015,1,7]],"date-time":"2015-01-07T14:36:23Z","timestamp":1420641383000},"page":"1-11","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":7,"title":["Probing the Limits of Virtualized Software Protection"],"prefix":"10.1145","author":[{"given":"Joshua","family":"Cazalas","sequence":"first","affiliation":[{"name":"University of South Alabama"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"J. Todd","family":"McDonald","sequence":"additional","affiliation":[{"name":"University of South Alabama"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Todd R.","family":"Andel","sequence":"additional","affiliation":[{"name":"University of South Alabama"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Natalia","family":"Stakhanova","sequence":"additional","affiliation":[{"name":"University of New Brunswick"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2014,12,9]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1145\/1179509.1179521"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1016\/0167-4048(93)90054-9"},{"key":"e_1_3_2_1_3_1","volume-title":"Surreptitious software: obfuscation, watermarking, and tamperproofing for software protection","author":"Collberg C.","year":"2010","unstructured":"C. Collberg and J. Nagra ( 2010 ). Surreptitious software: obfuscation, watermarking, and tamperproofing for software protection . Upper Saddle River, NJ : Addison-Wesley . C. Collberg and J. Nagra (2010). Surreptitious software: obfuscation, watermarking, and tamperproofing for software protection. Upper Saddle River, NJ: Addison-Wesley."},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1145\/2046707.2046739"},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/1455770.1455779"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1145\/2151024.2151051"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/2430553.2430554"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1145\/1134760.1134764"},{"key":"e_1_3_2_1_9_1","first-page":"2","volume-title":"WOOT'09: Proc. of the 3rd USENIX conference on Offensive technologies","author":"Paleariy R.","year":"2009","unstructured":"R. Paleariy , L. Martignoniz , G.F. Rogliay , and D. Bruschiy ( 2009 ). A fistful of red-pills: How to automatically generate procedures to detect CPU emulators . In WOOT'09: Proc. of the 3rd USENIX conference on Offensive technologies , pp. 2 -- 2 . USENIX Association, URL http:\/\/dl.acm.org\/citation.cfm?id= 1855876.1855878 R. Paleariy, L. Martignoniz, G.F. Rogliay, and D. Bruschiy (2009). A fistful of red-pills: How to automatically generate procedures to detect CPU emulators. In WOOT'09: Proc. of the 3rd USENIX conference on Offensive technologies, pp. 2--2. USENIX Association, URL http:\/\/dl.acm.org\/citation.cfm?id=1855876.1855878"},{"key":"e_1_3_2_1_10_1","volume-title":"August 10, 2009","author":"Rolles R.","year":"2009","unstructured":"R. Rolles ( 2009 ). Unpacking virtualization obfuscators Proc. of the 3rd USENIX conference on Offensive technologies, p.1--1 , August 10, 2009 , Montreal, Canada. R. Rolles (2009). Unpacking virtualization obfuscators Proc. of the 3rd USENIX conference on Offensive technologies, p.1--1, August 10, 2009, Montreal, Canada."},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1145\/1347787.1347807"},{"key":"e_1_3_2_1_12_1","volume-title":"Virtualization detection vs. blue pill detection. The Invisible Things Labs blog. URL http:\/\/theinvisiblethings.blogspot.com\/2007\/08\/virtualization-detection-vs-blue-pill.html","author":"Rutkowska J.","year":"2007","unstructured":"J. Rutkowska ( 2007 ). Virtualization detection vs. blue pill detection. The Invisible Things Labs blog. URL http:\/\/theinvisiblethings.blogspot.com\/2007\/08\/virtualization-detection-vs-blue-pill.html . J. Rutkowska (2007). Virtualization detection vs. blue pill detection. The Invisible Things Labs blog. URL http:\/\/theinvisiblethings.blogspot.com\/2007\/08\/virtualization-detection-vs-blue-pill.html."},{"key":"e_1_3_2_1_13_1","volume-title":"Blue Pill Detection. URL http:\/\/theinvisiblethings.blogspot.com\/2006\/08\/blue-pill-detection.html","author":"Rutkowska J.","year":"2006","unstructured":"J. Rutkowska ( 2006 ). Blue Pill Detection. URL http:\/\/theinvisiblethings.blogspot.com\/2006\/08\/blue-pill-detection.html J. Rutkowska (2006). Blue Pill Detection. URL http:\/\/theinvisiblethings.blogspot.com\/2006\/08\/blue-pill-detection.html"},{"key":"e_1_3_2_1_14_1","volume-title":"Virtualization: Red Pill or Blue Pill. URL http:\/\/teckinfo.blogspot.com\/2008\/04\/virtualisation-red-pill-or-blue.html","author":"Rutkowska J.","year":"2008","unstructured":"J. Rutkowska ( 2008 ). Virtualization: Red Pill or Blue Pill. URL http:\/\/teckinfo.blogspot.com\/2008\/04\/virtualisation-red-pill-or-blue.html J. Rutkowska (2008). Virtualization: Red Pill or Blue Pill. URL http:\/\/teckinfo.blogspot.com\/2008\/04\/virtualisation-red-pill-or-blue.html"},{"key":"e_1_3_2_1_15_1","volume-title":"Red Pill. URL http:\/\/www.hackerzvoice.net\/ouah\/Red_Pill.html","author":"Rutkowska J.","year":"2008","unstructured":"J. Rutkowska ( 2008 ). Red Pill. URL http:\/\/www.hackerzvoice.net\/ouah\/Red_Pill.html J. Rutkowska (2008). Red Pill. URL http:\/\/www.hackerzvoice.net\/ouah\/Red_Pill.html"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.5555\/776261.776265"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2009.27"},{"key":"e_1_3_2_1_18_1","first-page":"813","article-title":"SPAD: Software Protection Through Anti-Debugging using hardware-assisted virtualization","volume":"28","author":"Qi Z.","year":"2012","unstructured":"Z. Qi , B. Li , Q. Lin , M. Yu , M. Xia , and H. Guan ( 2012 ). SPAD: Software Protection Through Anti-Debugging using hardware-assisted virtualization . Jour. Information Science and Engineering , vol. 28 , pp. 813 -- 827 . Z. Qi, B. Li, Q. Lin, M. Yu, M. Xia, and H. Guan (2012). SPAD: Software Protection Through Anti-Debugging using hardware-assisted virtualization. Jour. Information Science and Engineering, vol. 28, pp. 813--827.","journal-title":"Jour. Information Science and Engineering"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2006.9"},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1007\/s11416-008-0094-0"},{"key":"e_1_3_2_1_21_1","volume-title":"Virtual Machines: Versatile platforms for systems and processes (The Morgan Kaufmann Series in Computer Architecture and Design)","author":"Smith J.","year":"2005","unstructured":"J. Smith and R. Nair ( 2005 ). Virtual Machines: Versatile platforms for systems and processes (The Morgan Kaufmann Series in Computer Architecture and Design) , Morgan Kaufmann Publishers Inc ., San Francisco, CA, USA. J. Smith and R. Nair (2005). Virtual Machines: Versatile platforms for systems and processes (The Morgan Kaufmann Series in Computer Architecture and Design), Morgan Kaufmann Publishers Inc., San Francisco, CA, USA."},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/948109.948146"},{"key":"e_1_3_2_1_23_1","volume-title":"The Effectiveness of Instruction Set Randomization. 14th USENIX Security Symposium","author":"Sovarel N.","year":"2005","unstructured":"N. Sovarel , D. Evans , and N. Paul ( 2005 ). Where's the FEEB ? The Effectiveness of Instruction Set Randomization. 14th USENIX Security Symposium , Baltimore, MD , 4 August 2005. N. Sovarel, D. Evans, and N. Paul (2005). Where's the FEEB? The Effectiveness of Instruction Set Randomization. 14th USENIX Security Symposium, Baltimore, MD, 4 August 2005."},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1145\/948109.948147"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/1053283.1053286"},{"key":"e_1_3_2_1_26_1","volume-title":"Fast Instruction Set Simulation Using LLVM-based Dynamic Translation. In IMECS'11: Proc. of the International MultiConference of Engineers and Computer Scientists, March 16-18","author":"Helmstetter C.","year":"2011","unstructured":"C. Helmstetter , V. Joloboff , Z. Xinlei and G. Xiaopeng ( 2011 ). Fast Instruction Set Simulation Using LLVM-based Dynamic Translation. In IMECS'11: Proc. of the International MultiConference of Engineers and Computer Scientists, March 16-18 , Hong Kong. C. Helmstetter, V. Joloboff, Z. Xinlei and G. Xiaopeng (2011). Fast Instruction Set Simulation Using LLVM-based Dynamic Translation. In IMECS'11: Proc. of the International MultiConference of Engineers and Computer Scientists, March 16-18, Hong Kong."},{"key":"e_1_3_2_1_27_1","first-page":"25","volume-title":"CGO'03: International Symposium on Code Generation and Optimization","author":"Kim H.","year":"2003","unstructured":"H. Kim and J.E. Smith ( 2003 ). Dynamic binary translation for accumulator-oriented architectures . In CGO'03: International Symposium on Code Generation and Optimization , pp. 25 -- 35 , March 23-26, 2003. doi: 10.1109\/CGO.2003.1191530 10.1109\/CGO.2003.1191530 H. Kim and J.E. Smith (2003). Dynamic binary translation for accumulator-oriented architectures. In CGO'03: International Symposium on Code Generation and Optimization, pp. 25--35, March 23-26, 2003. doi: 10.1109\/CGO.2003.1191530"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1109\/IPDPS.2004.1303224"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.5555\/776261.776265"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2004.36"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.5555\/1247360.1247362"},{"key":"e_1_3_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1145\/1065010.1065034"},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1145\/1952682.1952703"},{"key":"e_1_3_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1109\/WCRE.2012.16"},{"issue":"6","key":"e_1_3_2_1_35_1","first-page":"7","article-title":"The Danger of Unrandomized Code. ;login","volume":"36","author":"Schwartz E.","year":"2011","unstructured":"E. Schwartz ( 2011 ). The Danger of Unrandomized Code. ;login : The Usenix Magazine , 36 ( 6 ), pp. 7 -- 12 , December 2011. E. Schwartz (2011). The Danger of Unrandomized Code. ;login: The Usenix Magazine, 36(6), pp. 7--12, December 2011.","journal-title":"The Usenix Magazine"},{"key":"e_1_3_2_1_36_1","volume-title":"August 06, 2014. Online: https:\/\/www.youtube.com\/watch?v=9oKZx6Cr3X8.","author":"Li K.","year":"2011","unstructured":"K. Li and X. Li ( 2011 ). Defeating the Transparency Feature of DBI. Presented talk at Blackhat USA 2014 , August 06, 2014. Online: https:\/\/www.youtube.com\/watch?v=9oKZx6Cr3X8. K. Li and X. Li (2011). Defeating the Transparency Feature of DBI. Presented talk at Blackhat USA 2014, August 06, 2014. Online: https:\/\/www.youtube.com\/watch?v=9oKZx6Cr3X8."},{"key":"e_1_3_2_1_37_1","unstructured":"Escaping DynamoRIO and Pin - or why it's a worse-than-you-think idea to run untrusted code or to input untrusted data. Online: https:\/\/github.com\/lgeek\/dynamorio_pin_escape.  Escaping DynamoRIO and Pin - or why it's a worse-than-you-think idea to run untrusted code or to input untrusted data. Online: https:\/\/github.com\/lgeek\/dynamorio_pin_escape."},{"key":"e_1_3_2_1_38_1","unstructured":"DynamoRIO: Dynamic Instrumentation Tool Platform. Online: http:\/\/dynamorio.org\/docs\/overview.html.  DynamoRIO: Dynamic Instrumentation Tool Platform. Online: http:\/\/dynamorio.org\/docs\/overview.html."}],"event":{"name":"PPREW-4: 4th Program Protection and Reverse Engineering Workshop","acronym":"PPREW-4","location":"New Orleans LA USA"},"container-title":["Proceedings of the 4th Program Protection and Reverse Engineering Workshop"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2689702.2689707","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2689702.2689707","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T18:55:46Z","timestamp":1750272946000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2689702.2689707"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2014,12,9]]},"references-count":38,"alternative-id":["10.1145\/2689702.2689707","10.1145\/2689702"],"URL":"https:\/\/doi.org\/10.1145\/2689702.2689707","relation":{},"subject":[],"published":{"date-parts":[[2014,12,9]]},"assertion":[{"value":"2014-12-09","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}