Informacionnye Tehnologii

Информационные технологии

1684-6400

New Technologies Publishing House

702081

10.17587/it.31.538-546

Information security

Безопасность информации

Research Article

Model for steganographic data embedding into program memory

Модель стеганографического встраивания данных в память программы

Belim

S. V.

Белим

С. В.

Russian Federation

Dr. Phys.-Math. Sc., Professor

д-р физ.-мат. наук, проф.

sbelim@mail.ru

Munko

S. N.

Мунько

С. Н.

Russian Federation

Assistant

ст. преподаватель

munko_s@mail.ru

Belim

S. Yu.

Белим

С. Ю.

Russian Federation

PhD, Assistant Professor

канд. пед. наук, доц.

svbelim@gmail.com

Omsk State Technical UniversityОмский гоcударственный технический университет

15102025

3110

53854602022026

2025

Informacionnye Tehnologii

Информационные технологии

https://journals.eco-vector.com/1684-6400/article/view/702081

The article suggests a method for embedding hidden data into the program dynamic memory. The method is based on connecting a dynamic authentication library. The library works directly with a heap of programs. The algorithm breaks the security label into blocks of the same size. The blocks are evenly distributed across the heap. The memory scheduler is not involved in the generation of this data. The method deletes embedded data after a certain time period. Heap address calculation parameters and time period are parameters of the algorithm. The authentication library that embeds the information is universal. The probabilistic model of the program with a heap is proposed in the article. This model is necessary to investigate the possibility of collisions between embedded data and dynamic program variables. The model treats the creation and deletion of dynamic variables as random events. Computer simulation of program behavior for different probability ratios was carried out. А computer experiment showed the basic patterns of heap use by the program. The simulation results demonstrate the linear dependence of heap filling on the probability ratio of creating and deleting variables. The criteria for selecting steganographic embedding parameters are determined based on modeling. The period for placement of embedded data blocks and the time of presence the steganographic insert in the program memory are determined by the statistical characteristics of the executable code.

Предложен метод встраивания скрытых данных в динамическую память программы. Построена вероятностная модель работы программы с динамической памятью. Проведено моделирование возможности возникновения коллизий между встроенными данными и динамическими переменными программы. На основе моделирования определены критерии выбора параметров стеганографического встраивания.

steganographic methodhidden datasecurity labelsprobabilistic modelprogram memory model

стеганографический методскрытые данныеметки безопасностивероятностная модельмодель памяти программы

El-Khalil R., Keromytis А. Hydan: Hiding information in program binaries. Lecture Notes in Computer Science, 2004, vol. 3269, pp. 187—199, DOI: 10.1007/978-3-540-30191-2_15

El-Khalil R., Keromytis А. Hydan: Hiding information in program binaries. // Lecture Notes in Computer Science. 2004. Vol. 3269. P. 187—199. DOI: 10.1007/978-3-540-30191-2_15.

Krasov A., Arshinov A., Ushakov I. Embedding the hidden information into java byte code. ARPN Journal of Engineering and Applied Sciences, 2018, vol. 13 (8), pp. 2746—2752.

Krasov A., Arshinov A., Ushakov I. Embedding the hidden information into java byte code // ARPN Journal of Engineering and Applied Sciences. 2018. Vol. 13, Iss. 8. P. 2746—2752.

Krasov A., Tregubov Y., Shterenberg S. Research of copy protection methods software based on embed of digital watermarks into executable and library files. Cambridge Journal of Education and Science, 2015, vol. 2 (14), pp. 565—573.

Krasov A., Tregubov Y., Shterenberg S. Research of copy protection methods software based on embed of digital watermarks into executable and library files // Cambridge Journal of Education and Science. 2015. Vol. 2, Iss. 14. P. 565—573.

Shterenberg S. I., Krasov A. V., Ushakov I. A. Analysis of using equivalent instructions at the hidden embedding of information into the executable files. Journal of Theoretical and Applied Information Technology, 2015, vol. 80 (1), pp. 28—34.

Shterenberg S. I., Krasov A. V., Ushakov I. A. Analysis of using equivalent instructions at the hidden embedding of information into the executable files. // Journal of Theoretical and Applied Information Technology. 2015. Vol. 80, Iss. 1. P. 28—34.

Hirohisa Н. Data hiding for text and binary files. Computational linguistics: concepts, methodologies, tools, and applications, 2014, pp. 1495—1514, DOI: 10.4018/978-1-4666-6042-7.ch074.

Hirohisa Н. Data hiding for text and binary files. // Computational linguistics: concepts, methodologies, tools, and applications. 2014. P. 1495—1514. DOI: 10.4018/978-1-4666-6042-7.ch074.

Choi S., Park H., Lim H.-I, Han T. А static birthmark of binary executables based on API call structure. ASIAN’07: Proceedings of the 12th Asian computing science conference on Advances in computer science: computer and network security. 2007, pp. 2—16, DOI: 10.1007/978-3-540-76929-3_2.

Choi S., Park H., Lim H.-I., Han T. А static birthmark of binary executables based on API call structure. // ASIAN’07: Proceedings of the 12th Asian computing science conference on Advances in computer science: computer and network security. 2007. P. 2—16. DOI: 10.1007/978-3-540-76929-3_2.

Anckaert B., De Sutter B., Chanet D., De Bosschere K. Steganography for executables and code transformation signatures. Lecture Notes in Computer Science, 2005, vol. 3506, pp. 425—439, DOI: 10.1007/11496618_31.

Anckaert B., De Sutter B., Chanet D., De Bosschere K. Steganography for executables and code transformation signatures. // Lecture Notes in Computer Science. 2005. Vol. 3506. P. 425—439. DOI: 10.1007/11496618_31.

Stern J. P., Hachez G., Koeune F., Quisquater J. J. Robust object watermarking: application to code. Lecture Notes in Computer Science, 2000, vol. 1768, pp. 368—378, DOI: 10.1007/10719724_25.

Stern J. P., Hachez G., Koeune F., Quisquater J. J. Robust object watermarking: application to code. // Lecture Notes in Computer Science. 2000. Vol. 1768. P. 368—378. DOI: 10.1007/10719724_25.

Mairesse J., Vuillon L. Asymptotic behavior in a heap model with two pieces. Theoretical Computer Science, 2002, vol. 270, pp. 525—560, DOI: 10.1016/S0304-3975(01)00004-4.

Mairesse J., Vuillon L. Asymptotic behavior in a heap model with two pieces. // Theoretical Computer Science. 2002. Vol. 270. P. 525—560. DOI: 10.1016/S0304-3975(01)00004-4.

10.

Mandrykin M. U., Mutilin V. S. Modeling Memory with Uninterpreted Functions for Predicate Abstractions. Proceedings of the Institute for System Programming of the RAS (Proceedings of ISP RAS), 2015, vol. 27 (5), pp. 117—142 (in Russian), DOI: 10.15514/ISPRAS-2015-27(5)-7.

Мандрыкин М. У., Мутилин В. С. Моделирование памяти с использованием неинтерпретируемых функций в предикатных абстракциях. // Труды ИСП РАН. 2015. Т. 27, Вып. 5. С. 117—142. DOI: 10.15514/ISPRAS-2015-27(5)-7.

11.

Berger E. D., Zorn В. G. DieHard: Probabilistic memory safety for unsafe languages. ACM sigplan notices, 2006, vol. 41 (6), pp. 158—168, DOI: 10.1145/1133255.1134000

Berger E. D., Zorn В. G. DieHard: Probabilistic memory safety for unsafe languages //ACM sigplan notices. 2006. Vol. 41, N. 6. P. 158—168. DOI: 10.1145/1133255.1134000.

12.

Fraguela B. B., Doallo R., Zapata E. L. Probabilistic Miss Equations: Evaluating Memory Hierarchy Performance. IEEE Transaction on computers, 2003, vol. 52 (3), pp. 321—336, DOI: 10.1109/TC.2003.1183947.

Fraguela B. B., Doallo R., Zapata E. L. Probabilistic Miss Equations: Evaluating Memory Hierarchy Performance.// IEEE Transaction on computers. 2003. Vol. 52, N.3. P. 321—336. DOI: 10.1109/TC.2003.1183947.

13.

Stefanakos I., Calinescu R., Gerasimou S. Probabilistic Program Performance Analysis. 47th Euromicro Conference on Software Engineering and Advanced Applications (SEAA), 2021, pp. 148—157, DOI: 10.1109/SEAA53835.2021.00027.

Stefanakos I., Calinescu R., Gerasimou S. Probabilistic Program Performance Analysis // 47th Euromicro Conference on Software Engineering and Advanced Applications (SEAA). 2021. P. 148—157. DOI: 10.1109/SEAA53835.2021.00027.