It is difficult to generate the valid signature data for the polymorphic attack sig-nature used in traditional string pattern mining and matching technology. In this paper, the method based on semantic awareness is proposed and tested. Firstly, the condition character-istic of polymorphic attacks data is analyzed in detail. Secondly, the original code of static semantics is extracted by applying static data flow forming process analysis. Finally, the mul-tiple polymorphic signature data are generated in accordance with the classification standards based on SigFree method. Furthermore, the polymorphism of semantic and information related to string pattern of the code is also contained inside the data. By comparing with the experi-mental data of Hamsa scheme, this method is able to effectively reduce the error distortion rate of digital signature.%多态攻击网络签名在传统串模式挖掘与匹配技术中应用难以生成有效的签名数据.本文在传统应用方法基础上,提出并测试了基于语义感知方法.首先,详细分析了多态攻击数据状态特征.然后,通过使用静态数据流形成过程分析提取了静态语义原始代码.最后,按照基于特征分类标准,应用SigFree方法生成了多层多态签名数据,而且数据里面还包含代码的多态语义与串模式相应信息.通过对比Hamsa方案的实验数据表明,此方法可以有效降低数字签名的失误率和失真率.
展开▼