(12) International Application Status Report

Received at International Bureau: 07 October 2019 (07.10.2019)

Information valid as of: 06 May 2020 (06.05.2020)

Report generated on: 22 September 2020 (22.09.2020)

(10) Publication number: (43) Publication date: (26) Publication language:
WO 2020/11148204 June 2020 (04.06.2020) Korean (KO)

(21) Application number: (22) Filing date: (25) Filing language:
PCT/KR2019/01248026 September 2019 (26.09.2019) Korean (KO)

(31) Priority number(s): (32) Priority date(s): (33) Priority status:
10-2018-0147027 (KR)26 November 2018 (26.11.2018) Priority document received (in compliance with PCT Rule 17.1)

(51) International Patent Classification:
G06F 21/14 (2013.01)

(71) Applicant(s):
KOREA ADVANCED INSTITUTE OF SCIENCE AND TECHNOLOGY [KR/KR]; 291, Daehak-ro Yuseong-Gu Daejeon 34141 (KR) (for all designated states)

(72) Inventor(s):
KANG, BrentByungHoon; 291, Daehak-ro Yuseong-Gu Daejeon 34141 (KR)
PARK, Minjoon; 291, Daehak-ro Yuseong-Gu Daejeon 34141 (KR)
JANG, Daehee; 291, Daehak-ro Yuseong-Gu Daejeon 34141 (KR)
KIM, Jonghwan; 291, Daehak-ro Yuseong-Gu Daejeon 34141 (KR)

(74) Agent(s):
YANG, Sungbo; P&T Intellectual Property Law Firm, 2nd Fl., Samsung Bldg.,14, Seolleung-ro 125-gil Gangnam-Gu Seoul 06099 (KR)

(54) Title (EN): REVERSE ENGINEERING METHOD AND SYSTEM UTILIZING BIG DATA BASED ON PROGRAM EXECUTION CONTEXT
(54) Title (FR): PROCÉDÉ ET SYSTÈME D'INGÉNIERIE INVERSE UTILISANT DES MÉGADONNÉES EN FONCTION DU CONTEXTE D'EXÉCUTION DE PROGRAMME
(54) Title (KO): 프로그램 실행 컨텍스트 기반의 빅데이터를 활용한 역공학 방법 및 시스템

(57) Abstract:
(EN): A reverse engineering method and system utilizing big data based on a program execution context are provided. A reverse engineering method according to one embodiment can comprise the steps of: executing, through a debugger, a program to be analyzed; using the debugger so as to set a break point in an instruction included in a region of interest of the program to be analyzed; storing, in a context database, an execution context at a corresponding time point through an event handler for an event occurring in the instruction in which the break point is set; and processing data stored in the context database so as to generate an information analysis result for the program to be analyzed.
(FR): L'invention concerne un procédé et un système d'ingénierie inverse utilisant des mégadonnées en fonction du contexte d'exécution de programme. Un procédé d'ingénierie inverse selon un mode de réalisation peut comprendre les étapes consistant : à exécuter, par l'intermédiaire d'un débogueur, un programme à analyser ; à utiliser le débogueur pour définir un point de rupture dans une instruction comprise dans une région d'intérêt du programme à analyser ; à stocker, dans une base de données de contexte, un contexte d'exécution à un instant correspondant par l'intermédiaire d'un gestionnaire d'événement correspondant à un événement se produisant dans l'instruction dans laquelle est défini le point de rupture ; et à traiter les données stockées dans la base de données de contexte, afin de générer un résultat d'analyse d'informations correspondant au programme à analyser.
(KO): 프로그램 실행 컨텍스트 기반의 빅데이터를 활용한 역공학 방법 및 시스템을 제공한다. 일실시예에 따른 역공학 방법은, 분석 대상 프로그램을 디버거를 통해 실행하는 단계, 상기 디버거를 이용하여 상기 분석 대상 프로그램의 관심 영역에 포함된 인스트럭션에 브레이크 포인트를 설정하는 단계, 상기 브레이크 포인트가 설정된 인스트럭션에서 발생하는 이벤트에 대해 이벤트 핸들러를 통해 해당 시점에서의 실행 컨텍스트(execution context)를 컨텍스트 데이터베이스에 저장하는 단계 및 상기 컨텍스트 데이터베이스에 저장된 데이터를 처리하여 상기 분석 대상 프로그램에 대한 정보 분석 결과를 생성하는 단계를 포함할 수 있다.

International search report:
Received at International Bureau: 09 January 2020 (09.01.2020) [KR]

International Report on Patentability (IPRP) Chapter II of the PCT:
Not available

(81) Designated States:
AE, AG, AL, AM, AO, AT, AU, AZ, BA, BB, BG, BH, BN, BR, BW, BY, BZ, CA, CH, CL, CN, CO, CR, CU, CZ, DE, DJ, DK, DM, DO, DZ, EC, EE, EG, ES, FI, GB, GD, GE, GH, GM, GT, HN, HR, HU, ID, IL, IN, IR, IS, JO, JP, KE, KG, KH, KN, KP, KW, KZ, LA, LC, LK, LR, LS, LU, LY, MA, MD, ME, MG, MK, MN, MW, MX, MY, MZ, NA, NG, NI, NO, NZ, OM, PA, PE, PG, PH, PL, PT, QA, RO, RS, RU, RW, SA, SC, SD, SE, SG, SK, SL, SM, ST, SV, SY, TH, TJ, TM, TN, TR, TT, TZ, UA, UG, US, UZ, VC, VN, ZA, ZM, ZW
European Patent Office (EPO) : AL, AT, BE, BG, CH, CY, CZ, DE, DK, EE, ES, FI, FR, GB, GR, HR, HU, IE, IS, IT, LT, LU, LV, MC, MK, MT, NL, NO, PL, PT, RO, RS, SE, SI, SK, SM, TR
African Intellectual Property Organization (OAPI) : BF, BJ, CF, CG, CI, CM, GA, GN, GQ, GW, KM, ML, MR, NE, SN, TD, TG
African Regional Intellectual Property Organization (ARIPO) : BW, GH, GM, KE, LR, LS, MW, MZ, NA, RW, SD, SL, ST, SZ, TZ, UG, ZM, ZW
Eurasian Patent Organization (EAPO) : AM, AZ, BY, KG, KZ, RU, TJ, TM