信息安全研究2025,Vol.11Issue(1):43-49,7.DOI:10.12379/j.issn.2096-1057.2025.01.07
一种基于图社区检测的二进制模块化方法
A Binary Modularization Approach Based on Graph Community Detection Method
摘要
Abstract
With the continuous development of information technology,the scale of software is also constantly increasing.Complex large-scale software is built by combining components that perform independent functions.However,once the source code is compiled into binary files,this modular information is lost,and the goal of binary modularization tasks is to reconstruct this information.Binary modularization has many downstream applications such as detecting binary code reuse,binary similarity detection,and binary software composition analysis.We introduce a new graph community detection algorithm and designs a binary modularization method based on this algorithm.The method's effectiveness is verified through modularization of 7 839 binary files from the Linux system.Experiments show that the method's Normalized Turbo MQ indicator is 0.557,which is a 58.6%improvement over existing state-of-the-art methods,and the running time is much less than existing methods.Additionally,we also put forward a library-level binary modularization method.Existing binary modularization methods can only decompose binaries into several modules,whereas the proposed library-level binary modularization method allows for the decomposition of binaries into several libraries.We also demonstrate the application of this method in malware classification.关键词
软件安全/二进制分析/软件模块化/图神经网络/社区检测Key words
software security/binary analysis/software modularization/graph neural network/community detection分类
计算机与自动化引用本文复制引用
刘新鹏,傅强,张红宝,陈晓光,杨满智..一种基于图社区检测的二进制模块化方法[J].信息安全研究,2025,11(1):43-49,7.基金项目
2022年工业互联网公共服务平台项目(TC220H053) (TC220H053)
