Virtualisation is a useful technique for security researchers trying to understand how a new piece of malware works, but it (among other techniques) can also be used by those intent on breaking software protection schemes.
SafeNet has come up with a new approach that is supposed to hold fast under such scrutiny. "Our white box solution assumes that attackers have full visibility. It replaces the exposed algorithm and encryption keys with special application libraries that minimise the attack surface," said Michael Zunke, chief technology officer, software monetization solutions, SafeNet.
This way, the keys used to encrypt communication between the software and the hardware token cannot be extracted, and each application library is uniquely generated and obfuscated for each specific software vendor using SafeNet's protection system.