When Causality Breaks: Structural Pruning and Overconfidence in Adversarial Reverse Engineering
Authors/Creators
Description
Reverse engineering of binary code is traditionally framed as a pattern recognition problem. In this work, we propose a paradigm shift by modeling programs as causal systems, where semantics emerge from execution dynamics. We introduce a Causal Reverse Engineering (CRE) framework that represents execution traces as Causal Interaction Graphs, processed by a Graph Neural Network (GNN) to infer program intent.
While highly effective on clean binaries (100% accuracy), we demonstrate that adversarial control-flow obfuscation induces a catastrophic "structural collapse" (accuracy drops to 16.7%). We propose Structural Causal Pruning as a mitigation, restoring accuracy to 66.7%. Crucially, we identify and formalize the phenomenon of Causal Overconfidence through the Causal Overconfidence Index (COI), highlighting a critical risk in security-oriented AI models.
Repository Content This Zenodo deposit contains the full research artifact, including:
-
Technical Paper (PDF): Full description of the methodology and results.
-
Source Code (Notebook): Implementation of the CRE framework, GNN training, and pruning heuristics.
-
Data & Plots: CSV summaries of the experiments and performance visualizations.
Files
__notebook_source__.ipynb
Files
(763.0 kB)
| Name | Size | Download all |
|---|---|---|
|
md5:2402d6e28072b99ab78d38a649f35996
|
46.7 kB | Preview Download |
|
md5:3ae876acc0930b1ebb5a807c9ef29bd1
|
108.0 kB | Preview Download |
|
md5:5a73c4400e3a1a57bbad295fcb63cb32
|
188.3 kB | Preview Download |
|
md5:be34adb90a51180ea430cbc6f70f2116
|
3.1 kB | Preview Download |
|
md5:69b6159831aa136acf0790aa9c6acffa
|
165 Bytes | Preview Download |
|
md5:29412d68be4145571728e7f42be6bfd1
|
416.7 kB | Preview Download |
