A Survey on Cache Timing Channel Attacks for Multicore Processors

Kaur, Jaspinder; Das, Shirshendu

doi:10.1007/s41635-021-00115-3

Cited by 5 publications

(7 citation statements)

References 113 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In this case, both trojan and spy use the shared LLC to create a timing channel. Cache timing channel attack can be constructed using various attack techniques like Prime+Probe (P+P), Evict+Reload (E+R), Flush+Reload (F+R), and Evict+Time (E+T) [6]. These attack techniques, even though different, follow these basic three steps:…”

Section: A Cross-core Covert Channel Attacksmentioning

confidence: 99%

“…We propose TPPD to mitigate cross-core CCA. This attack can be based on Prime+Probe [6], Evict+Reload [6], or Evict+Time [6] methods, where spy and trojan processes rely on replacing each other's block to transmit bits. Trojan has a piece of secret information that spy cannot access directly due to underlying system security policies.…”

Section: Threat Modelmentioning

confidence: 99%

“…These attacks become more threatening in shared computing environments such as the cloud, where multiple users from different security domains share the underlying LLC. Cache timing channel can be implemented in two forms: Side-Channel Attack(SCA) and Covert Channel Attack(CCA) [6], [7]. The private keys of cryptography algorithms like AES [8], RSA [9], and ECDSA [10] have been the primary target of cache-based SCAs.…”

Section: Introductionmentioning

confidence: 99%

“…The private keys of cryptography algorithms like AES [8], RSA [9], and ECDSA [10] have been the primary target of cache-based SCAs. In a CCA, two suspicious processes, spy and trojan, communicate covertly by exploiting the cache timing channel [6]. The trojan runs on a different core and knows some secret information that it needs to send to the spy.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

TPPD: Targeted Pseudo Partitioning based Defence for Cross-Core Covert Channel Attacks

Kaur¹,

Das²

2022

Preprint

Self Cite

View full text Add to dashboard Cite

Contemporary computing employs cache hierarchy to fill the speed gap between processors and main memories. In order to optimise system performance, Last Level Caches(LLC) are shared among all the cores. Cache sharing has made them an attractive surface for cross-core timing channel attacks. In these attacks, an attacker running on another core can exploit the access timing of the victim process to infiltrate the secret information. One such attack is called cross-core Covert Channel Attack (CCA). Timely detection and then prevention of crosscore CCA is critical for maintaining the integrity and security of users, especially in a shared computing environment. In this work, we have proposed an efficient cross-core CCA mitigation technique. We propose a way-wise cache partitioning on targeted sets, only for the processes suspected to be attackers. In this way, the performance impact on the entire LLC is minimised, and benign applications can utilise the LLC to its full capacity. We have used a cycle-accurate simulator (gem5) to analyse the performance of the proposed method and its security effectiveness. It has been successful in abolishing the cross-core covert timing channel attack with no significant performance impact on benign applications. It causes 23% less cache misses in comparison to existing partitioning based solutions while requiring ≈ 0.26% storage overhead.

show abstract

Section: A Cross-core Covert Channel Attacksmentioning

confidence: 99%

Section: Threat Modelmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

TPPD: Targeted Pseudo Partitioning based Defence for Cross-Core Covert Channel Attacks

Kaur¹,

Das²

2022

Preprint

Self Cite

View full text Add to dashboard Cite

show abstract

“…Clearly, the local core cannot directly affect the adjacent core's private cache but can affect both cores' shared cache. It has been demonstrated in numerous works of literature [33,[46][47][48][49] that cross-core attacks can be carried out using the shared cache (usually LLC), but only if the inclusive attribute is maintained between multi-level cache. The local core can evict data from the shared cache.…”

Section: Cache Parameter Setting and Basic Considerationmentioning

confidence: 99%

Evaluation on the Impact of Cache Parameter Selection in Access-Driven Cache Attacks

Guo

Yan

et al. 2022

Electronics

View full text Add to dashboard Cite

Cache attacks exploit the hardware vulnerabilities inherent to modern processors and pose a new threat to Internet of Things (IoT) devices. Intuitively, different cache parameter configurations directly impact the attack effectiveness, but the current research on this issue is not systematic or comprehensive enough. This paper’s primary focus is to evaluate how different cache parameter configurations affect access-driven attacks. We build a flexible and configurable simulation verification environment based on the Chipyard framework. To reduce the interference of other factors, we established a baseline for each category of parameter evaluation. We propose a novel evaluation model, called Key Score Scissors Differential (KSSD), for evaluating common private and shared cache parameters under the local and cross-core attack models, respectively; among these are private cache replacement policy, private cache capacity, cache line size, private cache associativity, shared cache capacity, and shared cache associativity. Ours is the first evaluation of the shared cache under a cross-core attack model. As a result of the evaluation, the quantitative metrics can provide a reliable indication of information leakage level under the current cache configuration, which is helpful for attackers, defenders, and evaluators. Furthermore, we provide detailed explanations and discussions of inconsistent findings by comparing our results with the existing literature.

show abstract

Towards a metrics suite for evaluating cache side-channel vulnerability: Case studies on an open-source RISC-V processor

Guo,

Yan,

Wang

et al. 2023

Computers & Security

View full text Add to dashboard Cite

A Survey on Cache Timing Channel Attacks for Multicore Processors

Cited by 5 publications

References 113 publications

TPPD: Targeted Pseudo Partitioning based Defence for Cross-Core Covert Channel Attacks

TPPD: Targeted Pseudo Partitioning based Defence for Cross-Core Covert Channel Attacks

Evaluation on the Impact of Cache Parameter Selection in Access-Driven Cache Attacks

Towards a metrics suite for evaluating cache side-channel vulnerability: Case studies on an open-source RISC-V processor

Contact Info

Product

Resources

About