A tool for static detection of timing channels in Java

Lux, Alexander; Starostin, Artem

doi:10.1007/s13389-011-0021-z

Cited by 10 publications

(6 citation statements)

References 25 publications

(40 reference statements)

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…[2]), a range of concrete compilation systems exist. For example, Molnar et al [3] construct a binary translation (i.e., compilation) tool that resolves control-flow based leakage using the Program Counter Model (PCM) formalism; Lux and Starostin [4] describe a tool which detects and eliminates timing side-channels in Java programs (demonstrating the tool by highlighting an attack against the FlexiProver implementation of IDEA). Likewise, suitable EDA tool-chains [5] can, given some HDL model, automatically implement countermeasures against power-analysis attacks: a back-end which processes some logical netlist can replace standard cells with a secure logic style equivalent (e.g.…”

Section: Introductionmentioning

confidence: 99%

Compiler Assisted Masking

Moss¹,

Oswald²,

Page³

et al. 2012

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. Differential Power Analysis (DPA) attacks find a statistical correlation between the power consumption of a cryptographic device and intermediate values within the computation. Randomization via (Boolean) masking of intermediate values breaks this statistical dependence and thus prevents such attacks (at least up to a certain order). Especially for software implementations, (first-order) masking schemes are popular in academia and industry, albeit typically not as the sole countermeasure. The current practice then is to manually 'insert' Boolean masks: essentially software developers need to manipulate low-level assembly language to implement masking. In this paper we make a first step to automate this process, at least for first-order Boolean masking, allowing the development of compilers capable of protecting programs against DPA.

show abstract

Section: Introductionmentioning

confidence: 99%

Compiler Assisted Masking

Moss¹,

Oswald²,

Page³

et al. 2012

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…This timing side channel allows an attacker to reconstruct the 16 least significant bits of the secret key. We reproduced the attack described by Lux et al [52]: For a given secret key, we timed the encryption of 16,777,215 8-byte pseudo-random plaintext messages. We then grouped these timings in 65,536 clusters, based on the 16 least significant bits of the produced ciphertext.…”

Section: Bouncycastle Idea Encryptionmentioning

confidence: 99%

Adaptive Compiler Strategies for Mitigating Timing Side Channel Attacks

Cleemput

Sutter

Bosschere

2020

IEEE Trans. Dependable and Secure Comput.

View full text Add to dashboard Cite

Existing compiler techniques can transform code to make its timing behavior independent of sensitive values to prevent information leakage through time side channels. Those techniques are hampered, however, by their static nature and dependence on details of the processor targeted during the compilation. This paper presents a dynamic compiler approach based on offline profiles and JIT compiler strategies. This approach reduces overhead significantly and enables a trade-off between provided protection and overhead. Furthermore, it supports adaptive policies in which the protection adapts to run-time changes in the requirements. A prototype implementation in the Jikes Research VM is evaluated on RSA encryption, HMAC key verification, and IDEA encryption.

show abstract

“…Unfortunately, there are cryptographic issues that cannot be detected by ordinary tools and simple techniques [48]. These issues have been addressed by advanced tools in academic research [11][14] [49][50][51] [52]. The CryptoLint [11] tool takes a raw Android binary, disassembles it, and checks for typical cryptographic misuses.…”

Section: Static Analysis Toolsmentioning

confidence: 99%

“…The Side Channel Finder (SCF) [49] is a static analysis tool for detection of timing channels in Java implementations of cryptographic algorithms. These sidechannels are often caused by branching of control flow, with branching conditions depending on the attacked secrets.…”

Section: Static Analysis Toolsmentioning

confidence: 99%

A Survey on Tools and Techniques for the Programming and Verification of Secure Cryptographic Software

Braga

Dahab

2015

Anais Do XV Simpósio Brasileiro De Segurança Da Informação E De Sistemas Computacionais (SBSeg 2015)

View full text Add to dashboard Cite

This paper contributes to broaden the discussion on tools and techniques in cryptographic programming and verification. The paper accomplishes three goals: (i) surveys recent advances in supporting tools for cryptographic software programming and verification; (ii) associates these tools to current security practices; and (iii) organizes their use into software programming and verification steps. The paper concludes that there is no single tool for secure development of cryptographic software. Instead, only a well-crafted toolkit can cover the whole landscape of secure cryptographic software coding and verification.

show abstract

A tool for static detection of timing channels in Java

Cited by 10 publications

References 25 publications

Compiler Assisted Masking

Compiler Assisted Masking

Adaptive Compiler Strategies for Mitigating Timing Side Channel Attacks

A Survey on Tools and Techniques for the Programming and Verification of Secure Cryptographic Software

Contact Info

Product

Resources

About