Copker: Computing with Private Keys without RAM

Guan, Le; Lin, Jingqiang; Luo, Bo; Jing, Jiwu

doi:10.14722/ndss.2014.23125

Cited by 45 publications

(28 citation statements)

References 30 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…19 Goldwasser et al add an all-or-nothing transformation to the output of f (a, b): the output is masked by random bits that are only fully revealed once all of b is selected. 20 In the TXT-only variant, the output is provided at the end as enforced by the execution of the system.…”

Section: B Adaptive Attacks On Otpsmentioning

confidence: 99%

See 1 more Smart Citation

One-Time Programs Made Practical

Zhao

Choi

Demirag

et al. 2019

Financial Cryptography and Data Security

View full text Add to dashboard Cite

A one-time program (OTP) works as follows: Alice provides Bob with the implementation of some function. Bob can have the function evaluated exclusively on a single input of his choosing. Once executed, the program will fail to evaluate on any other input. State-of-the-art one-time programs have remained theoretical, requiring custom hardware that is cost-ineffective/unavailable, or confined to adhoc/unrealistic assumptions. To bridge this gap, we explore how the Trusted Execution Environment (TEE) of modern CPUs can realize the OTP functionality. Specifically, we build two flavours of such a system: in the first, the TEE directly enforces the one-timeness of the program; in the second, the program is represented with a garbled circuit and the TEE ensures Bob's input can only be wired into the circuit once, equivalent to a smaller cryptographic primitive called one-time memory. These have different performance profiles: the first is best when Alice's input is small and Bob's is large, and the second for the converse. 5 Hazay and Lindell [24] give a thorough treatment of interactive two-party protocols. 6 Further explanation is provided in Appendix A.2. arXiv:1907.00935v1 [cs.CR] 1 Jul 2019 7 As an example, Intel STK2mv64CC, a Compute Stick that supports both TXT and TPM, was priced at $499.95 USD on Amazon.com (as of September 2018). 8 A state-bound cryptographic operation performed by the TPM chip, like encryption.

show abstract

Section: B Adaptive Attacks On Otpsmentioning

confidence: 99%

“…This problem does not arise in garbled circuits since the oblivious transfer is completed prior to providing the circuit 20. This fixes the issue because the simulator can equivocate on the final masking value to program the random value, sitting wherever the circuit ends up, with the correct output value for the now-known input 21.…”

mentioning

confidence: 99%

One-Time Programs Made Practical

Zhao

Choi

Demirag

et al. 2019

Financial Cryptography and Data Security

View full text Add to dashboard Cite

show abstract

“…Some approaches focus exclusively on the protection of a specific encryption key stored in RAM, e.g., the FDE key, but leave all other data in main memory unprotected from memory attacks. Approaches for x86 [25,12,13,23], as well as for ARM [11] and hypervisors exist [26]. Their common idea is to store a key in the CPU/GPU registers or in the CPU cache and to implement the cipher associated with the key on-chip at the cost of system performance.…”

Section: Related Workmentioning

confidence: 99%

Protecting Suspended Devices from Memory Attacks

Huber

Horsch

Wessel

2017

Proceedings of the 10th European Workshop on Systems Security

View full text Add to dashboard Cite

Today's computing devices keep considerable amounts of sensitive data unencrypted in RAM. When stolen, lost or simply unattended, attackers are capable of accessing the data in RAM with ease. Valuable and possibly classified data falling into the wrongs hands can lead to severe consequences, for instance when disclosed or reused to log in to accounts or to make transactions. We present a lightweight and hardware-independent mechanism to protect confidential data on suspended Linux devices against physical attackers. Our mechanism rapidly encrypts the contents of RAM during suspension and thereby prevents attackers from retrieving confidential data from the device. Existing systems can easily be extended with our mechanism while fully preserving the usability for end users.

show abstract

“…Existing approaches such as Prime-and-probe [40], Flush-and-reload [43] may be also feasible to stealing the device keys, though to our best knowledge, there are no such successful attacks on TrustZone. Defensive methods against such attacks include: using lock-down cache lines for key calculation in secure world, using hardware encrypt/decrypt engines on the SoC (most of mobile devices are equipped with this feature), flushes sensitive cache on world-switch or using cache or SoC internal RAM for private key computation [21,32].…”

Section: Security Analysis and Deploy-mentmentioning

confidence: 99%

AdAttester

Chen

et al. 2015

Proceedings of the 13th Annual International Conference on Mobile Systems, Applications, and Services

View full text Add to dashboard Cite

Mobile advertisement (ad for short) is a major financial pillar for developers to provide free mobile apps. However, it is frequently thwarted by ad fraud, where rogue code tricks ad providers by forging ad display or user clicks, or both. With the mobile ad market growing drastically (e.g., from $8.76 billion in 2012 to $17.96 billion in 2013), it is vitally important to provide a verifiable mobile ad framework to detect and prevent ad frauds. Unfortunately, this is notoriously hard as mobile ads usually run in an execution environment with a huge TCB.This paper proposes a verifiable mobile ad framework called AdAttester, based on ARM's TrustZone technology. AdAttester provides two novel security primitives, namely unforgeable clicks and verifiable display. The two primitives attest that ad-related operations (e.g., user clicks) are initiated by the end user (instead of a bot) and that the ad is displayed intact and timely. AdAttester leverages the secure world of TrustZone to implement these two primitives to collect proofs, which are piggybacked on ad requests to ad providers for attestation. AdAttester is non-intrusive to mobile users and can be incrementally deployed in existing ad ecosystem. A prototype of AdAttester is implemented for Android running on a Samsung Exynos 4412 board. Evaluation using 182 typical mobile apps with ad frauds shows that AdAttester can accurately distinguish ad fraud from legitimate ad operations, yet incurs small performance overhead and little impact on user experience.

show abstract

Copker: Computing with Private Keys without RAM

Cited by 45 publications

References 30 publications

One-Time Programs Made Practical

One-Time Programs Made Practical

Protecting Suspended Devices from Memory Attacks

AdAttester

Contact Info

Product

Resources

About