Protecting Private Keys against Memory Disclosure Attacks Using Hardware Transactional Memory

Guan, Le; Lin, Jingqiang; Luo, Bo; Jing, Jiwu; Wang, Jing

doi:10.1109/sp.2015.8

Cited by 80 publications

(37 citation statements)

References 55 publications

(140 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Register based [24], [22] Cache-based [26], [55], [18] On-Chip Memory Based [18] CaSE 3) Secure Information Flow: It is critical to secure the information flow between the external DRAM and the onchip memory when adopting CaSE on other platforms. Our implementation on the i.MX53 relies on the isolation provided by TrustZone and the ability to lock memory contents in cache to prevent malicious attacks.…”

Section: Hardware-assisted Executionmentioning

confidence: 99%

See 1 more Smart Citation

CaSE: Cache-Assisted Secure Execution on ARM Processors

Zhang

Sun

Lou

et al. 2016

2016 IEEE Symposium on Security and Privacy (SP)

View full text Add to dashboard Cite

Recognizing the pressing demands to secure embedded applications, ARM TrustZone has been adopted in both academic research and commercial products to protect sensitive code and data in a privileged, isolated execution environment. However, the design of TrustZone cannot prevent physical memory disclosure attacks such as cold boot attack from gaining unrestricted read access to the sensitive contents in the dynamic random access memory (DRAM). A number of system-on-chip (SoC) bound execution solutions have been proposed to thaw the cold boot attack by storing sensitive data only in CPU registers, CPU cache or internal RAM. However, when the operating system, which is responsible for creating and maintaining the SoC-bound execution environment, is compromised, all the sensitive data is leaked.In this paper, we present the design and development of a cache-assisted secure execution framework, called CaSE, on ARM processors to defend against sophisticated attackers who can launch multi-vector attacks including software attacks and hardware memory disclosure attacks. CaSE utilizes TrustZone and Cache-as-RAM technique to create a cache-based isolated execution environment, which can protect both code and data of security-sensitive applications against the compromised OS and the cold boot attack. To protect the sensitive code and data against cold boot attack, applications are encrypted in memory and decrypted only within the processor for execution. The memory separation and the cache separation provided by TrustZone are used to protect the cached applications against compromised OS.We implement a prototype of CaSE on the i.MX53 running ARM Cortex-A8 processor. The experimental results show that CaSE incurs small impacts on system performance when executing cryptographic algorithms including AES, RSA, and SHA1.

show abstract

Section: Hardware-assisted Executionmentioning

confidence: 99%

“…Several research works [24], [22], [23], [77] use register to store cryptographic sensitive materials. In [25], [26], [18], [55], the sensitive cryptographic materials are stored in the processor cache. Alternatively, OCRAM is used in [18].…”

Section: B Soc-bound Executionmentioning

confidence: 99%

CaSE: Cache-Assisted Secure Execution on ARM Processors

Zhang

Sun

Lou

et al. 2016

2016 IEEE Symposium on Security and Privacy (SP)

View full text Add to dashboard Cite

show abstract

“…Some approaches focus exclusively on the protection of a specific encryption key stored in RAM, e.g., the FDE key, but leave all other data in main memory unprotected from memory attacks. Approaches for x86 [25,12,13,23], as well as for ARM [11] and hypervisors exist [26]. Their common idea is to store a key in the CPU/GPU registers or in the CPU cache and to implement the cipher associated with the key on-chip at the cost of system performance.…”

Section: Related Workmentioning

confidence: 99%

Protecting Suspended Devices from Memory Attacks

Huber

Horsch

Wessel

2017

Proceedings of the 10th European Workshop on Systems Security

View full text Add to dashboard Cite

Today's computing devices keep considerable amounts of sensitive data unencrypted in RAM. When stolen, lost or simply unattended, attackers are capable of accessing the data in RAM with ease. Valuable and possibly classified data falling into the wrongs hands can lead to severe consequences, for instance when disclosed or reused to log in to accounts or to make transactions. We present a lightweight and hardware-independent mechanism to protect confidential data on suspended Linux devices against physical attackers. Our mechanism rapidly encrypts the contents of RAM during suspension and thereby prevents attackers from retrieving confidential data from the device. Existing systems can easily be extended with our mechanism while fully preserving the usability for end users.

show abstract

“…The second category of the proposed solutions for memory encryption is based on hardware modifications. In particular, several publications [18][19][20][21][22][23] [40] for single processor systems propose the addition of an encryption unit to cipher and decipher data from and to the volatile memory. Moreover, for multiprocessor systems, [24] proposes a shared bus, containing a crypto engine, to coordinate and secure traffic between processors, while [25] [26] proposed the use of sequence numbers for the coordination between different processors.…”

Section: Related Workmentioning

confidence: 99%

Protecting Sensitive Information in the Volatile Memory from Disclosure Attacks

Malliaros

Ntantogian

Xenakis

2016

2016 11th International Conference on Availability, Reliability and Security (ARES)

View full text Add to dashboard Cite

Abstract-The protection of the volatile memory data is an issue of crucial importance, since authentication credentials and cryptographic keys remain in the volatile memory. For this reason, the volatile memory has become a prime target for memory scrapers, which specifically target the volatile memory, in order to steal sensitive information, such as credit card numbers. This paper investigates security measures, to protect sensitive information in the volatile memory from disclosure attacks. Experimental analysis is performed to investigate whether the operating systems (Windows or Linux) perform data zeroization in the volatile memory. Results show that Windows kernel zeroize data after a process termination, while the Linux kernel does not. Next, we examine functions and software techniques in C/C++ programming language that can be used by developers to modify at process runtime the contents of the allocated blocks in the volatile memory. We have identified that only the Windows operating system provide a specific function named SecureZeroMemory that can reliably zeroize data. Finally, driven by the fact that malware scrapers primarily target web browsers, we examine whether it is feasible to extract authentication credentials from the volatile memory allocated by web browsers. The presented results show that in most cases we can successfully recover user authentication credentials from all the web browsers except when the user has closed the tab that used to access the website.

show abstract

Protecting Private Keys against Memory Disclosure Attacks Using Hardware Transactional Memory

Cited by 80 publications

References 55 publications

CaSE: Cache-Assisted Secure Execution on ARM Processors

CaSE: Cache-Assisted Secure Execution on ARM Processors

Protecting Suspended Devices from Memory Attacks

Protecting Sensitive Information in the Volatile Memory from Disclosure Attacks

Contact Info

Product

Resources

About