Rethinking Memory Permissions for Protection Against Cross-Layer Attacks

Elwell, Jesse; Riley, Ryan; Abu-Ghazaleh, Nael; Ponomarev, Dmitry; Cervesato, Iliano

doi:10.1145/2842621

Cited by 2 publications

(2 citation statements)

References 40 publications

(27 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Therefore, in the future, it is important to consider mitigation techniques that will close the possibilities for both side channels and covert channels through shared branch prediction units and other shared resources. Identifying and mitigating side and covert channels becomes a high priority research direction in the environments that assume potentially compromised system software layers [McKeen et al 2013;Evtyushkin et al 2014;Elwell et al , 2015Hofmann et al 2013]. In this case, the OS can assist in the creation of the timing channels, circumventing strong isolation [Xu et al 2015].…”

Section: Related Workmentioning

confidence: 99%

Understanding and Mitigating Covert Channels Through Branch Predictors

Evtyushkin

Ponomarev

Abu-Ghazaleh

2016

ACM Trans. Archit. Code Optim.

Self Cite

View full text Add to dashboard Cite

Covert channels through shared processor resources provide secret communication between two malicious processes: the trojan and the spy. In this article, we classify, analyze, and compare covert channels through dynamic branch prediction units in modern processors. Through experiments on a real hardware platform, we compare contention-based channel and the channel that is based on exploiting the branch predictor's residual state. We analyze these channels in SMT and single-threaded environments under both clean and noisy conditions. Our results show that the residual state-based channel provides a cleaner signal and is effective even in noisy execution environments with another application sharing the same physical core with the trojan and the spy. We also estimate the capacity of the branch predictor covert channels and describe a software-only mitigation technique that is based on randomizing the state of the predictor tables on context switches. We show that this protection eliminates all covert channels through the branch prediction unit with minimal impact on performance.CCS Concepts: r Security and privacy → Security in hardware; Systems security; r Computer systems organization → Architectures;Additional Key Words and Phrases: Security, covert channel, branch predictor ACM Reference Format: Dmitry Evtyushkin, Dmitry Ponomarev, and Nael Abu-Ghazaleh. 2016. Understanding and mitigating covert channels through branch predictors.

show abstract

Section: Related Workmentioning

confidence: 99%

Understanding and Mitigating Covert Channels Through Branch Predictors

Evtyushkin

Ponomarev

Abu-Ghazaleh

2016

ACM Trans. Archit. Code Optim.

Self Cite

View full text Add to dashboard Cite

show abstract

“…Figure 3 shows the overview process for FinTech service-provision environment. In fact, the existing network environment and the FinTech environment are not significantly different [9,11]. The important thing to consider is the financial platform including the bank server.…”

Section: Security Issues and Requirementsmentioning

confidence: 99%

The Data Processing Approach for Preserving Personal Data in FinTech-Driven Paradigm

Kim¹,

Hong²

2016

IJSIA

View full text Add to dashboard Cite

FinTech-driven paradigm shift in financial service poses challenges for financial sector in balancing the potential benefits of development with the potential risks. It is difficult to detect as advanced threats, so the extent of the damage cannot be foreseen in the financial sector. In this paper, we suggest the approach based on trust about processing data including personally identifiable information for preserving and protecting in the environment using FinTech.

show abstract

Rethinking Memory Permissions for Protection Against Cross-Layer Attacks

Cited by 2 publications

References 40 publications

Understanding and Mitigating Covert Channels Through Branch Predictors

Understanding and Mitigating Covert Channels Through Branch Predictors

The Data Processing Approach for Preserving Personal Data in FinTech-Driven Paradigm

Contact Info

Product

Resources

About