SgxPectre: Stealing Intel Secrets From SGX Enclaves via Speculative Execution

Chen, Guoxing; Chen, Sanchuan; Xiao, Yuan; Zhang, Yinqian; Lin, Zhiqiang; Lai, Ten-Hwang

doi:10.1109/msec.2019.2963021

Cited by 115 publications

(162 citation statements)

References 49 publications

Supporting

Mentioning

161

Contrasting

Order By: Relevance

“…Spectre v2 [17] targets BTB storing the branch targets of indirect branch instructions. SGXPectre [6] makes use of this variant to steal secret from SGX enclaves. • Return Stack Buffer (RSB).…”

Section: Related Workmentioning

confidence: 99%

SPEECHMINER: A Framework for Investigating and Measuring Speculative Execution Vulnerabilities

Xiao

Zhang

Teodorescu

2020

Proceedings 2020 Network and Distributed System Security Symposium

Self Cite

View full text Add to dashboard Cite

SPEculative Execution side Channel Hardware (SPEECH) Vulnerabilities have enabled the notorious Meltdown, Spectre, and L1 terminal fault (L1TF) attacks. While a number of studies have reported different variants of SPEECH vulnerabilities, they are still not well understood. This is primarily due to the lack of information about microprocessor implementation details that impact the timing and order of various micro-architectural events. Moreover, to date, there is no systematic approach to quantitatively measure SPEECH vulnerabilities on commodity processors. This paper introduces SPEECHMINER, a software framework for exploring and measuring SPEECH vulnerabilities in an automated manner. SPEECHMINER empirically establishes the link between a novel two-phase fault handling model and the exploitability and speculation windows of SPEECH vulnerabilities. It enables testing of a comprehensive list of exception-triggering instructions under the same software framework, which leverages covert-channel techniques and differential tests to gain visibility into the micro-architectural state changes. We evaluated SPEECH-MINER on 9 different processor types, examined 21 potential vulnerability variants, confirmed various known attacks, and identified several new variants.

show abstract

Section: Related Workmentioning

confidence: 99%

SPEECHMINER: A Framework for Investigating and Measuring Speculative Execution Vulnerabilities

Xiao

Zhang

Teodorescu

2020

Proceedings 2020 Network and Distributed System Security Symposium

Self Cite

View full text Add to dashboard Cite

show abstract

“…We acknowledge that several recent studies have uncovered side-channel attacks to compromise the confidentiality of Intel SGX [13,19,23,28,29,31]. Also, multiple mitigation techniques have been proposed to address attack-specific issues [18,[24][25][26].…”

Section: The Enclave E Is Loaded Inside a Properly Implemented And Mamentioning

confidence: 99%

Trustee: Full Privacy Preserving Vickrey Auction on Top of Ethereum

Galal

Youssef

2020

Lecture Notes in Computer Science

View full text Add to dashboard Cite

The wide deployment of tokens for digital assets on top of Ethereum implies the need for powerful trading platforms. Vickrey auctions have been known to determine the real market price of items as bidders are motivated to submit their own monetary valuations without leaking their information to the competitors. Recent constructions have utilized various cryptographic protocols such as ZKP and MPC, however, these approaches either are partially privacy-preserving or require complex computations with several rounds. In this paper, we overcome these limits by presenting Trustee as a Vickrey auction on Ethereum which fully preserves bids' privacy at relatively much lower fees. Trustee consists of three components: a front-end smart contract deployed on Ethereum, an Intel SGX enclave, and a relay to redirect messages between them. Initially, the enclave generates an Ethereum account and ECDH key-pair. Subsequently, the relay publishes the account's address and ECDH public key on the smart contract. As a prerequisite, bidders are encouraged to verify the authenticity and security of Trustee by using the SGX remote attestation service. To participate in the auction, bidders utilize the ECDH public key to encrypt their bids and submit them to the smart contract. Once the bidding interval is closed, the relay retrieves the encrypted bids and feeds them to the enclave that autonomously generates a signed transaction indicating the auction winner. Finally, the relay submits the transaction to the smart contract which verifies the transaction's authenticity and the parameters' consistency before accepting the claimed auction winner. As part of our contributions, we have made a prototype for Trustee available on Github 1 for the community to review and inspect it. Additionally, we analyze the security features of Trustee and report on the transactions' gas cost incurred on Trustee smart contract.

show abstract

“…Performance degradation of ∼40% is reported for a database application generating 200K requests per second to the untrusted OS. Moreover, various microarchitecture state leakage channels in SGX have led to security vulnerabilities [16], [17].…”

Section: A Secure Processor Architecturesmentioning

confidence: 99%

“…The performance of an SGX-like enclave setup suffers by ∼33% since it incurs overheads associated with pipeline flushing and cryptography operations on every secure enclave entry and exit. Moreover, due to temporal execution of the secure enclave with insecure processes, an attacker process can either directly monitor accesses made by the enclave [1], [4], [16], or befuddle the system in making speculative accesses [5], [6], [17] to leak secure enclave's data.…”

Section: Introductionmentioning

confidence: 99%

IRONHIDE: A Secure Multicore that Efficiently Mitigates Microarchitecture State Attacks for Interactive Applications

Omar

Khan

2020

2020 IEEE International Symposium on High Performance Computer Architecture (HPCA)

View full text Add to dashboard Cite

Microprocessors enable aggressive hardware virtualization by means of which multiple processes temporally execute on the system. These security-critical and ordinary processes interact with each other to assure application progress. However, temporal sharing of hardware resources exposes the processor to various microarchitecture state attacks. State-of-the-art secure processors, such as MI6 adopt Intel's SGX enclave execution model. MI6 architects strong isolation by statically isolating shared memory state, and purging the microarchitecture state of private core, cache, and TLB resources on every enclave entry and exit. The purging overhead significantly impacts performance as the interactivity across the secure and insecure processes increases. This paper proposes IRONHIDE that implements strong isolation in the context of multicores to form spatially isolated secure and insecure clusters of cores. For an interactive application comprising of secure and insecure processes, IRONHIDE pins the secure process(es) to the secure cluster, where they execute and interact with the insecure process(es) without incurring the microarchitecture state purging overheads on every interaction event. IRONHIDE improves performance by 2.1× over the MI6 baseline for a set of user and OS interactive applications. Moreover, IRONHIDE improves performance by 20% over an SGX-like baseline, while also ensuring strong isolation guarantees against microarchitecture state attacks.

show abstract

SgxPectre: Stealing Intel Secrets From SGX Enclaves via Speculative Execution

Cited by 115 publications

References 49 publications

SPEECHMINER: A Framework for Investigating and Measuring Speculative Execution Vulnerabilities

SPEECHMINER: A Framework for Investigating and Measuring Speculative Execution Vulnerabilities

Trustee: Full Privacy Preserving Vickrey Auction on Top of Ethereum

IRONHIDE: A Secure Multicore that Efficiently Mitigates Microarchitecture State Attacks for Interactive Applications

Contact Info

Product

Resources

About