Side-channel vulnerability factor: A metric for measuring information leakage

Demme,; [], Martin; Waksman,; Sethumadhavan,

doi:10.1109/isca.2012.6237010

Cited by 60 publications

(108 citation statements)

References 13 publications

Supporting

Mentioning

107

Contrasting

Order By: Relevance

“…In particular, existing schemes no longer retain security if the adversary can additionally observe which cache-lines are accessed within the cache (i.e., when no cache miss occurs). In other words, known external-memory oblivious algorithms [33,32,35] are vulnerable to a well-known cache-timing attack [53,21,68,67] that arises due to the timesharing of on-chip caches among multiple processes. Specifically, an adversary who controls a piece of software co-resident on the same machine as the victim application, can selectively evict the victim application's cache-lines and thus infer which cachelines the victim application is requesting through careful timing measurements.…”

Section: Our Results and Contributionsmentioning

confidence: 99%

“…Since the mainstream commodity processors (even secure processors such as Intel's SGX) allow multiple processes or multiple virtual machines to time-share the same on-chip cache, a well-known cache-timing attack is possible where a malicious process (or virtual machine respectively) co-resides on the same physical machine as the victim process (or virtual machine respectively) can learn the victim process's internal secrets such as decryption keys [53,21,68,67]. In such a cache-timing attack, the attacker process selectively evicts a subset of the victim process's cache-lines from the shared cache.…”

Section: Practical Motivation and Justification Of Our Modelmentioning

confidence: 99%

See 1 more Smart Citation

Cache-Oblivious and Data-Oblivious Sorting and Applications

Chan

Guo

Lin

et al. 2018

Proceedings of the Twenty-Ninth Annual ACM-SIAM Symposium on Discrete Algorithms

View full text Add to dashboard Cite

Although external-memory sorting has been a classical algorithms abstraction and has been heavily studied in the literature, perhaps somewhat surprisingly, when data-obliviousness is a requirement, even very rudimentary questions remain open. Prior to our work, it is not even known how to construct a comparison-based, external-memory oblivious sorting algorithm that is optimal in IO-cost.We make a significant step forward in our understanding of external-memory, oblivious sorting algorithms. Not only do we construct a comparison-based, external-memory oblivious sorting algorithm that is optimal in IO-cost, our algorithm is also cache-agnostic in that the algorithm need not know the storage hierarchy's internal parameters such as the cache and cache-line sizes. Our result immediately implies a cacheagnostic ORAM construction whose asymptotic IO-cost matches the best known cache-aware scheme.Last but not the least, we propose and adopt a new and stronger security notion for external-memory, oblivious algorithms and argue that this new notion is desirable for resisting possible cache-timing attacks. Thus our work also lays a foundation for the study of oblivious algorithms in the cache-agnostic model.

show abstract

Section: Our Results and Contributionsmentioning

confidence: 99%

Section: Practical Motivation and Justification Of Our Modelmentioning

confidence: 99%

Cache-Oblivious and Data-Oblivious Sorting and Applications

Chan

Guo

Lin

et al. 2018

Proceedings of the Twenty-Ninth Annual ACM-SIAM Symposium on Discrete Algorithms

View full text Add to dashboard Cite

show abstract

“…7. For the results presented in this appendix, we used the same set of simulations as detailed in the original SVF paper [5], though we only use the "in order" attackers on SMT-enabled systems with the Timewarp microarchitectural protection.…”

Section: Resultsmentioning

confidence: 99%

“…As in the SVF paper [5], we present results in the form of a cumulative histogram, allowing us to quickly look at many configurations 3 . In Figure 7 we examine SMT systems at a fine granularity of 10,000 victim instructions.…”

Section: Resultsmentioning

confidence: 99%

See 1 more Smart Citation

TimeWarp: Rethinking timekeeping and performance monitoring mechanisms to mitigate side-channel attacks

[]¹,

Demme²,

Sethumadhavan³

2012

2012 39th Annual International Symposium on Computer Architecture (ISCA)

Self Cite

View full text Add to dashboard Cite

Over the past two decades, several microarchitectural side channels have been exploited to create sophisticated security attacks. Solutions to this problem have mainly focused on fixing the source of leaks either by limiting the flow of information through the side channel by modifying hardware, or by refactoring vulnerable software to protect sensitive data from leaking. These solutions are reactive and not preventative: while the modifications may protect against a single attack, they do nothing to prevent future side channel attacks that exploit other microarchitectural side channels or exploit the same side channel in a novel way.In this paper we present a general mitigation strategy that focuses on the infrastructure used to measure side channel leaks rather than the source of leaks, and thus applies to all known and unknown microarchitectural side channel leaks. Our approach is to limit the fidelity of fine grain timekeeping and performance counters, making it difficult for an attacker to distinguish between different microarchitectural events, thus thwarting attacks. We demonstrate the strength of our proposed security modifications, and validate that our changes do not break existing software. Our proposed changes require minor -or in some cases, no -hardware modifications and do not result in any substantial performance degradation, yet offer the most comprehensive protection against microarchitectural side channels to date.

show abstract