Timing Leaks and Coarse-Grained Clocks

Vasilikos, Panagiotis; Nielson, Hanne Riis; Nielson, Flemming; Köpf, Boris

doi:10.1109/csf.2019.00010

Cited by 4 publications

(5 citation statements)

References 25 publications

(47 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [Vas+19], Vasilikos et al study the impact of clock granularity on timing channel attacks. Timing side-channels attacks are closely related to non-interference, as an attacker is able to deduce internal information about a system by accessing some publicly available data-notably time.…”

Section: Non-interference and Information Flowmentioning

confidence: 99%

“…Here, by "clock granularity", we mean clock as in processor clock that ticks periodically (different from the abstract concept of "timed automata clocks"). The authors in [Vas+19] notably propose a modeling based on timed automata with stochastic conditions, and they provide sufficient conditions "for when one can achieve better security by increasing the grain of the clock". The authors describe stochastic systems with the help of probabilistic TAs, and provide an algorithm for obtaining, given an attack scenario on a deterministic system, the timing channels along with their respective probability of occurrence.…”

Section: Non-interference and Information Flowmentioning

confidence: 99%

See 1 more Smart Citation

Timed Automata as a Formalism for Expressing Security: A Survey on Theory and Practice

Arcile

André

2022

ACM Comput. Surv.

View full text Add to dashboard Cite

Timed automata are a common formalism for the verification of concurrent systems subject to timing constraints. They extend finite-state automata with clocks, that constrain the system behavior in locations, and to take transitions. While timed automata were originally designed for safety (in the wide sense of correctness w.r.t. a formal property), they were progressively used in a number of works to guarantee security properties. In this work, we review works studying security properties for timed automata in the last two decades. We notably review theoretical works, with a particular focus on opacity, as well as more practical works, with a particular focus on attack trees and their extensions. We derive main conclusions concerning open perspectives, as well as tool support.

show abstract

Section: Non-interference and Information Flowmentioning

confidence: 99%

Section: Non-interference and Information Flowmentioning

confidence: 99%

Timed Automata as a Formalism for Expressing Security: A Survey on Theory and Practice

Arcile

André

2022

ACM Comput. Surv.

View full text Add to dashboard Cite

show abstract

“…Note that our attacker may combine both differential-and absolutetime capabilities because programs have access to real-time clocks. Vasilikos et al [59] utilize time automata to study adversaries parametrized in the granularity of the clock. Practical remote timing attacks Remote timing attacks are (still) practical [22], [23].…”

Section: Related Workmentioning

confidence: 99%

Clockwork: Tracking Remote Timing Attacks

Bastys

Balliu

Rezk

et al. 2020

2020 IEEE 33rd Computer Security Foundations Symposium (CSF)

View full text Add to dashboard Cite

Timing leaks have been a major concern for the security community. A common approach is to prevent secrets from affecting the execution time, thus achieving security with respect to a strong, local attacker who can measure the timing of program runs. However, this approach becomes restrictive as soon as programs branch on a secret. This paper focuses on timing leaks under remote execution. A key difference is that the remote attacker does not have a reference point of when a program run has started or finished, which significantly restricts attacker capabilities. We propose an extensional security characterization that captures the essence of remote timing attacks. We identify patterns of combining clock access, secret branching, and output in a way that leads to timing leaks. Based on these patterns, we design Clockwork, a monitor that rules out remote timing leaks. We implement the approach for JavaScript, leveraging JSFlow, a state-of-the-art information flow tracker. We demonstrate the feasibility of the approach on case studies with IFTTT, a popular IoT app platform, and VJSC, an advanced JavaScript library for e-voting.

show abstract

“…All of the cache side channel attacks need the high resolution timer to measure the time of cache accesses, thus some operating systems or browsers provide a coarse timer only to enhance security. But Schwarz et al propose that the attacker can utilize other timing primitives to build a new high resolution timer [22], and Vasilikos et al show that coarse timer may leak more information by analyzing the information flow model of the attacks [23].…”

Section: Cache Side Channel Security Mechanismsmentioning

confidence: 99%

Colored Petri Net Based Cache Side Channel Vulnerability Evaluation

et al. 2019

View full text Add to dashboard Cite

The cache side channel leakage is a very serious security issue in the information security field. In order to solve this problem, a large number of security mechanisms have been applied to protect the cache. However, there are very limited methods we can choose to evaluate the cache side channel vulnerability, therefore, it is hard to know whether our system configuration or applied security mechanisms make caches more resistant to the cache side channel attacks. In this paper, we proposed a colored Petri net based method to model and score the cache side channel vulnerability. When given a side channel attack and related security mechanisms, our method utilized colored Petri net to model the requirements and the attack steps of cache attacks. Then we calculated the probability of success for each attack step according to the requirements and the computer environment, and the Common Vulnerability Scoring System (CVSS) was used to help us score the attack steps. Based on these probabilities and CVSS scores, we finally obtained a total risk score, which represented the threat level of the cache attacks in a specified computer environment with certain security mechanisms. This paper focused on the typical cache attacks and security mechanisms, and our experiments showed that we can conveniently evaluate and compare the threat level of cache attacks in the computer environment with different security mechanisms.INDEX TERMS Cache side channel attack, security evaluation, CVSS, colored Petri net, qualification.

show abstract

Timing Leaks and Coarse-Grained Clocks

Cited by 4 publications

References 25 publications

Timed Automata as a Formalism for Expressing Security: A Survey on Theory and Practice

Timed Automata as a Formalism for Expressing Security: A Survey on Theory and Practice

Clockwork: Tracking Remote Timing Attacks

Colored Petri Net Based Cache Side Channel Vulnerability Evaluation

Contact Info

Product

Resources

About