Controlled-Channel Attacks: Deterministic Side Channels for Untrusted Operating Systems
作者: Yuanzhong Xu , Weidong Cui , Marcus Peinado
DOI: 10.1109/SP.2015.45
关键词:
摘要: The presence of large numbers security vulnerabilities in popular feature-rich commodity operating systems has inspired a long line work on excluding these from the trusted computing base applications, while retaining many their benefits. Legacy applications continue to run untrusted system, small hyper visor or hardware prevents system accessing applications' memory. In this paper, we introduce controlled-channel attacks, new type side-channel attack that allows an extract amounts sensitive information protected like Overshadow, Ink Tag Haven. We implement attacks Haven and demonstrate power by extracting complete text documents outlines JPEG images widely deployed application libraries. Given it is unclear if Over shadow's vision protecting unmodified legacy running off-the-shelf still tenable.
ieee-security.org 参考文章(44)
Gorka Irazoqui, Mehmet Sinan Inci, Thomas Eisenbarth, Berk Sunar, Wait a Minute! A fast, Cross-VM Attack on AES recent advances in intrusion detection. pp. 299- 319 ,(2014) , 10.1007/978-3-319-11379-1_15
Ernie Brickell, Jean-Pierre Seifert, Michael Neve, Gary Graunke, Software mitigations to hedge AES against cache-based software side channel vulnerabilities. IACR Cryptology ePrint Archive. ,vol. 2006, pp. 52- ,(2006)
Yuval Yarom, Katrina Falkner, None, FLUSH+RELOAD: a high resolution, low noise, L3 cache side-channel attack usenix security symposium. pp. 719- 732 ,(2014)
Daniel C. DuVarney, Sandeep Bhatkar, R. Sekar, Address obfuscation: an efficient approach to combat a board range of memory error exploits usenix security symposium. pp. 8- 8 ,(2003)
Dan Boneh, David Brumley, Remote timing attacks are practical usenix security symposium. pp. 1- 1 ,(2003)
Gloria Mainar-Ruiz, Marcus Peinado, Taesoo Kim, STEALTHMEM: system-level protection against cache-based side channel attacks in the cloud usenix security symposium. pp. 11- 11 ,(2012)
Paul C. Kocher, Timing Attacks on Implementations of Diffie-Hellman, RSA, DSS, and Other Systems international cryptology conference. ,vol. 1109, pp. 104- 113 ,(1996) , 10.1007/3-540-68697-5_9
Marcus Peinado, Galen Hunt, Andrew Baumann, Shielding applications from an untrusted cloud with Haven operating systems design and implementation. pp. 267- 283 ,(2014) , 10.5555/2685048.2685070
R. Hund, C. Willems, T. Holz, Practical Timing Side Channel Attacks against Kernel Space ASLR ieee symposium on security and privacy. pp. 191- 205 ,(2013) , 10.1109/SP.2013.23
Yinqian Zhang, Ari Juels, Michael K. Reiter, Thomas Ristenpart, Cross-VM side channels and their use to extract private keys Proceedings of the 2012 ACM conference on Computer and communications security - CCS '12. pp. 305- 316 ,(2012) , 10.1145/2382196.2382230