Book ChapterDOI
A predictive model for cache-based side channels in multicore and multithreaded microprocessors
Leonid Domnitser,Nael Abu-Ghazaleh,Dmitry Ponomarev +2 more
- pp 70-85
TLDR
A mathematical model to evaluate the expected leakage in a cache as a function of the cache parameters and the victim application behavior is proposed and demonstrated that it accurately estimates side channel leakage for for AES and Blowfish encryption and decryption on a variety of cache configurations.Abstract:
A side channel is an information channel that unintentionally communicates information about a program as a side effect of the implementation. Recent studies have illustrated the use of shared caches as side channels to extract private keys from computationally secure cryptographic applications. The cache side channel is imperfect in the sense that the attacker's ability to detect cache leakage of critical data is limited by the timing issues. Moreover, some detected leakages are due to non-critical data. Thus, it is difficult to assess the degree of vulnerability given the imperfect nature of the side-channel. Similarly, when solutions that further degrade the quality of the channel, but do not necessarily close it completely, are employed, it is difficult to evaluate their effectiveness. To address this need, this paper proposes a mathematical model to evaluate the expected leakage in a cache as a function of the cache parameters and the victim application behavior. We use simulation to quantify these parameters for typical attack scenarios to validate the model. We demonstrate that the proposed model accurately estimates side channel leakage for for AES and Blowfish encryption and decryption on a variety of cache configurations.read more
Citations
More filters
Journal ArticleDOI
A Primer on Hardware Security: Models, Methods, and Metrics
TL;DR: This paper systematizes the current knowledge in this emerging field, including a classification of threat models, state-of-the-art defenses, and evaluation metrics for important hardware-based attacks.
Journal ArticleDOI
Side-channel vulnerability factor: a metric for measuring information leakage
TL;DR: SVF quantifies patterns in attackers' observations and measures their correlation to the victim's actual execution patterns and in doing so captures systems' vulnerability to side-channel attacks, providing a quantitative approach to secure computer architecture.
A Primer on Hardware Security: Models, Methods, and Metrics The paper is a primer on hardware security threat models, metrics, and remedies.
TL;DR: In this article, the authors present a classification of threat models, state-of-the-art defenses, and evaluation metrics for important hardware-based attacks, including hardware intrusion detection.
Proceedings ArticleDOI
How secure is your cache against side-channel attacks?
Zecheng He,Ruby B. Lee +1 more
TL;DR: A novel probabilistic information flow graph is proposed to model the interaction between the victim program, the attacker program and the cache architecture, and a new metric, the Probability of Attack Success (PAS), is derived, which gives a quantitative measure for evaluating a cache’s resilience against a given class of cache side-channel attacks.
Proceedings ArticleDOI
New models of cache architectures characterizing information leakage from cache side channels
Tianwei Zhang,Ruby B. Lee +1 more
TL;DR: This paper establishes side-channel leakage models based on the non-interference property, and defines how the security aspects of a cache architecture can be modeled as a finite-state machine (FSM) with state transitions that cause interference.
References
More filters
Book
The Design of Rijndael: AES - The Advanced Encryption Standard
Joan Daemen,Vincent Rijmen +1 more
TL;DR: The underlying mathematics and the wide trail strategy as the basic design idea are explained in detail and the basics of differential and linear cryptanalysis are reworked.
Journal ArticleDOI
The SimpleScalar tool set, version 2.0
Doug Burger,Todd Austin +1 more
TL;DR: This document describes release 2.0 of the SimpleScalar tool set, a suite of free, publicly available simulation tools that offer both detailed and high-performance simulation of modern microprocessors.
Book ChapterDOI
Linear cryptanalysis method for DES cipher
TL;DR: A new method is introduced for cryptanalysis of DES cipher, which is essentially a known-plaintext attack, that is applicable to an only-ciphertext attack in certain situations.
Journal ArticleDOI
Differential cryptanalysis of DES-like cryptosystems
Eli Biham,Adi Shamir +1 more
TL;DR: A new type of cryptanalytic attack is developed which can break the reduced variant of DES with eight rounds in a few minutes on a personal computer and can break any reduced variantof DES (with up to 15 rounds) using less than 256 operations and chosen plaintexts.
BookDOI
The Design of Rijndael
Joan Daemen,Vincent Rijmen +1 more
TL;DR: This volume is the authoritative guide to the Rijndael algorithm and AES and professionals, researchers, and students active or interested in data encryption will find it a valuable source of information and reference.