English

Quantifying Timing Leaks and Cost Optimisation

Cryptography and Security 2008-07-25 v1 Programming Languages
Authors: Alessandra Di Pierro , Chris Hankin , Herbert Wiklicky
View on arXiv PDF

Abstract

We develop a new notion of security against timing attacks where the attacker is able to simultaneously observe the execution time of a program and the probability of the values of low variables. We then show how to measure the security of a program with respect to this notion via a computable estimate of the timing leakage and use this estimate for cost optimisation.

Keywords

runtime monitoring computer security side-channel attack

Cite

@article{arxiv.0807.3879,
  title  = {Quantifying Timing Leaks and Cost Optimisation},
  author = {Alessandra Di Pierro and Chris Hankin and Herbert Wiklicky},
  journal= {arXiv preprint arXiv:0807.3879},
  year   = {2008}
}

Comments

16 pages, 2 figures, 4 tables. A shorter version is included in the proceedings of ICICS'08 - 10th International Conference on Information and Communications Security, 20-22 October, 2008 Birmingham, UK

Related papers

View all related →
Cryptography and Security · Computer Science
Efficient Detection and Quantification of Timing Leaks with Neural Networks
Saeid Tizpaz-Niari, Pavol Cerny, Sriram Sankaranarayanan, Ashutosh Trivedi
2019-07-25
Cryptography and Security · Computer Science
Parametric Timed Model Checking for Guaranteeing Timed Opacity
Étienne André, Jun Sun
2020-10-20
Programming Languages · Computer Science
Slot Games for Detecting Timing Leaks of Programs
Aleksandar S. Dimovski
2013-07-18
Cryptography and Security · Computer Science
Quantifying Information Leak Vulnerabilities
Jonathan Heusser, Pasquale Malacaria
2010-07-07
Cryptography and Security · Computer Science
SILENT: A New Lens on Statistics in Software Timing Side Channels
Martin Dunsche, Patrick Bastian, Marcel Maehren, Nurullah Erinola +4
2025-04-29
Logic in Computer Science · Computer Science
Configuring Timing Parameters to Ensure Execution-Time Opacity in Timed Automata
Étienne André, Engel Lefaucheux, Didier Lime, Dylan Marinho +1
2023-11-01
Cryptography and Security · Computer Science
Guaranteeing Timed Opacity using Parametric Timed Model Checking
Étienne André, Didier Lime, Dylan Marinho, Jun Sun
2022-10-05
Distributed, Parallel, and Cluster Computing · Computer Science
Investigating Timing-Based Information Leakage in Data Flow-Driven Real-Time Systems
Mohammad Fakhruddin Babar, Zain A. H. Hammadeh, Mohammad Hamad, Monowar Hasan
2025-06-05
Systems and Control · Electrical Eng. & Systems
Mitigating Timing-Based Attacks in Real-Time Cyber-Physical Systems
Arkaprava Sain, Sunandan Adhikary, Soumyajit Dey
2026-02-04
Cryptography and Security · Computer Science
Quantitative Security Analysis for Multi-threaded Programs
Tri Minh Ngo, Marieke Huisman
2013-06-13
Emerging Technologies · Computer Science
Quantum Leak: Timing Side-Channel Attacks on Cloud-Based Quantum Services
Chao Lu, Esha Telang, Aydin Aysu, Kanad Basu
2024-01-04
Programming Languages · Computer Science
An Axiomatic Approach to Detect Information Leaks in Concurrent Programs
Sandip Ghosal, R. K. Shyamasundar
2021-03-04
Applications · Statistics
Statistical Modeling of Data Breach Risks: Time to Identification and Notification
Maochao Xu, Quynh Nhu Nguyen
2022-09-27
Cryptography and Security · Computer Science
Discovering, quantifying, and displaying attacks
Roberto Vigo, Flemming Nielson, Hanne Riis Nielson
2018-03-30
Cryptography and Security · Computer Science
Design-Time Quantification of Integrity in Cyber-Physical-Systems
Eric Rothstein Morris, Carlos G. Murguia, Martín Ochoa
2017-08-17
Operating Systems · Computer Science
Can We Prove Time Protection?
Gernot Heiser, Gerwin Klein, Toby Murray
2019-01-25
Cryptography and Security · Computer Science
Opacity problems in multi-energy timed automata
Étienne André, Lydia Bakiri
2025-12-05
Information Theory · Computer Science
Statistic Maximal Leakage
Shuaiqi Wang, Zinan Lin, Giulia Fanti
2024-11-28
Cryptography and Security · Computer Science
On the Incomparability of Cache Algorithms in Terms of Timing Leakage
Pablo Cañones, Boris Köpf, Jan Reineke
2023-06-22
Cryptography and Security · Computer Science
Quantitative Analysis of Information Leakage in Probabilistic and Nondeterministic Systems
Miguel E. Andrés
2011-11-14
Cryptography and Security · Computer Science
Quantitative Information Flow for Scheduler-Dependent Systems
Yusuke Kawamoto, Thomas Given-Wilson
2015-09-30
Quantum Physics · Physics
Characterization of Leakage Errors via Randomized Benchmarking
Joel J. Wallman, Marie Barnhill, Joseph Emerson
2016-04-18
Cryptography and Security · Computer Science
Fun with flags: How Compilers Break and Fix Constant-Time Code
Antoine Geimer, Clementine Maurice
2025-07-09
Cryptography and Security · Computer Science
TaskShuffler++: Real-Time Schedule Randomization for Reducing Worst-Case Vulnerability to Timing Inference Attacks
Man-Ki Yoon, Jung-Eun Kim, Richard Bradford, Zhong Shao
2019-11-19
Logic in Computer Science · Computer Science
Conservative Safety Monitors of Stochastic Dynamical Systems
Matthew Cleaveland, Oleg Sokolsky, Insup Lee, Ivan Ruchkin
2023-03-30
R2 v1 2026-06-21T11:03:55.550Z