English
Related papers

Related papers: KeyDrown: Eliminating Keystroke Timing Side-Channe…

200 papers

Modern computer processors use microarchitectural optimization mechanisms to improve performance. As a downside, such optimizations are prone to introducing side-channel vulnerabilities. Speculative loading of memory, called prefetching, is…

Cryptography and Security · Computer Science 2024-10-02 Till Schlüter , Nils Ole Tippenhauer

Timing attacks are considered one of the most damaging side-channel attacks. These attacks exploit timing fluctuations caused by certain operations to disclose confidential information to an attacker. For instance, in asymmetric encryption,…

Cryptography and Security · Computer Science 2023-08-24 M. Mehdi Kholoosi , M. Ali Babar , Cemal Yilmaz

Timing side-channel attacks exploit secret-dependent execution time to fully or partially recover secrets of cryptographic implementations, posing a severe threat to software security. Constant-time programming discipline is an effective…

Cryptography and Security · Computer Science 2024-02-22 Luwei Cai , Fu Song , Taolue Chen

Operating Systems enforce logical isolation using abstractions such as processes, containers, and isolation technologies to protect a system from malicious or buggy code. In this paper, we show new types of side channels through the file…

Cryptography and Security · Computer Science 2025-04-29 Cheng Gu , Yicheng Zhang , Nael Abu-Ghazaleh

DRAM chips are vulnerable to read disturbance phenomena (e.g., RowHammer and RowPress), where repeatedly accessing or keeping open a DRAM row causes bitflips in nearby rows. Attackers leverage RowHammer bitflips in real systems to take over…

Recent work has introduced attacks that extract the architecture information of deep neural networks (DNN), as this knowledge enhances an adversary's capability to conduct black-box attacks against the model. This paper presents the first…

Cryptography and Security · Computer Science 2020-02-03 Sanghyun Hong , Michael Davinroy , Yiǧitcan Kaya , Stuart Nevans Locke , Ian Rackow , Kevin Kulda , Dana Dachman-Soled , Tudor Dumitraş

Supervised deep learning has emerged as an effective tool for carrying out power side-channel attacks on cryptographic implementations. While increasingly-powerful deep learning-based attacks are regularly published, comparatively-little…

Machine Learning · Computer Science 2024-10-31 Jimmy Gammell , Anand Raghunathan , Kaushik Roy

Research on cache attacks has shown that CPU caches leak significant information. Proposed detection mechanisms assume that all cache attacks cause more cache hits and cache misses than benign applications and use hardware performance…

Cryptography and Security · Computer Science 2016-04-06 Daniel Gruss , Clémentine Maurice , Klaus Wagner , Stefan Mangard

The wide deployment of Large Language Models (LLMs) has given rise to strong demands for optimizing their inference performance. Today's techniques serving this purpose primarily focus on reducing latency and improving throughput through…

Cryptography and Security · Computer Science 2025-10-22 Linke Song , Zixuan Pang , Wenhao Wang , Zihao Wang , XiaoFeng Wang , Hongbo Chen , Wei Song , Yier Jin , Dan Meng , Rui Hou

Side-channel attacks have become a severe threat to the confidentiality of computer applications and systems. One popular type of such attacks is the microarchitectural attack, where the adversary exploits the hardware features to break the…

Cryptography and Security · Computer Science 2021-03-29 Xiaoxuan Lou , Tianwei Zhang , Jun Jiang , Yinqian Zhang

With the recent advancements in machine learning theory, many commercial embedded micro-processors use neural network models for a variety of signal processing applications. However, their associated side-channel security vulnerabilities…

Cryptography and Security · Computer Science 2021-03-30 Saurav Maji , Utsav Banerjee , Anantha P. Chandrakasan

Wireless devices resorting to event-triggered communications have been proved to suffer critical privacy issues, due to the intrinsic leakage associated with radio-frequency (RF) emissions. In this paper, we move the attack frontier forward…

Cryptography and Security · Computer Science 2020-05-22 Gabriele Oligeri , Savio Sciancalepore , Simone Raponi , Roberto Di Pietro

Side-channel attacks are a security exploit that take advantage of information leakage. They use measurement and analysis of physical parameters to reverse engineer and extract secrets from a system. Power analysis attacks in particular,…

Cryptography and Security · Computer Science 2021-07-26 Yun Chen , Ali Hajiabadi , Romain Poussier , Andreas Diavastos , Shivam Bhasin , Trevor E. Carlson

Microarchitectural timing attacks exploit subtle timing variations caused by hardware behaviors to leak sensitive information. In this paper, we introduce MCHammer, a novel side-channel technique that leverages machine clears induced by…

Cryptography and Security · Computer Science 2025-02-17 Billy Bob Brumley

Cache side channel attacks are a sophisticated and persistent threat that exploit vulnerabilities in modern processors to extract sensitive information. These attacks leverage weaknesses in shared computational resources, particularly the…

Cryptography and Security · Computer Science 2025-01-29 Tejal Joshi , Aarya Kawalay , Anvi Jamkhande , Amit Joshi

Modern computing systems inherently trust human input devices, creating an exploitable attack surface for adversarial automation. USB Human Interface Device (HID) emulation attacks, such as those enabled by the USB Rubber Ducky, exploit…

Cryptography and Security · Computer Science 2026-04-20 Alessandro Lotto , Francesco Marchiori , Mauro Conti

We propose a method, based on program analysis and transformation, for eliminating timing side channels in software code that implements security-critical applications. Our method takes as input the original program together with a list of…

Cryptography and Security · Computer Science 2018-07-24 Meng Wu , Shengjian Guo , Patrick Schaumont , Chao Wang

Nowadays smartphones come embedded with multiple motion sensors, such as an accelerometer, a gyroscope and an orientation sensor. With these sensors, apps can gather more information and therefore provide end users with more functionality.…

Cryptography and Security · Computer Science 2014-10-29 Yihang Song , Madhur Kukreti , Rahul Rawat , Urs Hengartner

In this paper we introduced countermeasures against side-channel attacks in the shared memory of TrustZone. We proposed zero-contention cache memory or policy between REE and TEE to prevent from TruSpy attacks in TrustZone. And we suggested…

Cryptography and Security · Computer Science 2020-11-20 Na-Young Ahn , Dong Hoon Lee

The transient-execution attack Meltdown leaks sensitive information by transiently accessing inaccessible data during out-of-order execution. Although Meltdown is fixed in hardware for recent CPU generations, most currently-deployed CPUs…

Cryptography and Security · Computer Science 2023-10-09 Daniel Weber , Fabian Thomas , Lukas Gerlach , Ruiyi Zhang , Michael Schwarz