English
Related papers

Related papers: A Compiler Assisted Scheduler for Detecting and Mi…

200 papers

To protect cryptographic implementations from side-channel vulnerabilities, developers must adopt constant-time programming practices. As these can be error-prone, many side-channel detection tools have been proposed. Despite this, such…

Cryptography and Security · Computer Science 2023-10-13 Antoine Geimer , Mathéo Vergnolle , Frédéric Recoules , Lesly-Ann Daniel , Sébastien Bardin , Clémentine Maurice

DRAM chips are vulnerable to read disturbance phenomena (e.g., RowHammer and RowPress), where repeatedly accessing or keeping open a DRAM row causes bitflips in nearby rows. Attackers leverage RowHammer bitflips in real systems to take over…

This paper presents an approach for side channel cryptanalysis with iterative approximate Bayesian inference, based on sequential decoding methods. Reliability information about subkey hypotheses is generated in the form of likelihoods, and…

Cryptography and Security · Computer Science 2015-03-20 Andreas Ibing

Real-time systems have recently been shown to be vulnerable to timing inference attacks, mainly due to their predictable behavioral patterns. Existing solutions such as schedule randomization lack the ability to protect against such…

Cryptography and Security · Computer Science 2021-04-13 Jiyang Chen , Tomasz Kloda , Ayoosh Bansal , Rohan Tabish , Chien-Ying Chen , Bo Liu , Sibin Mohan , Marco Caccamo , Lui Sha

Over the past few years, deep learning has been getting progressively more popular for the exploitation of side-channel vulnerabilities in embedded cryptographic applications, as it offers advantages in terms of the amount of attack traces…

Cryptography and Security · Computer Science 2023-09-26 Yohaï-Eliel Berreby , Laurent Sauvage

Acoustic side-channel attacks on keyboards can bypass security measures in many systems that use keyboards as one of the input devices. These attacks aim to reveal users' sensitive information by targeting the sounds made by their keyboards…

Cryptography and Security · Computer Science 2024-03-14 Alireza Taheritajar , Reza Rahaeimehr

On real-time systems running under timing constraints, scheduling can be performed when one is aware of the worst case execution time (WCET) of tasks. Usually, the WCET of a task is unknown and schedulers make use of safe…

Programming Languages · Computer Science 2017-07-07 Valentin Touzeau , Claire Maïza , David Monniaux

Intel SGX is known to be vulnerable to a class of practical attacks exploiting memory access pattern side-channels, notably page-fault attacks and cache timing attacks. A promising hardening scheme is to wrap applications in hardware…

Cryptography and Security · Computer Science 2022-12-29 Yuzhe Tang , Kai Li , Yibo Wang , Jiaqi Chen , Cheng Xu

Randomized, skewed caches (RSCs) such as CEASER-S have recently received much attention to defend against contention-based cache side channels. By randomizing and regularly changing the mapping(s) of addresses to cache sets, these…

Cryptography and Security · Computer Science 2022-09-30 Thomas Unterluggauer , Austin Harris , Scott Constable , Fangfei Liu , Carlos Rozas

MicroScope, and microarchitectural replay attacks in general, take advantage of the characteristics of speculative execution to trap the execution of the victim application in an infinite loop, enabling the attacker to amplify a…

Cryptography and Security · Computer Science 2021-03-22 Christos Sakalis , Stefanos Kaxiras , Magnus Själander

Side-channel attacks have become a severe threat to the confidentiality of computer applications and systems. One popular type of such attacks is the microarchitectural attack, where the adversary exploits the hardware features to break the…

Cryptography and Security · Computer Science 2021-03-29 Xiaoxuan Lou , Tianwei Zhang , Jun Jiang , Yinqian Zhang

OS-based page sharing is a commonly used optimization in modern systems to reduce memory footprint. Unfortunately, such sharing can cause Flush+Reload cache attacks, whereby a spy periodically flushes a cache line of shared data (using the…

Cryptography and Security · Computer Science 2019-06-07 Gururaj Saileshwar , Moinuddin K. Qureshi

Graphics Processing Units (GPUs) are a ubiquitous component across the range of today's computing platforms, from phones and tablets, through personal computers, to high-end server class platforms. With the increasing importance of graphics…

Cryptography and Security · Computer Science 2020-11-20 Sankha Baran Dutta , Hoda Naghibijouybari , Nael Abu-Ghazaleh , Andres Marquez , Kevin Barker

Speculation is key to achieving high CPU performance, yet it enables risks like Spectre attacks which remain a significant challenge to mitigate without incurring substantial performance overheads. These attacks typically unfold in three…

Cryptography and Security · Computer Science 2025-05-09 Hossam ElAtali , N. Asokan

Integrated circuit (IC) camouflaging is a promising technique to protect the design of a chip from reverse engineering. However, recent work has shown that even camouflaged ICs can be reverse engineered from the observed input/output…

Cryptography and Security · Computer Science 2017-10-31 Mohamed El Massad , Siddharth Garg , Mahesh Tripunitara

Many cybersecurity attacks rely on analyzing a binary executable to find exploitable sections of code. Code obfuscation is used to prevent attackers from reverse engineering these executables. In this work, we focus on control flow…

Cryptography and Security · Computer Science 2019-08-28 Novak Boskov , Mihailo Isakov , Michel A. Kinsy

Timing side-channels represent an insidious security challenge for cloud computing, because: (a) massive parallelism in the cloud makes timing channels pervasive and hard to control; (b) timing channels enable one customer to steal…

Operating Systems · Computer Science 2010-07-27 Amittai Aviram , Sen Hu , Bryan Ford , Ramakrishna Gummadi

This paper identifies an intrusion surveillance framework which provides an analyst with the ability to investigate and monitor cyber-attacks in a covert manner. Where cyber-attacks are perpetrated for the purposes of espionage the ability…

Cryptography and Security · Computer Science 2014-10-17 Chris Chapman , Scott Knight , Tom Dean

In large-scale networks, communication links between nodes are easily injected with false data by adversaries. This paper proposes a novel security defense strategy from the perspective of attack detection scheduling to ensure the security…

Systems and Control · Electrical Eng. & Systems 2023-12-19 Yuhan Suo , Senchun Chai , Runqi Chai , Zhong-Hua Pang , Yuanqing Xia , Guo-Ping Liu

Fault injection attacks deliberately inject faults into a device via physical channels to disturb its regular execution. Adversaries can effectively deduce secrets by analyzing both the normal and faulty outputs, posing serious threats to…

Cryptography and Security · Computer Science 2026-04-07 Xi Yang , Taolue Chen , Yuqi Chen , Fu Song , Chundong Wang , Zhilin Wu