English
Related papers

Related papers: Prime+Probe 1, JavaScript 0: Overcoming Browser-ba…

200 papers

Machine learning (ML) models can be trade secrets due to their development cost. Hence, they need protection against malicious forms of reverse engineering (e.g., in IP piracy). With a growing shift of ML to the edge devices, in part for…

Cryptography and Security · Computer Science 2021-09-02 Anuj Dubey , Rosario Cammarota , Vikram Suresh , Aydin Aysu

Modern web browsers have effectively become the new operating system for business applications, yet their security posture is often under-scrutinized. This paper presents a novel, comprehensive Browser Security Posture Analysis…

Cryptography and Security · Computer Science 2025-05-14 Avihay Cohen

Side channel attacks are a major class of attacks to crypto-systems. Attackers collect and analyze timing behavior, I/O data, or power consumption in these systems to undermine their effectiveness in protecting sensitive information. In…

Cryptography and Security · Computer Science 2017-10-26 Hossein Hosseinzadeh , Mihailo Isakov , Mostafa Darabi , Ahmad Patooghy , Michel A. Kinsy

We present a software approach to mitigate access-driven side-channel attacks that leverage last-level caches (LLCs) shared across cores to leak information between security domains (e.g., tenants in a cloud). Our approach dynamically…

Cryptography and Security · Computer Science 2016-03-18 Ziqiao Zhou , Michael K. Reiter , Yinqian Zhang

Side-channel attacks on memory (SCAM) exploit unintended data leaks from memory subsystems to infer sensitive information, posing significant threats to system security. These attacks exploit vulnerabilities in memory access patterns, cache…

Cryptography and Security · Computer Science 2025-05-09 MD Mahady Hassan , Shanto Roy , Reza Rahaeimehr

The complexity of modern processor architectures has given rise to sophisticated interactions among their components. Such interactions may result in potential attack vectors in terms of side channels, possibly available to user-land…

Cryptography and Security · Computer Science 2022-11-28 Ahmad Ibrahim , Hamed Nemati , Till Schlüter , Nils Ole Tippenhauer , Christian Rossow

Modern processors are highly optimized systems where every single cycle of computation time matters. Many optimizations depend on the data that is being processed. Software-based microarchitectural attacks exploit effects of these…

Cryptography and Security · Computer Science 2017-06-20 Daniel Gruss

Over the past years, literature has shown that attacks exploiting the microarchitecture of modern processors pose a serious threat to the privacy of mobile phone users. This is because applications leave distinct footprints in the…

Cryptography and Security · Computer Science 2020-07-09 Berk Gulmezoglu , Andreas Zankl , M. Caner Tol , Saad Islam , Thomas Eisenbarth , Berk Sunar

Browser extensions are small applications executed in the browser context that provide additional capabilities and enrich the user experience while surfing the web. The acceptance of extensions in current browsers is unquestionable. For…

Cryptography and Security · Computer Science 2022-02-08 Pablo Picazo-Sanchez , Juan Tapiador , Gerardo Schneider

Cache side channel attacks are a sophisticated and persistent threat that exploit vulnerabilities in modern processors to extract sensitive information. These attacks leverage weaknesses in shared computational resources, particularly the…

Cryptography and Security · Computer Science 2025-01-29 Tejal Joshi , Aarya Kawalay , Anvi Jamkhande , Amit Joshi

Website fingerprinting is an attack that uses size and timing characteristics of encrypted downloads to identify targeted websites. Since this can defeat the privacy goals of anonymity networks such as Tor, many algorithms to defend against…

Cryptography and Security · Computer Science 2022-08-08 Ethan Witwer , James Holland , Nicholas Hopper

New hardware primitives such as Intel SGX secure a user-level process in presence of an untrusted or compromised OS. Such "enclaved execution" systems are vulnerable to several side-channels, one of which is the page fault channel. In this…

Cryptography and Security · Computer Science 2016-01-13 Shweta Shinde , Zheng Leong Chua , Viswesh Narayanan , Prateek Saxena

Shared caches are vulnerable to side channel attacks through contention in cache sets. Besides being a simple source of information leak, these side channels form useful gadgets for more sophisticated attacks that compromise the security of…

Cryptography and Security · Computer Science 2024-08-27 Divya Ojha , Sandhya Dwarkadas

Shared cache resources in multi-core processors are vulnerable to cache side-channel attacks. Recently proposed defenses have their own caveats: Randomization-based defenses are vulnerable to the evolving attack algorithms besides relying…

Cryptography and Security · Computer Science 2021-10-18 Ghada Dessouky , Alexander Gruler , Pouya Mahmoody , Ahmad-Reza Sadeghi , Emmanuel Stapf

The implementations of most hardened cryptographic libraries use defensive programming techniques for side-channel resistance. These techniques are usually specified as guidelines to developers on specific code patterns to use or avoid.…

Cryptography and Security · Computer Science 2025-09-03 Moritz Schneider , Daniele Lain , Ivan Puddu , Nicolas Dutly , Srdjan Capkun

WebGL is a browser feature that enables JavaScript-based control of the graphics processing unit (GPU) to render interactive 3D and 2D graphics, without the use of plug-ins. Exploiting WebGL for attacks will affect billions of users since…

Cryptography and Security · Computer Science 2019-05-01 Alex Belkin , Nethanel Gelernter , Israel Cidon

Evolving attacks on the vulnerabilities of the computing systems demand novel defense strategies to keep pace with newer attacks. This report discusses previous works on side-channel attacks (SCAs) and defenses for cache-targeted and…

Cryptography and Security · Computer Science 2021-04-12 Abhijitt Dhavlle

Side-channel attacks on mobile devices have gained increasing attention since their introduction in 2007. While traditional side-channel attacks, such as power analysis attacks and electromagnetic analysis attacks, required physical…

Cryptography and Security · Computer Science 2017-12-08 Raphael Spreitzer , Veelasha Moonsamy , Thomas Korak , Stefan Mangard

Hardware caches are essential performance optimization features in modern processors to reduce the effective memory access time. Unfortunately, they are also the prime targets for attacks on computer processors because they are…

Cryptography and Security · Computer Science 2023-06-06 Guangyuan Hu , Ruby B. Lee

Many cache designs have been proposed to guard against contention-based side-channel attacks. One well-known type of cache is the randomized remapping cache. Many randomized remapping caches provide fixed or over protection, which leads to…

Cryptography and Security · Computer Science 2024-05-31 Xiao Liu , Mark Zwolinski , Basel Halak