English
Related papers

Related papers: Leaky Frontends: Security Vulnerabilities in Proce…

200 papers

We introduce a new timing side-channel attack on Intel CPU processors. Our Frontal attack exploits timing differences that arise from how the CPU frontend fetches and processes instructions while being interrupted. In particular, we observe…

Cryptography and Security · Computer Science 2021-06-08 Ivan Puddu , Moritz Schneider , Miro Haller , Srdjan Čapkun

Recent discovery of security attacks in advanced processors, known as Spectre and Meltdown, has resulted in high public alertness about security of hardware. The root cause of these attacks is information leakage across "covert channels"…

Cryptography and Security · Computer Science 2018-12-13 Mohammad Rahmani Fadiheh , Dominik Stoffel , Clark Barrett , Subhasish Mitra , Wolfgang Kunz

Modern processor designs use a variety of microarchitectural methods to achieve high performance. Unfortunately, new side-channels have often been uncovered that exploit these enhanced designs. One area that has received little attention…

Cryptography and Security · Computer Science 2021-09-02 Yun Chen , Lingfeng Pei , Trevor E. Carlson

Modern x86 processors have many prefetch instructions that can be used by programmers to boost performance. However, these instructions may also cause security problems. In particular, we found that on Intel processors, there are two…

Cryptography and Security · Computer Science 2022-08-18 Yanan Guo , Andrew Zigerelli , Youtao Zhang , Jun Yang

The transient-execution attack Meltdown leaks sensitive information by transiently accessing inaccessible data during out-of-order execution. Although Meltdown is fixed in hardware for recent CPU generations, most currently-deployed CPUs…

Cryptography and Security · Computer Science 2023-10-09 Daniel Weber , Fabian Thomas , Lukas Gerlach , Ruiyi Zhang , Michael Schwarz

The transient execution attack is a type of attack leveraging the vulnerability of modern CPU optimization technologies. New attacks surface rapidly. The side-channel is a key part of transient execution attacks to leak data. In this work,…

Cryptography and Security · Computer Science 2023-04-24 Yu Jin , Pengfei Qiu , Chunlu Wang , Yihao Yang , Dongsheng Wang , Gang Qu

The power consumption of a microprocessor is a huge channel for information leakage. While the most popular exploitation of this channel is to recover cryptographic keys from embedded devices, other applications such as mobile app…

Cryptography and Security · Computer Science 2021-08-27 Muhammad Arsath K F , Vinod Ganesan , Rahul Bodduna , Chester Rebeiro

In the last two decades, the evolving cyber-threat landscape has brought to center stage the contentious tradeoffs between the security and performance of modern microprocessors. The guarantees provided by the hardware to ensure no…

Cryptography and Security · Computer Science 2023-05-26 Nikhilesh Singh , Vinod Ganesan , Chester Rebeiro

Timing channels are information flows, encoded in the relative timing of events, that bypass the system's protection mechanisms. Any microarchitectural state that depends on execution history and affects the rate of progress of later…

Cryptography and Security · Computer Science 2017-09-15 Qian Ge , Yuval Yarom , Frank Li , Gernot Heiser

Recent transient-execution attacks, such as RIDL, Fallout, and ZombieLoad, demonstrated that attackers can leak information while it transits through microarchitectural buffers. Named Microarchitectural Data Sampling (MDS) by Intel, these…

Cryptography and Security · Computer Science 2020-06-25 Stephan van Schaik , Marina Minkin , Andrew Kwong , Daniel Genkin , Yuval Yarom

Recently, out-of-order execution, an important performance optimization in modern high-end processors, has been revealed to pose a significant security threat, allowing information leaks across security domains. In particular, the Meltdown…

Cryptography and Security · Computer Science 2019-05-31 Marina Minkin , Daniel Moghimi , Moritz Lipp , Michael Schwarz , Jo Van Bulck , Daniel Genkin , Daniel Gruss , Frank Piessens , Berk Sunar , Yuval Yarom

Different from the traditional software vulnerability, the microarchitecture side channel has three characteristics: extensive influence, potent threat, and tough defense. The main reason for the micro-architecture side channel is resource…

Cryptography and Security · Computer Science 2019-10-29 Yue Zhang , Ziyuan Zhu , Dan Meng

Transient execution attacks, also called speculative execution attacks, have drawn much interest as they exploit the transient execution of instructions, e.g., during branch prediction, to leak data. Transient execution is fundamental to…

Cryptography and Security · Computer Science 2020-09-01 Wenjie Xiong , Jakub Szefer

Modern processors use branch prediction and speculative execution to maximize performance. For example, if the destination of a branch depends on a memory value that is in the process of being read, CPUs will try guess the destination and…

Cryptography and Security · Computer Science 2018-01-08 Paul Kocher , Daniel Genkin , Daniel Gruss , Werner Haas , Mike Hamburg , Moritz Lipp , Stefan Mangard , Thomas Prescher , Michael Schwarz , Yuval Yarom

Modern processors are highly optimized systems where every single cycle of computation time matters. Many optimizations depend on the data that is being processed. Software-based microarchitectural attacks exploit effects of these…

Cryptography and Security · Computer Science 2017-06-20 Daniel Gruss

With the recent advancements in machine learning theory, many commercial embedded micro-processors use neural network models for a variety of signal processing applications. However, their associated side-channel security vulnerabilities…

Cryptography and Security · Computer Science 2021-03-30 Saurav Maji , Utsav Banerjee , Anantha P. Chandrakasan

Meltdown and Spectre exploit microarchitectural changes the CPU makes during transient out-of-order execution. Using side-channel techniques, these attacks enable leaking arbitrary data from memory. As state-of-the-art software mitigations…

Cryptography and Security · Computer Science 2021-03-08 Michael Schwarz , Claudio Canella , Lukas Giner , Daniel Gruss

Microcode is an abstraction layer used by modern x86 processors that interprets user-visible CISC instructions to hardware-internal RISC instructions. The capability to update x86 microcode enables a vendor to modify CPU behavior in-field,…

Cryptography and Security · Computer Science 2020-07-08 Benjamin Kollenda , Philipp Koppe , Marc Fyrbiak , Christian Kison , Christof Paar , Thorsten Holz

Research on transient execution attacks including Spectre and Meltdown showed that exception or branch misprediction events might leave secret-dependent traces in the CPU's microarchitectural state. This observation led to a proliferation…

Recently discovered Spectre and meltdown attacks affects almost all processors by leaking confidential information to other processes through side-channel attacks. These vulnerabilities expose design flaws in the architecture of modern…

Cryptography and Security · Computer Science 2020-06-03 Bilal Ali Ahmad
‹ Prev 1 2 3 10 Next ›