English
Related papers

Related papers: SPECWANDS: An Efficient Priority-based Scheduler A…

200 papers

We demonstrate the presence of a novel scheduler side-channel in preemptive, fixed-priority real-time systems (RTS); examples of such systems can be found in automotive systems, avionic systems, power plants and industrial control systems…

Cryptography and Security · Computer Science 2019-05-10 Chien-Ying Chen , Sibin Mohan , Rodolfo Pellizzoni , Rakesh B. Bobba , Negar Kiyavash

Side-channel attacks such as Spectre that utilize speculative execution to steal application secrets pose a significant threat to modern computing systems. While program transformations can mitigate some Spectre attacks, more advanced…

Cryptography and Security · Computer Science 2019-03-27 Zhuojia Shen , Jie Zhou , Divya Ojha , John Criswell

Shared cache resources in multi-core processors are vulnerable to cache side-channel attacks. Recently proposed defenses have their own caveats: Randomization-based defenses are vulnerable to the evolving attack algorithms besides relying…

Cryptography and Security · Computer Science 2021-10-18 Ghada Dessouky , Alexander Gruler , Pouya Mahmoody , Ahmad-Reza Sadeghi , Emmanuel Stapf

Microarchitectural attacks represent a challenging and persistent threat to modern processors, exploiting inherent design vulnerabilities in processors to leak sensitive information or compromise systems. Of particular concern is the…

Cryptography and Security · Computer Science 2024-10-31 Mohamadreza Rostami , Shaza Zeitouni , Rahul Kande , Chen Chen , Pouya Mahmoody , Jeyavijayan , Rajendran , Ahmad-Reza Sadeghi

Trusted Execution Environments (TEEs) are gradually adopted by major cloud providers, offering a practical option of \emph{confidential computing} for users who don't fully trust public clouds. TEEs use CPU-enabled hardware features to…

Cryptography and Security · Computer Science 2023-08-15 AKM Mubashwir Alam , Keke Chen

This work focuses on eliminating timing-side channels in real-time safety-critical cyber-physical network protocols like Controller Area Networks (CAN). Automotive Electronic Control Units (ECUs) implement predictable scheduling decisions…

Cryptography and Security · Computer Science 2023-06-16 Sunandan Adhikary , Ipsita Koley , Arkaprava Sain , Soumyadeep das , Shuvam Saha , Soumyajit Dey

The disclosure of the Spectre speculative-execution attacks in January 2018 has left a severe vulnerability that systems are still struggling with how to patch. The solutions that currently exist tend to have incomplete coverage, perform…

Cryptography and Security · Computer Science 2020-06-09 Sam Ainsworth , Timothy M. Jones

Trusted execution environments (TEEs) offer hardware-assisted means to protect code and data. However, as shown in numerous results over the years, attackers can use side-channels to leak data access patterns and even single-step the code.…

Cryptography and Security · Computer Science 2025-09-24 Jan Wichelmann , Anja Rabich , Anna P"atschke , Thomas Eisenbarth

Spectre intrusions exploit speculative execution design vulnerabilities in modern processors. The attacks violate the principles of isolation in programs to gain unauthorized private user information. Current state-of-the-art detection…

Cryptography and Security · Computer Science 2022-10-27 Chidera Biringa , Gaspard Baye , Gökhan Kul

Real-time systems have recently been shown to be vulnerable to timing inference attacks, mainly due to their predictable behavioral patterns. Existing solutions such as schedule randomization lack the ability to protect against such…

Cryptography and Security · Computer Science 2021-04-13 Jiyang Chen , Tomasz Kloda , Ayoosh Bansal , Rohan Tabish , Chien-Ying Chen , Bo Liu , Sibin Mohan , Marco Caccamo , Lui Sha

Speculative attacks such as Spectre can leak secret information without being discovered by the operating system. Speculative execution vulnerabilities are finicky and deep in the sense that to exploit them, it requires intensive manual…

Cryptography and Security · Computer Science 2025-04-04 Evan Lai , Wenjie Xiong , Edward Suh , Mohit Tiwari , Mulong Luo

Today, machine learning is widely applied in sensitive, security-related, and financially lucrative applications. Model extraction attacks undermine current business models where a model owner sells model access, e.g., via MLaaS APIs.…

Cryptography and Security · Computer Science 2026-04-22 Jonas Sander , Anja Rabich , Nick Mahling , Felix Maurer , Jonah Heller , Qifan Wang , Thomas Eisenbarth , David Oswald

Secure speculation schemes have shown great promise in the war against speculative side-channel attacks, and will be a key building block for developing secure, high-performance architectures moving forward. As the field matures, the need…

Cryptography and Security · Computer Science 2025-04-10 Amund Bergland Kvalsvik , Magnus Själander

Multi-Variant Execution Environments (MVEEs) are a promising technique to protect software against memory corruption attacks. They transparently execute multiple, diversified variants (often referred to as replicae) of the software…

Cryptography and Security · Computer Science 2016-07-27 Stijn Volckaert , Bjorn De Sutter , Koen De Bosschere , Per Larsen

Contemporary computing employs cache hierarchy to fill the speed gap between processors and main memories. In order to optimise system performance, Last Level Caches(LLC) are shared among all the cores. Cache sharing has made them an…

Hardware Architecture · Computer Science 2022-03-24 Jaspinder Kaur , Shirshendu Das

CPU cache is a limited but crucial storage component in modern processors, whereas the cache timing side-channel may inadvertently leak information through the physically measurable timing variance. Speculative execution, an essential…

Cryptography and Security · Computer Science 2020-02-18 Shengjian Guo , Yueqi Chen , Peng Li , Yueqiang Cheng , Huibo Wang , Meng Wu , Zhiqiang Zuo

Sequential Recommenders, which exploit dynamic user intents through interaction sequences, is vulnerable to adversarial attacks. While existing attacks primarily rely on data poisoning, they require large-scale user access or fake profiles…

Machine Learning · Computer Science 2025-12-23 Jiajie Su , Zihan Nan , Yunshan Ma , Xiaobo Xia , Xiaohua Feng , Weiming Liu , Xiang Chen , Xiaolin Zheng , Chaochao Chen

Speculative side-channel attacks access sensitive data and use transmitters to leak the data during wrong-path execution. Various defenses have been proposed to prevent such information leakage. However, not all speculatively executed…

Cryptography and Security · Computer Science 2022-12-05 Pavlos Aimoniotis , Christos Sakalis , Magnus Själander , Stefanos Kaxiras

The recent discovery of the Spectre and Meltdown attacks represents a watershed moment not just for the field of Computer Security, but also of Programming Languages. This paper explores speculative side-channel attacks and their…

Programming Languages · Computer Science 2019-02-15 Ross Mcilroy , Jaroslav Sevcik , Tobias Tebbi , Ben L. Titzer , Toon Verwaest

Since the advent of SPECTRE, a number of countermeasures have been proposed and deployed. Rigorously reasoning about their effectiveness, however, requires a well-defined notion of security against speculative execution attacks, which has…

Cryptography and Security · Computer Science 2019-07-25 Marco Guarnieri , Boris Köpf , José F. Morales , Jan Reineke , Andrés Sánchez