English
Related papers

Related papers: RollingCache: Using Runtime Behavior to Defend Aga…

200 papers

We present a kernel-level infrastructure that allows system-wide detection of malicious applications attempting to exploit cache-based side-channel attacks to break the process confinement enforced by standard operating systems. This…

Cryptography and Security · Computer Science 2024-02-22 Stefano Carnà , Serena Ferracci , Francesco Quaglia , Alessandro Pellegrini

Recent research has demonstrated that Intel's SGX is vulnerable to software-based side-channel attacks. In a common attack, the adversary monitors CPU caches to infer secret-dependent data accesses patterns. Known defenses have major…

Cryptography and Security · Computer Science 2019-12-13 Ferdinand Brasser , Srdjan Capkun , Alexandra Dmitrienko , Tommaso Frassetto , Kari Kostiainen , Ahmad-Reza Sadeghi

CPU caches introduce variations into the execution time of programs that can be exploited by adversaries to recover private information about users or cryptographic keys. Establishing the security of countermeasures against this threat…

Cryptography and Security · Computer Science 2017-05-12 Goran Doychev , Boris Köpf

Timing-based side and covert channels in processor caches continue to be a threat to modern computers. This work shows for the first time a systematic, large-scale analysis of Arm devices and the detailed results of attacks the processors…

Cryptography and Security · Computer Science 2021-11-02 Shuwen Deng , Nikolay Matyunin , Wenjie Xiong , Stefan Katzenbeisser , Jakub Szefer

In modern computing environments, hardware resources are commonly shared, and parallel computation is widely used. Parallel tasks can cause privacy and security problems if proper isolation is not enforced. Intel proposed SGX to create a…

Cryptography and Security · Computer Science 2017-08-22 Ahmad Moghimi , Gorka Irazoqui , Thomas Eisenbarth

Recent studies highlighting the vulnerability of computer architecture to information leakage attacks have been a cause of significant concern. Among the various classes of microarchitectural attacks, cache timing channels are especially…

Cryptography and Security · Computer Science 2019-02-14 Fan Yao , Hongyu Fang , Milos Doroslovacki , Guru Venkataramani

Mobile edge computing usually uses cache to support multimedia contents in 5G mobile Internet to reduce the computing overhead and latency. Mobile edge caching (MEC) systems are vulnerable to various attacks such as denial of service…

Cryptography and Security · Computer Science 2018-01-19 Liang Xiao , Xiaoyue Wan , Canhuang Dai , Xiaojiang Du , Xiang Chen , Mohsen Guizani

Spin Transfer Torque RAM (STTRAM) is a promising candidate for Last Level Cache (LLC) due to high endurance, high density and low leakage. One of the major disadvantages of STTRAM is high write latency and write current. Additionally, the…

Cryptography and Security · Computer Science 2016-03-23 Nitin Rathi , Helia Naeimi , Swaroop Ghosh

Speculation is key to achieving high CPU performance, yet it enables risks like Spectre attacks which remain a significant challenge to mitigate without incurring substantial performance overheads. These attacks typically unfold in three…

Cryptography and Security · Computer Science 2025-05-09 Hossam ElAtali , N. Asokan

Cache side channel attacks are a sophisticated and persistent threat that exploit vulnerabilities in modern processors to extract sensitive information. These attacks leverage weaknesses in shared computational resources, particularly the…

Cryptography and Security · Computer Science 2025-01-29 Tejal Joshi , Aarya Kawalay , Anvi Jamkhande , Amit Joshi

Caches have become the prime method for unintended information extraction across logical isolation boundaries. Even Spectre and Meltdown rely on the cache side channel, as it provides great resolution and is widely available on all major…

Cryptography and Security · Computer Science 2019-04-15 Samira Briongos , Pedro Malagón , José M. Moya , Thomas Eisenbarth

DRAM chips are vulnerable to read disturbance phenomena (e.g., RowHammer and RowPress), where repeatedly accessing or keeping open a DRAM row causes bitflips in nearby rows. Attackers leverage RowHammer bitflips in real systems to take over…

Large language models (LLMs) possess extensive knowledge and question-answering capabilities, having been widely deployed in privacy-sensitive domains like finance and medical consultation. During LLM inferences, cache-sharing methods are…

Cryptography and Security · Computer Science 2024-12-02 Xinyao Zheng , Husheng Han , Shangyi Shi , Qiyan Fang , Zidong Du , Xing Hu , Qi Guo

Caches on the modern commodity CPUs have become one of the major sources of side-channel leakages and been abused as a new attack vector. To thwart the cache-based side-channel attacks, two types of countermeasures have been proposed:…

Cryptography and Security · Computer Science 2024-02-26 Jaehyuk Lee , Fan Sang , Taesoo Kim

In this paper we investigate the feasibility of denial-of-service (DoS) attacks on shared caches in multicore platforms. With carefully engineered attacker tasks, we are able to cause more than 300X execution time increases on a victim task…

Hardware Architecture · Computer Science 2019-03-05 Michael G Bechtel , Heechul Yun

Covert channels can be utilized to secretly deliver information from high privileged processes to low privileged processes in the context of a high-assurance computing system. In this case study, we investigate the possibility of covert…

Cryptography and Security · Computer Science 2015-08-24 Wolfgang Schmidt , Michael Hanspach , Jörg Keller

Scientists have built a variety of covert channels for secretive information transmission with CPU cache and main memory. In this paper, we turn to a lower level in the memory hierarchy, i.e., persistent storage. Most programs store…

Cryptography and Security · Computer Science 2024-06-21 Qisheng Jiang , Chundong Wang

Side-channel information leakage is a known limitation of SGX. Researchers have demonstrated that secret-dependent information can be extracted from enclave execution through page-fault access patterns. Consequently, various recent research…

Cryptography and Security · Computer Science 2017-02-27 Ferdinand Brasser , Urs Müller , Alexandra Dmitrienko , Kari Kostiainen , Srdjan Capkun , Ahmad-Reza Sadeghi

Data deduplication is able to effectively identify and eliminate redundant data and only maintain a single copy of files and chunks. Hence, it is widely used in cloud storage systems to save storage space and network bandwidth. However, the…

Cryptography and Security · Computer Science 2017-03-16 Pengfei Zuo , Yu Hua , Cong Wang , Wen Xia , Shunde Cao , Yukun Zhou , Yuanyuan Sun

Trusted execution environments (TEEs) provide an environment for running workloads in the cloud without having to trust cloud service providers, by offering additional hardware-assisted security guarantees. However, main memory encryption…

Cryptography and Security · Computer Science 2023-09-25 Jan Wichelmann , Anna Pätschke , Luca Wilke , Thomas Eisenbarth