PPT-ReplayConfusion : Detecting Cache-based Covert Channel Attacks Using Record and Replay

Mengjia Yan Yasser Shalabi Josep Torrellas University of Illinois at UrbanaChampaign http iacomacsuiucedu MICRO October 2016 Motivation Cachebased covert channel attacks Communicate through cache conflicts. Daniel D. Salloum. Overview. Introduction and background. General options. CCA Methods. More recent work. Future work. Building Blocks. Origin- Butler Lampson. MLS. No read up. No write down. Definitions. Ravi . Sandhu. COVERT CHANNELS. A covert channel is a communication channel based on the use of system resources not normally intended for communication between the subjects (processes) in the system. in a Managed Language Virtual Machine. Michael . Bond. Milind. Kulkarni. Man . Cao. Meisam. . Fathi. . Salmi. Jipeng. Huang. Purdue. Microsoft. Ohio State. 1. Nondeterminism is problematic. Reproduce and Debug. Mobile . Vehicular Networks . Rasheed . Hussain*, . Donghyun . Kim. **, . Alade O. . Tokuta**, . Hayk . M. . Melikyan. **, . and Heekuck . Oh***. *. Department . of Computer Science, . Innopolis. University, Kazan, . Yongjian. . Hu . Tanzirul. . Azim. . Iulian. . Neamtiu. Replay GPS trace. Debug . Shazam. Debug Barcode Scanner. Record-and-replay is. u. seful . in a variety of. Android development . a. rchitectural. Side-Channel Attacks. Part 2. Yuval Yarom. The University of Adelaide . and . Data61. 1. X86 L1 Cache. Tag. Set. Offset. 0. 6 5. 12 11. Tag,. Data. Sets. Ways. Stores fixed-size (64B) . Mobile . Vehicular Networks . Rasheed . Hussain*, . Donghyun . Kim. **, . Alade O. . Tokuta**, . Hayk . M. . Melikyan. **, . and Heekuck . Oh***. *. Department . of Computer Science, . Innopolis. University, Kazan, . in a Managed Language Virtual Machine. Michael . Bond. Milind. Kulkarni. Man . Cao. Meisam. . Fathi. . Salmi. Jipeng. Huang. Purdue. Microsoft. Ohio State. 1. Nondeterminism is problematic. Reproduce and Debug. Yuval Yarom. The University of Adelaide and Data61. “The . binary search needs to be done in constant time to avoid timing issue. But it's fast, so there's no problem. .” . An anonymous reviewer, . Are We There Yet in Industrial Cases?. Wing . Lam. . Zhengkai. Wu. . Dengfeng. Li. . Wenyu. Wang. . Tao . Xie. University of Illinois at Urbana-Champaign, USA. Haibing. . Zheng. . Hui Luo. Mobile . Vehicular Networks . Rasheed . Hussain*, . Donghyun . Kim. **, . Alade O. . Tokuta**, . Hayk . M. . Melikyan. **, . and Heekuck . Oh***. *. Department . of Computer Science, . Innopolis. University, Kazan, . Dynamic Software Diversity. Presented by . Xianchen. . Meng. Background. Side-Channel Attacks. Definition:. In cryptography, a . side-channel attack.  is any attack based on information gained from the physical implementation of a cryptosystem, rather than brute force . COVERT CHANNELS. A covert channel is a communication channel based on the use of system resources not normally intended for communication between the subjects (processes) in the system. COVERT CHANNELS. Yuval Yarom. The University of Adelaide . and . Data61. 1. Publications on . microarchitectural. timing attacks. Data from [GYCH16]. 2. Publications and Global . Temperature. 3. Global Average Temperatures Vs. Number of Pirates.