CaSA: End-to-end Quantitative Security Analysis of Randomly Mapped Caches

Bourgeat, Thomas; Drean, Jules; Yang, Yuheng; Tsai, Lillian; Emer, Joel; Yan, Mengjia

doi:10.1109/micro50266.2020.00092

Cited by 32 publications

(17 citation statements)

References 29 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, the adversary can only deduce that some cache line was filled by the victim-the adversary does not learn the corresponding set index within the victim domain. Consider: if the victim had filled data into set 1, then with 1 4 probability the adversary would also observe one miss in the probe step, in way 1. If the victim had filled data into set x then with 1 4 probability the adversary would observe one miss in way x, and similarly a fill into set x + 1 would be observed with 1 4 probability as a miss in way x+1.…”

Section: B Designmentioning

confidence: 99%

“…Consider: if the victim had filled data into set 1, then with 1 4 probability the adversary would also observe one miss in the probe step, in way 1. If the victim had filled data into set x then with 1 4 probability the adversary would observe one miss in way x, and similarly a fill into set x + 1 would be observed with 1 4 probability as a miss in way x+1. Therefore, the standard PRIME+PROBE attack within a GALOISCACHE defined over G p n will only tell the adversary whether the victim filled any line, with 1/p n probability.…”

Section: B Designmentioning

confidence: 99%

“…Other side-channel resilient cache proposals use randomization [17] or cryptographic hashing [26] to obfuscate address-to-set and/or address-to-way mappings. These schemes may incur little or no performance penalty, yet they often fail to meet their intended security objectives [1,19]. To compensate for these shortcomings and provide convincing security, these caches must be periodically re-keyed, i.e., the set/way mapping must be redrawn to prevent the adversary from reverse engineering any given mapping and then extracting secrets [21,26].…”

Section: Introductionmentioning

confidence: 99%

“…The many prior works that use randomization or hashing to obfuscate the cache layout are often accompanied by a security analysis based on probabilistic reasoning [1,21,22,26]. By contrast, the security of GALOISCACHE is predicated upon a single discrete mathematical property of the cache layout, and discrete mathematical properties are, in general, easier to scrutinize that probabilistic security models.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Seeds of SEED: A Side-Channel Resilient Cache Skewed by a Linear Function over a Galois Field

Constable

Unterluggauer

2021

2021 International Symposium on Secure and Private Execution Environment Design (SEED)

View full text Add to dashboard Cite

Consider a set-associative cache with p n sets and p n ways where p is prime and n > 0. Furthermore, assume that the cache may be shared among p n mutually distrusting principals that may use the PRIME+PROBE side-channel attack against one another; architecturally, these principals occupy separate security domains (for example, separate processes, virtual machines, sandboxes, etc.). This paper shows that there exists a linear skewing of cache sets over the Galois field Gpn that exhibits the following property: each cache set of each security domain intersects every cache set of every other security domain exactly once. Therefore, a random eviction from a single cache set in security domain A may be observed via PRIME+PROBE in any of security domain B's cache sets. This paper characterizes this linear skewing and describes how it can be implemented efficiently in hardware.

show abstract

Section: B Designmentioning

confidence: 99%

Section: B Designmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Seeds of SEED: A Side-Channel Resilient Cache Skewed by a Linear Function over a Galois Field

Constable

Unterluggauer

2021

2021 International Symposium on Secure and Private Execution Environment Design (SEED)

View full text Add to dashboard Cite

show abstract

“…In general, side channel attacks can be viewed via a communication model where there is a transmitter (the victim) that modulates a channel, with that modulation being detected by a receiver (the attacker) [5,14]. When the channel is a cache, the receiver is generally active, i.e., it modulates the channel itself in order to detect a transmission.…”

Section: Introductionmentioning

confidence: 99%

DAGguise: mitigating memory timing side channels

Deutsch

Yang

Bourgeat

et al. 2022

Proceedings of the 27th ACM International Conference on Architectural Support for Programming Languages and Operating Systems

Self Cite

View full text Add to dashboard Cite

This paper studies the mitigation of memory timing side channels, where attackers utilize contention within DRAM controllers to infer a victim's secrets. Already practical, this class of channels poses an important challenge to secure computing in shared memory environments.Existing state-of-the-art memory timing side channel mitigations have several key performance and security limitations. Prior schemes require onerous static bandwidth partitioning, extensive profiling phases, or simply fail to protect against attacks which exploit fine-grained timing and bank information.We present DAGguise, a defense mechanism which fully protects against memory timing side channels while allowing for dynamic traffic contention in order to achieve good performance. DAGguise utilizes a novel abstract memory access representation, the Directed Acyclic Request Graph (𝑟 DAG for short), to model memory access patterns which experience contention. DAGguise shapes a victim's memory access patterns according to a publicly known 𝑟 DAG obtained through a lightweight profiling stage, completely eliminating information leakage.We formally verify the security of DAGguise, proving that it maintains strong security guarantees. Moreover, by allowing dynamic traffic contention, DAGguise achieves a 12% overall system speedup relative to Fixed Service, which is the state-of-the-art mitigation mechanism, with up to a 20% relative speedup for co-located applications which do not require protection. We further claim that the principles of DAGguise can be generalized to protect against other types of scheduler-based timing side channels, such as those targeting on-chip networks, or functional units in SMT cores. CCS CONCEPTS• Security and privacy → Side-channel analysis and countermeasures.

show abstract