Security Model for Randomization-based Protected Caches

Ribes-González, Jordi; Farràs, Oriol; Hernández, Carles; Kostalabros, Vatistas; Moretó, Miquel

doi:10.46586/tches.v2022.i3.1-25

TCHES

2022

DOI: 10.46586/tches.v2022.i3.1-25

|View full text |Cite

Security Model for Randomization-based Protected Caches

Jordi Ribes-González

Oriol Farràs

Carles Hernández

et al.

Abstract: Cache side-channel attacks allow adversaries to learn sensitive information about co-running processes by using only access latency measures and cache contention.This vulnerability has been shown to lead to several microarchitectural attacks. As a promising solution, recent work proposes Randomization-based Protected Caches (RPCs). RPCs randomize cache addresses, changing keys periodically so as to avoid long-term leakage. Unfortunately, recent attacks have called the security of state-of-the-art RPCs into que… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...

Citation Types

Supporting

Mentioning

Contrasting

Year Published

2023

Publication Types

Select...

Article1

Relationship

Self Cite0

Independent1

Authors

Journals

Cited by 1 publication

References 15 publications

(38 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

Transient-Execution Attacks: A Computer Architect Perspective

Fiolhais¹,

Sousa

2023

ACM Comput. Surv.

View full text Add to dashboard Cite

Computer architects employ a series of performance optimizations at the micro-architecture level. These optimizations are meant to be invisible to the programmer but they are implicitly programmed alongside the architectural state. Critically, the incorrect results of these optimizations are not scrubbed off the micro-architectural state. This side-effect may seem innocuous. However, through transient-execution, an attacker can leverage this knowledge to obtain information from the micro-architectural state and transmit the data to itself. Transient-Execution is a class of attacks that use the side-effects of executed instructions to leak data. Transient-Execution attacks are split into two categories: speculation-based (Spectre-type) and exception-based (Meltdown-type). A successful attack requires, first, access to the sensitive information, and, second, a transmission channel such that the data can be recovered. Therefore, this survey explains how an attacker can use the state from optimizations in the micro-architecture to access sensitive information from other programs running in the same device; and, once the information is obtained, it describes how the data can be encoded and transmitted in the micro-architectural state. Moreover, it introduces a taxonomy and analyzes defenses for such malicious attacks.

show abstract

Transient-Execution Attacks: A Computer Architect Perspective

Fiolhais¹,

Sousa

2023

ACM Comput. Surv.

View full text Add to dashboard Cite

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Security Model for Randomization-based Protected Caches

Cited by 1 publication

References 15 publications

Transient-Execution Attacks: A Computer Architect Perspective

Transient-Execution Attacks: A Computer Architect Perspective

Contact Info

Product

Resources

About