Guard Cache: Creating Noisy Side-Channels

被引：0

作者：

Mosquera, Fernando ^{[1
]}

Kavi, Krishna ^{[1
]}

Mehta, Gayatri ^{[2
]}

John, Lizy ^{[3
]}

机构：

[1] Univ North Texas, Dept Comp Sci & Engn, Denton, TX 76205 USA

[2] Univ North Texas, Dept Elect Engn, Denton, TX 76205 USA

[3] Univ Texas Austin, Dept Elect & Comp Engn, Austin, TX 78712 USA

来源：

IEEE COMPUTER ARCHITECTURE LETTERS | 2023年 / 22卷 / 02期

关键词：

Side-channel attacks; Probes; Technological innovation; Benchmark testing; Out of order; Arrays; Performance gain; Cache side-Channel attacks; evict & time; flush & reload; guard cache; miss cache; obfuscating cache access timing; prime & probe; victim cache; ATTACKS;

D O I：

10.1109/LCA.2023.3289710

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

Microarchitectural innovations such as deep cache hierarchies, out-of-order execution, branch prediction and speculative execution have made possible the design of processors that meet ever-increasing demands for performance. However, these innovations have inadvertently introduced vulnerabilities, which are exploited by side-channel attacks and attacks relying on speculative executions. Mitigating the attacks while preserving the performance has been a challenge. In this letter we present an approach to obfuscate cache timing, making it more difficult for side-channel attacks to succeed. We create false cache hits using a small Guard Cache with randomization, and false cache misses by randomly evicting cache lines. We show that our false hits and false misses cause very minimal performance penalties and our obfuscation can make it difficult for common side-channel attacks such as Prime & Probe, Flush & Reload or Evict & Time to succeed.

引用

页码：97 / 100

页数：4

共 50 条

[31] Certified Side Channels
Garcia, Cesar Pereida
ul Hassan, Sohaib
Tuveri, Nicola
Gridin, Iaroslav
Aldaya, Alejandro Cabrera
Brumley, Billy Bob
PROCEEDINGS OF THE 29TH USENIX SECURITY SYMPOSIUM, 2020, : 2021 - 2038
[32] Defeating Cache Timing Channels with Hardware Prefetchers
Fang, Hongyu
Dayapule, Sai Santosh
Yao, Fan
Doroslovacki, Milos
Venkataramani, Guru
IEEE DESIGN & TEST, 2021, 38 (03) : 7 - 14
[33] A New Prime and Probe Cache Side-Channel Attack for Cloud Computing
Younis, Younis A.
Kifayat, Kashif
Shi, Qi
Askwith, Bob
CIT/IUCC/DASC/PICOM 2015 IEEE INTERNATIONAL CONFERENCE ON COMPUTER AND INFORMATION TECHNOLOGY - UBIQUITOUS COMPUTING AND COMMUNICATIONS - DEPENDABLE, AUTONOMIC AND SECURE COMPUTING - PERVASIVE INTELLIGENCE AND COMPUTING, 2015, : 1719 - 1725
[34] Keep the PokerFace on! Thwarting cache side channel attacks by memory bus monitoring and cache obfuscation
Arun Raj
Janakiram Dharanipragada
Journal of Cloud Computing, 6
[35] CONDENSE: A Moving Target Defense Approach for Mitigating Cache Side-Channel Attacks
Dai, Chenxi
Adegbija, Tosiron
IEEE CONSUMER ELECTRONICS MAGAZINE, 2020, 9 (03) : 114 - 119
[36] Keep the PokerFace on! Thwarting cache side channel attacks by memory bus monitoring and cache obfuscation
Raj, Arun
Dharanipragada, Janakiram
JOURNAL OF CLOUD COMPUTING-ADVANCES SYSTEMS AND APPLICATIONS, 2017, 6
[37] SoK: Keylogging Side Channels
Monaco, John V.
2018 IEEE SYMPOSIUM ON SECURITY AND PRIVACY (SP), 2018, : 211 - 228
[38] Seeds of SEED: H2Cache: Building a Hybrid Randomized Cache Hierarchy for Mitigating Cache Side-Channel Attacks
Zhang, Xingjian
Yuan, Ziqi
Chang, Rui
Zhou, Yajin
2021 INTERNATIONAL SYMPOSIUM ON SECURE AND PRIVATE EXECUTION ENVIRONMENT DESIGN (SEED 2021), 2021, : 29 - 36
[39] Dynamic First Access Isolation Cache to Eliminate Reuse-Based Cache Side Channel Attacks
Wang, Chong
Yu, Hong
Wei, Shuai
Song, Ke
JOURNAL OF CIRCUITS SYSTEMS AND COMPUTERS, 2023, 32 (02)
[40] Scheduling, Isolation, and Cache Allocation: A Side-Channel Defense
Sprabery, Read
Evchenko, Konstantin
Raj, Abhilash
Bobba, Rakesh B.
Mohan, Sibin
Campbell, Roy
2018 IEEE INTERNATIONAL CONFERENCE ON CLOUD ENGINEERING (IC2E 2018), 2018, : 34 - 40

← 1 2 3 4 5 →