Guard Cache: Creating Noisy Side-Channels

被引：0

作者：

Mosquera, Fernando ^{[1
]}

Kavi, Krishna ^{[1
]}

Mehta, Gayatri ^{[2
]}

John, Lizy ^{[3
]}

机构：

[1] Univ North Texas, Dept Comp Sci & Engn, Denton, TX 76205 USA

[2] Univ North Texas, Dept Elect Engn, Denton, TX 76205 USA

[3] Univ Texas Austin, Dept Elect & Comp Engn, Austin, TX 78712 USA

来源：

IEEE COMPUTER ARCHITECTURE LETTERS | 2023年 / 22卷 / 02期

关键词：

Side-channel attacks; Probes; Technological innovation; Benchmark testing; Out of order; Arrays; Performance gain; Cache side-Channel attacks; evict & time; flush & reload; guard cache; miss cache; obfuscating cache access timing; prime & probe; victim cache; ATTACKS;

D O I：

10.1109/LCA.2023.3289710

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

Microarchitectural innovations such as deep cache hierarchies, out-of-order execution, branch prediction and speculative execution have made possible the design of processors that meet ever-increasing demands for performance. However, these innovations have inadvertently introduced vulnerabilities, which are exploited by side-channel attacks and attacks relying on speculative executions. Mitigating the attacks while preserving the performance has been a challenge. In this letter we present an approach to obfuscate cache timing, making it more difficult for side-channel attacks to succeed. We create false cache hits using a small Guard Cache with randomization, and false cache misses by randomly evicting cache lines. We show that our false hits and false misses cause very minimal performance penalties and our obfuscation can make it difficult for common side-channel attacks such as Prime & Probe, Flush & Reload or Evict & Time to succeed.

引用

页码：97 / 100

页数：4

共 50 条

[41] Cache-Side-Channel Quantification and Mitigation for Quantum Cryptography
Weber, Alexandra
Nikiforov, Oleg
Sauer, Alexander
Schickel, Johannes
Alber, Gernot
Mantel, Heiko
Walther, Thomas
COMPUTER SECURITY - ESORICS 2021, PT II, 2021, 12973 : 235 - 256
[42] Quantifying and Mitigating Cache Side Channel Leakage with Differential Set
Ma, Cong
Wu, Dinghao
Tan, Gang
Kandemir, Mahmut Taylan
Zhang, Danfeng
PROCEEDINGS OF THE ACM ON PROGRAMMING LANGUAGES-PACMPL, 2023, 7 (OOPSLA):
[43] Toward an Optimal Countermeasure for Cache Side-Channel Attacks
Shrivastava, Nivedita
Sarangi, Smruti R.
IEEE EMBEDDED SYSTEMS LETTERS, 2023, 15 (03) : 141 - 144
[44] EavesDroid: Eavesdropping User Behaviors via OS Side Channels on Smartphones
Wang, Quancheng
Tang, Ming
Fu, Jianming
IEEE INTERNET OF THINGS JOURNAL, 2024, 11 (03) : 3979 - 3993
[45] One more set: Mitigating conflict-based cache side-channel attacks by extending cache set
Gu, Yuzhe
Tang, Ming
Wang, Quancheng
Wang, Han
Ding, Haili
JOURNAL OF SYSTEMS ARCHITECTURE, 2023, 144
[46] Screaming Channels: When Electromagnetic Side Channels Meet Radio Transceivers
Camurati, Giovanni
Poeplau, Sebastian
Muench, Marius
Hayes, Tom
Francillon, Aurelien
PROCEEDINGS OF THE 2018 ACM SIGSAC CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY (CCS'18), 2018, : 163 - 177
[47] Micro-architectural Cache Side-Channel Attacks and Countermeasures
Shen, Chaoqun
Chen, Congcong
Zhang, Jiliang
2021 26TH ASIA AND SOUTH PACIFIC DESIGN AUTOMATION CONFERENCE (ASP-DAC), 2021, : 441 - 448
[48] TreasureCache: Hiding Cache Evictions Against Side-Channel Attacks
Li, Mengming
Bu, Kai
Miao, Chenlu
Ren, Kui
IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING, 2024, 21 (05) : 4574 - 4588
[49] PREFENDER: A Prefetching Defender against Cache Side Channel Attacks as A Pretender
Li, Luyi
Huang, Jiayi
Feng, Lang
Wang, Zhongfeng
PROCEEDINGS OF THE 2022 DESIGN, AUTOMATION & TEST IN EUROPE CONFERENCE & EXHIBITION (DATE 2022), 2022, : 1509 - 1514
[50] CacheD: Identifying Cache-Based Timing Channels in Production Software
Wang, Shuai
Wang, Pei
Liu, Xiao
Zhang, Danfeng
Wu, Dinghao
PROCEEDINGS OF THE 26TH USENIX SECURITY SYMPOSIUM (USENIX SECURITY '17), 2017, : 235 - 252

← 1 2 3 4 5 →