SgxPectre: Stealing Intel Secrets From SGX Enclaves via Speculative Execution

被引：15

作者：

Chen, Guoxing ^{[1
]}

Chen, Sanchuan ^{[2
]}

Xiao, Yuan ^{[2
]}

Zhang, Yinqian ^{[2
]}

Lin, Zhiqiang ^{[3
]}

Lai, Ten-Hwang ^{[3
]}

机构：

[1] Ohio State Univ, Columbus, OH 43210 USA

[2] Ohio State Univ, Dept Comp Sci & Engn, Columbus, OH 43210 USA

[3] Ohio State Univ, Comp Sci & Engn, Columbus, OH 43210 USA

来源：

IEEE SECURITY & PRIVACY | 2020年 / 18卷 / 03期

基金：

美国国家科学基金会;

关键词：

Computer security; Program processors; Hardware; Registers; Microarchitecture;

D O I：

10.1109/MSEC.2019.2963021

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

The speculative execution of side-channel vulnerabilities in microarchitecture processors has raised concerns about the security of Intel's Software Guard eXtensions (SGX). We present SgxPectre attacks, the SGX variants of Spectre attacks, which exploit speculative execution vulnerabilities to subvert the confidentiality of SGX enclaves; evaluate Intel's existing countermeasures against SgxPectre attacks; and discuss security implications.

引用

页码：28 / 37

页数：10

共 15 条

[1] Chen GH, 2019, PROCEEDINGS OF 2019 INTERNATIONAL CONFERENCE ON PATTERN RECOGNITION AND ARTIFICIAL INTELLIGENCE (PRAI 2019), P1, DOI [10.1145/3357777.3357778, 10.1109/multi-temp.2019.8866970]
[2] POSTER: Rust SGX SDK: Towards Memory Safety in Intel SGX Enclave
Ding, Yu
Duan, Ran
Li, Long
Cheng, Yueqiang
Zhang, Yulong
Chen, Tanghui
Wei, Tao
Wang, Huibo
[J]. CCS'17: PROCEEDINGS OF THE 2017 ACM SIGSAC CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY, 2017, : 2491 - 2493
[3] Hai Chen, 2019, 2019 IEEE Holm Conference on Electrical Contacts. Proceedings, P142, DOI 10.1109/HOLM.2019.8924028
[4] Johnson S., 2016, TECH REP
[5] Kiriansky V, 2018, 2018 51ST ANNUAL IEEE/ACM INTERNATIONAL SYMPOSIUM ON MICROARCHITECTURE (MICRO), P974, DOI [10.1109/MICRO.2018.00083, 10.1109/MICR0.2018.00083]
[6] Spectre Attacks: Exploiting Speculative Execution
Kocher, Paul
Horn, Jann
Fogh, Anders
Genkin, Daniel
Gruss, Daniel
Haas, Werner
Hamburg, Mike
Lipp, Moritz
Mangard, Stefan
Prescher, Thomas
Schwarz, Michael
Yarom, Yuval
[J]. 2019 IEEE SYMPOSIUM ON SECURITY AND PRIVACY (SP 2019), 2019, : 1 - 19
[7] Lipp M, 2018, PROCEEDINGS OF THE 27TH USENIX SECURITY SYMPOSIUM, P973
[8] O'Keeffe D., 2018, SGXSpectre
[9] Schwarz M, 2019, PROCEEDINGS OF THE 2019 ACM SIGSAC CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY (CCS'19), P753
[10] (State of) The Art of War: Offensive Techniques in Binary Analysis
Shoshitaishvili, Yan
Wang, Ruoyu
Salls, Christopher
Stephens, Nick
Polino, Mario
Dutcher, Andrew
Grosen, John
Feng, Siji
Hauser, Christophe
Kruegel, Christopher
Vigna, Giovanni
[J]. 2016 IEEE SYMPOSIUM ON SECURITY AND PRIVACY (SP), 2016, : 138 - 157

← 1 2 →