CaSA: End-to-end Quantitative Security Analysis of Randomly Mapped Caches
| العنوان: | CaSA: End-to-end Quantitative Security Analysis of Randomly Mapped Caches |
|---|---|
| المؤلفون: | Thomas Bourgeat, Yuheng Yang, Jules Drean, Mengjia Yan, Joel Emer, Lillian Tsai |
| المصدر: | MICRO MIT web domain |
| بيانات النشر: | IEEE, 2020. |
| سنة النشر: | 2020 |
| مصطلحات موضوعية: | 010302 applied physics, Security analysis, CPU cache, Computer science, 02 engineering and technology, Computer security, computer.software_genre, 01 natural sciences, Field (computer science), 020202 computer hardware & architecture, Set (abstract data type), End-to-end principle, 0103 physical sciences, 0202 electrical engineering, electronic engineering, information engineering, Leverage (statistics), Cache, computer |
| الوصف: | © 2020 IEEE. It is well known that there are micro-architectural vulnerabilities that enable an attacker to use caches to exfiltrate secrets from a victim. These vulnerabilities exploit the fact that the attacker can detect cache lines that were accessed by the victim. Therefore, architects have looked at different forms of randomization to thwart the attacker's ability to communicate using the cache. The security analysis of those randomly mapped caches is based upon the increased difficulty for the attacker to determine the addresses that touch the same cache line that the victim has accessedIn this paper, we show that the analyses used to evaluate those schemes were incomplete in various ways. For example, they were incomplete because they only focused on one of the steps used in the exfiltration of secrets. Specifically, the step that the attacker uses to determine the set of addresses that can monitor the cache lines used by the transmitter address. Instead, we broaden the analysis of micro-architecture side channels by providing an overall view of the communication process. This allows us to identify the existence of other communication steps that can also affect the security of randomly mapped caches, but have been ignored by prior workWe design an analysis framework, CaSA, to comprehensively and quantitatively analyze the security of these randomly mapped caches. We comprehensively consider the end-to-end communication steps and study the statistical relationship between different steps. In addition, to perform quantitative analysis, we leverage the concepts from the field of telecommunications to formulate the security analysis into a statistical problem. We use CaSA to evaluate a wide range of attack strategies and cache configurations. Our result shows that the randomization mechanisms used in the state-of-the-art randomly mapped caches are insecure. |
| وصف الملف: | application/pdf |
| URL الوصول: | https://explore.openaire.eu/search/publication?articleId=doi_dedup___::459d0179a7769bf4d43bd76875602a35 https://doi.org/10.1109/micro50266.2020.00092 |
| حقوق: | OPEN |
| رقم الأكسشن: | edsair.doi.dedup.....459d0179a7769bf4d43bd76875602a35 |
| قاعدة البيانات: | OpenAIRE |
| الوصف غير متاح. |