DR.SGX: Hardening SGX Enclaves against Cache Attacks with Data Location Randomization

@article{Brasser2017DRSGXHS,
  title={DR.SGX: Hardening SGX Enclaves against Cache Attacks with Data Location Randomization},
  author={F. Brasser and Srdjan Capkun and A. Dmitrienko and Tommaso Frassetto and Kari Kostiainen and U. M{\"u}ller and A. Sadeghi},
  journal={ArXiv},
  year={2017},
  volume={abs/1709.09917}
}
  • F. Brasser, Srdjan Capkun, +4 authors A. Sadeghi
  • Published 2017
  • Computer Science
  • ArXiv
  • Recent research has demonstrated that Intel's SGX is vulnerable to various software-based side-channel attacks. [...] Key Method We design and implement a compiler-based tool called DR.SGX that instruments enclave code such that data locations are permuted at the granularity of cache lines. We realize the permutation with the CPU's cryptographic hardware-acceleration units providing secure randomization.Expand Abstract
    37 Citations
    Varys: Protecting SGX Enclaves from Practical Side-Channel Attacks
    • 63
    • PDF
    Klotski: Efficient Obfuscated Execution against Controlled-Channel Attacks
    Foreshadow: Extracting the Keys to the Intel SGX Kingdom with Transient Out-of-Order Execution
    • 411
    • PDF
    The Guard's Dilemma: Efficient Code-Reuse Attacks Against Intel SGX
    • 39
    • PDF
    MPTEE: bringing flexible and efficient memory protection to Intel SGX
    • 3
    • PDF
    PAC it up: Towards Pointer Integrity using ARM Pointer Authentication
    • 22
    • PDF
    New Attacks and Defenses for Randomized Caches
    • 2
    • PDF
    DATA - Differential Address Trace Analysis: Finding Address-based Side-Channels in Binaries
    • 21
    • PDF

    References

    SHOWING 1-10 OF 75 REFERENCES
    Cache Attacks on Intel SGX
    • 185
    • Highly Influential
    • PDF
    Software Grand Exposure: SGX Cache Attacks Are Practical
    • 292
    • PDF
    Cache Attacks and Countermeasures: The Case of AES
    • 1,058
    • Highly Influential
    • PDF
    SGX-Shield: Enabling Address Space Layout Randomization for SGX Programs
    • 127
    • PDF
    Raccoon: Closing Digital Side-Channels through Obfuscated Execution
    • 156
    • PDF
    Timely Rerandomization for Mitigating Memory Disclosures
    • 108
    • Highly Influential
    • PDF
    Inferring Fine-grained Control Flow Inside SGX Enclaves with Branch Shadowing
    • 268
    • PDF
    T-SGX: Eradicating Controlled-Channel Attacks Against Enclave Programs
    • 231
    • Highly Influential
    • PDF