DOI:10.1145/2897845.2897885

Corpus ID: 6519822

Preventing Page Faults from Telling Your Secrets

@article{Shinde2016PreventingPF,
  title={Preventing Page Faults from Telling Your Secrets},
  author={Shweta Shinde and Zheng Leong Chua and V. Narayanan and P. Saxena},
  journal={Proceedings of the 11th ACM on Asia Conference on Computer and Communications Security},
  year={2016}
}

Shweta Shinde, Zheng Leong Chua, +1 author P. Saxena

Published 2016

Computer Science

Proceedings of the 11th ACM on Asia Conference on Computer and Communications Security

New hardware primitives such as Intel SGX secure a user-level process in presence of an untrusted or compromised OS. Such "enclaved execution" systems are vulnerable to several side-channels, one of which is the page fault channel. In this paper, we show that the page fault side-channel has sufficient channel capacity to extract bits of encryption keys from commodity implementations of cryptographic routines in OpenSSL and Libgcrypt -- leaking 27% on average and up to 100% of the secret bits in… CONTINUE READING

Share This Paper

143 Citations

Highly Influential Citations

18

Background Citations

90

Methods Citations

20

Results Citations

3

Figures, Tables, and Topics from this paper

Figures and Tables

Telling Your Secrets Without

Jo Van Bulck, R. Kapitza
2017

Highly Influenced
PDF

A Compiler and Verifier for

R. Sinha
2017

Highly Influenced
PDF

A compiler and verifier for page access oblivious computation

R. Sinha, S. Rajamani, S. Seshia
Computer Science
ESEC/SIGSOFT FSE
2017

20
Highly Influenced
PDF

Klotski: Efficient Obfuscated Execution against Controlled-Channel Attacks

P. Zhang, Cheng-Yu Song, Heng Yin, Deqing Zou, E. Shi, H. Jin
Computer Science
ASPLOS
2020

1
Highly Influenced
PDF

Protecting SGX Enclaves From Practical Side-Channel Attacks

O. Oleksenko, B. Trach, R. Krahn, A. Martin, C. Fetzer, M. Silberstein
2018

2

Telling Your Secrets without Page Faults: Stealthy Page Table-Based Attacks on Enclaved Execution

Jo Van Bulck, Nico Weichbrodt, R. Kapitza, F. Piessens, Raoul Strackx
Computer Science
USENIX Security Symposium
2017

133
Highly Influenced
PDF

Varys: Protecting SGX Enclaves from Practical Side-Channel Attacks

O. Oleksenko, B. Trach, R. Krahn, M. Silberstein, C. Fetzer
Computer Science
USENIX Annual Technical Conference
2018

76
PDF

BesFS: Mechanized Proof of an Iago-Safe Filesystem for Enclaves

Shweta Shinde, S. Wang, Pinghai Yuan, Aquinas Hobor, Abhik Roychoudhury, P. Saxena
Computer Science
ArXiv
2018

2
PDF

Sgx-Lapd: Thwarting Controlled Side Channel Attacks via Enclave Verifiable Page Faults

Yangchun Fu, E. Bauman, Raul Quinonez, Z. Lin
Computer Science
RAID
2017

28
PDF

SGX-Bomb: Locking Down the Processor via Rowhammer Attack

Yeongjin Jang, Jae-Hyuk Lee, S. Lee, Taesoo Kim
Computer Science
SysTEX@SOSP
2017

52
PDF

‹
1
2
3
4
5
›

References

SHOWING 1-6 OF 6 REFERENCES

Controlled-Channel Attacks: Deterministic Side Channels for Untrusted Operating Systems

Yuanzhong Xu, W. Cui, M. Peinado
Computer Science
2015 IEEE Symposium on Security and Privacy
2015

508
Highly Influential
PDF

Memory Trace Oblivious Program Execution

Chang Liu, M. Hicks, E. Shi
Computer Science
2013 IEEE 26th Computer Security Foundations Symposium
2013

54
Highly Influential
PDF

Overshadow: a virtualization-based approach to retrofitting protection in commodity operating systems

X. Chen, T. Garfinkel, +5 authors Dan R. K. Ports
Computer Science
ASPLOS
2008

419
Highly Influential
PDF

Recovering OpenSSL ECDSA Nonces Using the FLUSH+RELOAD Cache Side-channel Attack

Yuval Yarom, N. Benger
Computer Science
IACR Cryptol. ePrint Arch.
2014

141
Highly Influential
PDF

Innovative instructions and software model for isolated execution

Frank McKeen, Ilya Alexandrovich, +4 authors Uday R. Savagaonkar
Computer Science
HASP '13
2013

771
Highly Influential
PDF

InkTag: secure applications on an untrusted operating system

O. Hofmann, S. Kim, A. Dunn, M. Lee, Emmett Witchel
Computer Science, Medicine
ASPLOS '13
2013

205
Highly Influential
PDF