Corpus ID: 2370820

Preventing Your Faults From Telling Your Secrets: Defenses Against Pigeonhole Attacks

@article{Shinde2015PreventingYF,
  title={Preventing Your Faults From Telling Your Secrets: Defenses Against Pigeonhole Attacks},
  author={Shweta Shinde and Zheng Leong Chua and V. Narayanan and P. Saxena},
  journal={ArXiv},
  year={2015},
  volume={abs/1506.04832}
}
  • Shweta Shinde, Zheng Leong Chua, +1 author P. Saxena
  • Published 2015
  • Computer Science
  • ArXiv
    • New hardware primitives such as Intel SGX secure a user-level process in presence of an untrusted or compromised OS. Such "enclaved execution" systems are vulnerable to several side-channels, one of which is the page fault channel. In this paper, we show that the page fault side-channel has sufficient channel capacity to extract bits of encryption keys from commodity implementations of cryptographic routines in OpenSSL and Libgcrypt --- leaking 27% on average and up to 100% of the secret bits… CONTINUE READING
    View PDF on arXiv
    26 Citations
    Highly Influential Citations
    3
    Background Citations
    20
    Methods Citations
    1
    26 Citations
    Citation Type

    Citation Type

    Preventing Page Faults from Telling Your Secrets
    • 143
    • PDF
    SGX-Bomb: Locking Down the Processor via Rowhammer Attack
    • 52
    • PDF
    Sealed-Glass Proofs: Using Transparent Enclaves to Prove and Sell Knowledge
    • 64
    • Highly Influenced
    • PDF
    Sgx-Lapd: Thwarting Controlled Side Channel Attacks via Enclave Verifiable Page Faults
    • 28
    • PDF
    Single Trace Attack Against RSA Key Generation in Intel SGX SSL
    • 23
    • PDF
    Peapods: OS-Independent Memory Confidentiality for Cryptographic Engines
    • C. Li, J. Lin, Quanwei Cai, B. Luo
    • Computer Science
    • 2018 IEEE Intl Conf on Parallel & Distributed Processing with Applications, Ubiquitous Computing & Communications, Big Data & Cloud Computing, Social Computing & Networking, Sustainable Computing & Communications (ISPA/IUCC/BDCloud/SocialCom/SustainCom)
    • 2018
    T-SGX: Eradicating Controlled-Channel Attacks Against Enclave Programs
    • 251
    • Highly Influenced
    • PDF
    Mitigating Branch-Shadowing Attacks on Intel SGX using Control Flow Randomization
    • 5
    • PDF
    OBFUSCURO: A Commodity Obfuscation Engine on Intel SGX
    • 20
    • PDF
    Inferring Fine-grained Control Flow Inside SGX Enclaves with Branch Shadowing
    • 292
    • Highly Influenced
    • PDF

    References

    SHOWING 1-10 OF 67 REFERENCES
    Architectural support for copy and tamper resistant software
    • 490
    • PDF
    Practical Timing Side Channel Attacks against Kernel Space ASLR
    • 267
    • PDF
    Automatic Quantification of Cache Side-Channels
    • 102
    • PDF
    The Spy in the Sandbox: Practical Cache Attacks in JavaScript and their Implications
    • 192
    • PDF
    Controlled-Channel Attacks: Deterministic Side Channels for Untrusted Operating Systems
    • 509
    • PDF
    CacheAudit: A Tool for the Static Analysis of Cache Side Channels
    • 198
    • PDF
    On the Trade-Offs in Oblivious Execution Techniques
    • 13
    • PDF
    FLUSH+RELOAD: A High Resolution, Low Noise, L3 Cache Side-Channel Attack
    • 838
    • PDF
    Towards Application Security on Untrusted Operating Systems
    • 39
    • PDF
    Memory Trace Oblivious Program Execution
    • Chang Liu, M. Hicks, E. Shi
    • Computer Science
    • 2013 IEEE 26th Computer Security Foundations Symposium
    • 2013
    • 54
    • PDF