Presentation is loading. Please wait.

Presentation is loading. Please wait.

Thwarting cache-based side- channel attacks Yuval Yarom The University of Adelaide and Data61.

Published byJames Dickerson Modified over 7 years ago

Similar presentations

Presentation on theme: "Thwarting cache-based side- channel attacks Yuval Yarom The University of Adelaide and Data61."— Presentation transcript:

1 Thwarting cache-based side- channel attacks Yuval Yarom The University of Adelaide and Data61

2 “The binary search needs to be done in constant time to avoid timing issue. But it's fast, so there's no problem.” An anonymous reviewer, AsiaCrypt 2016

3 Outline Introduction to cache attacks Constant-time programming Testing for constant-time

4 Microarchitecture The Microachitecture ISA Data Cache Instruction Cache Pipeline BPU TLB MMU DRAM Interconnect LLC

5 Microarchitectural attacks Force contention on microarchitectural components ⋯ Creating timing variations ⋯ That are used to expose an intarnal state ⋯ Which depends on secret data ⋯ Allowing the attacker to infer said data 5

6 Cache Structure Stores fixed-size lines Arranged as multiple sets, each consisting of multiple ways. Each memory line maps to a single cache set – Can be cached in any of the ways in the set Memory Cache Sets Ways 6

7 The Prime+Probe attack Choose a cache-sized memory buffer Access all the lines in the buffer, filling the cache Victim executes, evicting some of the buffer lines from the cache Measure the time to access the buffer – Accesses to cached lines is faster than to evicted lines Memory Cache 7 C. Percival, "Cache Missing for Fun and Profit", BSDCan, 2005 D. A. Osvik, A. Shamir and E. Tromer, "Cache Attacks and Countermeasures: The Case of AES", CT-RSA 2006

8 Prime+Probe attack on GnuPG 1.4.13 Square Multiply

9 The Bernstein attack AES tables stored in memory – Table access patterns depend on both the key and the plaintext/ciphertext – Access time depends on the pattern of previous accesses Attack: – Create timing profiles for each key byte – Measure timing – Match with profile 9 Timing Profile for byte 15 [Ber05] D. J. Bernstein, "Cache-timing attacks on AES",http://cr.yp.to/antiforgerycachetiming-20050414.pdf, 2005

10 F LUSH +R ELOAD F LUSH memory line Wait a bit Measure time to R ELOAD line – slow-> no access – fast-> access Repeat Processor Memory Cache 10 D. Gullasch, E. Bangerter and S. Krenn, “Cache Games - Bringing Access-Based Cache Attacks on AES to Practice”, IEEE S&P 2011 Y. Yarom and K. Falkner, “Flush+Reload: a High Resolution, Low Noise, L3 Cache Side-Channel Attack”, USENIX Security 2014

11 F LUSH +R ELOAD on GnuPG 1.4.13

12 Why focus on crypto? Because that’s where the keys are Small code base with fairly regular operation – Narrow semantic gap between the code and the leak

13 Mitigation Strategies System – Avoid/reduce sharing – Insert noise (e.g. noisy timers, random caches) Software – Inject noise (e.g. blinding) – Constant-time programming

14 Constant-time programming Execution time does not depend on any secret data Three rules: – No instructions with data-dependent execution time – No secret-dependent flow control – No secret-dependent memory access

15 Constant-time programming in practice

16 Fix attempt #1

17 Fix attempt #2

18 Fix attempt #3

19 Checking for constant-time Manual testing is not easy and is error-prone.

20 Dynamic Analysis ctgrind – A patch against valgrind memcheck – Dynamically taints secret-dependent data – Warns on secret-dependent branches and memory access Dynamic analysis can miss code paths A. G. Langley, ctgrind https://github.com/agl/ctgrind

21 Source Analysis FlowTracker – Uses information flow analysis to identify non- constant-time-accesses Potential mismatch between code and binary B. Rodrigues, F. M. Q. Pereira, D. F. Aranha, “Sparse Representation of Implicit Flows with Applications to Side-Channel Detection”, CC 2016

22 Binary Analysis CacheAudit – Analyses the amount of leakage from a binary given a cache model The analysis may miss some important cache configurations Not all of the microarchitecture is modeled – Cache banks? Branch Prediction? Cache slices? May accept implementations that are not constant-time G. Doychev, B.Köpf, L.Mauborgne and J.Reineke, “CacheAudit: A Tool for the Static Analysis ofCache Side Channels”, TISSEC 18(1) 2005 G. Doychev and B. Köpf, “Rigorous Analysis of Software Countermeasures against Cache Attacks”, aarXiv 1603.02187, 2016

23 What about instructions with data- dependent time? ISA Data Cache Instruction Cache Pipeline BPU TLB MMU DRAM Interconnect LLC

24 What about instructions with data- dependent time? We rely on partial and misleading documentation What if? – A vendor decide to shortcut additions or multiplications of known zeros? – Writes that do not modify the value do not result in a dirty cache line? We need guarantees on CPU behaviour – See https://blog.cr.yp.to/20140517-insns.html

25 Summary Microarchitectural attacks are a threat to the security of cryptographic implementations Constant time programming is our current best defence But we still need: – Improved proofs of correctness – Better tests for constant-time – Vendor guarantees on the hardware

Download ppt "Thwarting cache-based side- channel attacks Yuval Yarom The University of Adelaide and Data61."

Similar presentations

Linear Obfuscation to Combat Symbolic Execution Zhi Wang 1, Jiang Ming 2, Chunfu Jia 1 and Debin Gao 3 1 Nankai University 2 Pennsylvania State University.

Linear Obfuscation to Combat Symbolic Execution Zhi Wang 1, Jiang Ming 2, Chunfu Jia 1 and Debin Gao 3 1 Nankai University 2 Pennsylvania State University.
Architecture Support for Security Peter Chapman Michael Maass.

Architecture Support for Security Peter Chapman Michael Maass.
Review CPSC 321 Andreas Klappenecker Announcements Tuesday, November 30, midterm exam.

Review CPSC 321 Andreas Klappenecker Announcements Tuesday, November 30, midterm exam.
Full AES key extraction in 65 milliseconds using cache attacks

Full AES key extraction in 65 milliseconds using cache attacks
1  2004 Morgan Kaufmann Publishers Chapter Six. 2  2004 Morgan Kaufmann Publishers Pipelining The laundry analogy.

1  2004 Morgan Kaufmann Publishers Chapter Six. 2  2004 Morgan Kaufmann Publishers Pipelining The laundry analogy.
7/2/2015445_23 1 Pipelining ECE-445 Computer Organization Dr. Ron Hayne Electrical and Computer Engineering.

7/2/ _23 1 Pipelining ECE-445 Computer Organization Dr. Ron Hayne Electrical and Computer Engineering.
DAP Spr.‘98 ©UCB 1 Lecture 11: Memory Hierarchy—Ways to Reduce Misses.

DAP Spr.‘98 ©UCB 1 Lecture 11: Memory Hierarchy—Ways to Reduce Misses.
Address Obfuscation: An Efficient Approach to Combat a Broad Range of Memory Error Exploits Sandeep Bhatkar, Daniel C. DuVarney, and R. Sekar Stony Brook.

Address Obfuscation: An Efficient Approach to Combat a Broad Range of Memory Error Exploits Sandeep Bhatkar, Daniel C. DuVarney, and R. Sekar Stony Brook.
Secure Embedded Processing through Hardware-assisted Run-time Monitoring Zubin Kumar.

Secure Embedded Processing through Hardware-assisted Run-time Monitoring Zubin Kumar.
A Novel Cache Architecture with Enhanced Performance and Security Zhenghong Wang and Ruby B. Lee.

A Novel Cache Architecture with Enhanced Performance and Security Zhenghong Wang and Ruby B. Lee.
IT253: Computer Organization Lecture 4: Instruction Set Architecture Tonga Institute of Higher Education.

IT253: Computer Organization Lecture 4: Instruction Set Architecture Tonga Institute of Higher Education.
How to Build a CPU Cache COMP25212 – Lecture 2. Learning Objectives To understand: –how cache is logically structured –how cache operates CPU reads CPU.

How to Build a CPU Cache COMP25212 – Lecture 2. Learning Objectives To understand: –how cache is logically structured –how cache operates CPU reads CPU.
1 Vulnerabilities on high-end processors André Seznec IRISA/INRIA CAPS project-team.

1 Vulnerabilities on high-end processors André Seznec IRISA/INRIA CAPS project-team.
Computer Architecture Lecture 32 Fasih ur Rehman.

Computer Architecture Lecture 32 Fasih ur Rehman.
Exploiting Cache-Timing in AES: Attacks and Countermeasures Ivo Pooters March 17, 2008 Seminar Information Security Technology.

Exploiting Cache-Timing in AES: Attacks and Countermeasures Ivo Pooters March 17, 2008 Seminar Information Security Technology.
Cache Attacks and Countermeasures:

Cache Attacks and Countermeasures:
Lecture Topics: 11/24 Sharing Pages Demand Paging (and alternative) Page Replacement –optimal algorithm –implementable algorithms.

Lecture Topics: 11/24 Sharing Pages Demand Paging (and alternative) Page Replacement –optimal algorithm –implementable algorithms.
Operating Systems ECE344 Ashvin Goel ECE University of Toronto Demand Paging.

Operating Systems ECE344 Ashvin Goel ECE University of Toronto Demand Paging.
COMP25212 - SYSTEM ARCHITECTURE HOW TO BUILD A CACHE Antoniu Pop COMP25212 – Lecture 2Jan/Feb 2015.

COMP SYSTEM ARCHITECTURE HOW TO BUILD A CACHE Antoniu Pop COMP25212 – Lecture 2Jan/Feb 2015.
Information Leaks Without Memory Disclosures: Remote Side Channel Attacks on Diversified Code Jeff Seibert, Hamed Okhravi, and Eric Söderström Presented.

Information Leaks Without Memory Disclosures: Remote Side Channel Attacks on Diversified Code Jeff Seibert, Hamed Okhravi, and Eric Söderström Presented.

Similar presentations

Ads by Google