Last-Level Cache Side-Channel Attacks are Practical

preview_player
Показать описание
Last-Level Cache Side-Channel Attacks are Practical

Yuval Yarom
Presented at the
2015 IEEE Symposium on Security & Privacy
May 18--20, 2015
San Jose, CA

ABSTRACT
We present an effective implementation of the Prime+Probe side-channel attack against the last-level cache. We measure the capacity of the covert channel the attack creates and demonstrate a cross-core, cross-VM attack on multiple versions of GnuPG. Our technique achieves a high attack resolution without relying on weaknesses in the OS or virtual machine monitor or on sharing memory between attacker and victim.
  1. IEEE Symposium on Security and Privacy
Рекомендации по теме
Last-Level Cache Side-Channel 0:19:32

Last-Level Cache Side-Channel Attacks are Practical

Last Level Cache 0:19:33

Last Level Cache Side Channel Attacks are Practical

Randomized Last-Level Caches 0:14:42

Randomized Last-Level Caches Are Still Vulnerable to Cache Side-Channel Attacks! But We Can Fix It

ASPLOS'24 - Lightning 0:01:26

ASPLOS'24 - Lightning Talks - Session 2B -Last Level Cache Side Channel Attacks Are Feasible in...

Randomized Last-Level Caches 0:01:01

Randomized Last-Level Caches Are Still Vulnerable to Cache Side-Channel Attacks! But We Can Fix It

CCS 2016 - 0:27:22

CCS 2016 - A Software Approach to Defeating Side Channels in Last-Level Caches

Last-Level Cache 0:12:23

Last-Level Cache

Live detection and 0:02:18

Live detection and mitigation of a cache side channel attack

USENIX Security '22 0:11:14

USENIX Security '22 - Composable Cachelets: Protecting Enclaves from Cache Side-Channel Attacks

Cache Side channel 0:00:56

Cache Side channel attacks LockExample Short

Cache Side Channel 0:56:15

Cache Side Channel Attack: Exploitability and Countermeasures

Adversarial Prefetch: New 0:19:20

Adversarial Prefetch: New Cross-Core Cache Side Channel Attacks

Inside ICP | 0:22:50

Inside ICP | Using Cache Eviction for Side Channel Attacks

MeshUp: Stateless Cache 0:13:24

MeshUp: Stateless Cache Side-channel Attack on CPU Mesh

USENIX Security '17 0:28:22

USENIX Security '17 - Strong and Efficient Cache Side-Channel Protection...

USENIX Security '22 0:12:00

USENIX Security '22 - Targeted Deanonymization via the Cache Side Channel: Attacks and Defenses

Understanding Cache Side 0:01:15

Understanding Cache Side Channel Attacks Security Risks Unveiled

All in the 0:27:05

All in the timing: How side channel attacks work

Side-Channel Attacks on 0:23:49

Side-Channel Attacks on Everyday Applications

How to Stop 0:02:14

How to Stop Cache Attacks Like Flush+Reload, Flush+Flush and Prime+Probe?

RuhrSec 2016: 'Cache 0:38:39

RuhrSec 2016: 'Cache Side-Channel Attacks and the case of Rowhammer', Daniel Gruss

USENIX Security '18 0:24:27

USENIX Security '18 - Shielding Software From Privileged Side-Channel Attacks

UB CSE 610 1:58:11

UB CSE 610 w13 Cache Side Channel Attack

#HITB2016AMS D2T1 - 0:53:49

#HITB2016AMS D2T1 - Cache Side Channel Attacks: CPU Design As A Security Problem - Anders Fogh

Комментарии
Автор

Thank you for this great presentation! Could you also explain the following statement in page 6 of your paper? "Intel’s hash function is designed to distribute the selected potentially conflicting lines evenly across all the LLC slices [20]. Hence, a buffer of twice the size of the LLC is large enough to construct the desired conflict set."? Was the statement "twice the size of the LLC" based on intuition or any strict calculations?

michaellee
Автор

wonderful work. what if we able to find a hash function which use to map physical memory to cache sets in LLC ?

Microcontrollerslab