Port Contention for Fun and Profit

Alejandro Cabrera Aldaya; Billy B. Brumley; Sohaib ul Hassan; Cesar Pereida García; Nicola Tuveri

doi:10.1109/SP.2019.00066

Port Contention for Fun and Profit

Alejandro Cabrera Aldaya, Billy B. Brumley, Sohaib ul Hassan, Cesar Pereida García, Nicola Tuveri

Tietotekniikka

Tutkimustuotos: Konferenssiartikkeli › Tieteellinen › vertaisarvioitu

136 Sitaatiot (Scopus)

Abstrakti

Simultaneous Multithreading (SMT) architectures are attractive targets for side-channel enabled attackers, with their inherently broader attack surface that exposes more per physical core microarchitecture components than cross-core attacks. In this work, we explore SMT execution engine sharing as a side-channel leakage source. We target ports to stacks of execution units to create a high-resolution timing side-channel due to port contention, inherently stealthy since it does not depend on the memory subsystem like other cache or TLB based attacks. Implementing our channel on Intel Skylake and Kaby Lake architectures featuring Hyper-Threading, we mount an end-to-end attack that recovers a P-384 private key from an OpenSSL-powered TLS server using a small number of repeated TLS handshake attempts. Furthermore, we show that traces targeting shared libraries, static builds, and SGX enclaves are essentially identical, hence our channel has wide target application.

Alkuperäiskieli	Englanti
Otsikko	2019 IEEE Symposium on Security and Privacy (SP) (2019)
Julkaisupaikka	San Francisco, CA, US
Kustantaja	IEEE
Sivut	1037-1054
Sivumäärä	18
ISBN (elektroninen)	978-1-5386-6660-9
DOI - pysyväislinkit	https://doi.org/10.1109/SP.2019.00066
Tila	Julkaistu - 20 toukok. 2019
OKM-julkaisutyyppi	A4 Artikkeli konferenssijulkaisussa
Tapahtuma	IEEE Symposium on Security and Privacy - San Francisco, Yhdysvallat Kesto: 19 toukok. 2019 → 23 toukok. 2019

Julkaisusarja

Nimi
ISSN (painettu)	1081-6011

Conference

Conference	IEEE Symposium on Security and Privacy
Maa/Alue	Yhdysvallat
Kaupunki	San Francisco
Ajanjakso	19/05/19 → 23/05/19

Julkaisufoorumi-taso

Jufo-taso 2

Pääsy asiakirjaan

10.1109/SP.2019.00066

https://ia.cr/2018/1060Lisenssi: CC BY

Muut tiedostot ja linkit

Online Proceedings entry

PortSmash Proof-of-Concept exploit
Aldaya, A. C. (Creator), Brumley, B. (Creator), Sohaib ul Hassan, N. (Creator), Pereida Garcia, C. (Creator) & Tuveri, N. (Creator), Zenodo, 29 tammik. 2019
DOI - pysyväislinkki: 10.5281/zenodo.2552315, https://github.com/bbbrumley/portsmash/releases/tag/v1.0.0
Tietoaineisto: Dataset

COST Action (Ulkoinen yksikkö)
Brumley, B. (Member)
12 jouluk. 2014 → 11 jouluk. 2018
Aktiviteetti: Jäsenyys seurassa tai verkostossa

Siteeraa tätä

@inproceedings{81b95aeb89324e66b344893618db7110,

title = "Port Contention for Fun and Profit",

abstract = "Simultaneous Multithreading (SMT) architectures are attractive targets for side-channel enabled attackers, with their inherently broader attack surface that exposes more per physical core microarchitecture components than cross-core attacks. In this work, we explore SMT execution engine sharing as a side-channel leakage source. We target ports to stacks of execution units to create a high-resolution timing side-channel due to port contention, inherently stealthy since it does not depend on the memory subsystem like other cache or TLB based attacks. Implementing our channel on Intel Skylake and Kaby Lake architectures featuring Hyper-Threading, we mount an end-to-end attack that recovers a P-384 private key from an OpenSSL-powered TLS server using a small number of repeated TLS handshake attempts. Furthermore, we show that traces targeting shared libraries, static builds, and SGX enclaves are essentially identical, hence our channel has wide target application.",

keywords = "public-key-cryptography, applied-cryptography, ECDSA, side-channel-analysis, timing-attacks, microarchitecture-attacks, OpenSSL, CVE-2018-5407",

author = "{Cabrera Aldaya}, Alejandro and Brumley, {Billy B.} and {ul Hassan}, Sohaib and {Pereida Garc{\'i}a}, Cesar and Nicola Tuveri",

note = "jufoid=57507; IEEE Symposium on Security and Privacy ; Conference date: 19-05-2019 Through 23-05-2019",

year = "2019",

month = may,

day = "20",

doi = "10.1109/SP.2019.00066",

language = "English",

publisher = "IEEE",

pages = "1037--1054",

booktitle = "2019 IEEE Symposium on Security and Privacy (SP) (2019)",

address = "United States",

}

TY - GEN

T1 - Port Contention for Fun and Profit

AU - Cabrera Aldaya, Alejandro

AU - Brumley, Billy B.

AU - ul Hassan, Sohaib

AU - Pereida García, Cesar

AU - Tuveri, Nicola

N1 - jufoid=57507

PY - 2019/5/20

Y1 - 2019/5/20

N2 - Simultaneous Multithreading (SMT) architectures are attractive targets for side-channel enabled attackers, with their inherently broader attack surface that exposes more per physical core microarchitecture components than cross-core attacks. In this work, we explore SMT execution engine sharing as a side-channel leakage source. We target ports to stacks of execution units to create a high-resolution timing side-channel due to port contention, inherently stealthy since it does not depend on the memory subsystem like other cache or TLB based attacks. Implementing our channel on Intel Skylake and Kaby Lake architectures featuring Hyper-Threading, we mount an end-to-end attack that recovers a P-384 private key from an OpenSSL-powered TLS server using a small number of repeated TLS handshake attempts. Furthermore, we show that traces targeting shared libraries, static builds, and SGX enclaves are essentially identical, hence our channel has wide target application.

AB - Simultaneous Multithreading (SMT) architectures are attractive targets for side-channel enabled attackers, with their inherently broader attack surface that exposes more per physical core microarchitecture components than cross-core attacks. In this work, we explore SMT execution engine sharing as a side-channel leakage source. We target ports to stacks of execution units to create a high-resolution timing side-channel due to port contention, inherently stealthy since it does not depend on the memory subsystem like other cache or TLB based attacks. Implementing our channel on Intel Skylake and Kaby Lake architectures featuring Hyper-Threading, we mount an end-to-end attack that recovers a P-384 private key from an OpenSSL-powered TLS server using a small number of repeated TLS handshake attempts. Furthermore, we show that traces targeting shared libraries, static builds, and SGX enclaves are essentially identical, hence our channel has wide target application.

KW - public-key-cryptography

KW - applied-cryptography

KW - ECDSA

KW - side-channel-analysis

KW - timing-attacks

KW - microarchitecture-attacks

KW - OpenSSL

KW - CVE-2018-5407

UR - https://www.computer.org/csdl/proceedings/sp/2019/6660/00/666000b037-abs.html

U2 - 10.1109/SP.2019.00066

DO - 10.1109/SP.2019.00066

M3 - Conference contribution

SP - 1037

EP - 1054

BT - 2019 IEEE Symposium on Security and Privacy (SP) (2019)

PB - IEEE

CY - San Francisco, CA, US

T2 - IEEE Symposium on Security and Privacy

Y2 - 19 May 2019 through 23 May 2019

ER -

Port Contention for Fun and Profit

Abstrakti

Julkaisusarja

Conference

Julkaisufoorumi-taso

Pääsy asiakirjaan

Muut tiedostot ja linkit

Sormenjälki

Tietoaineistot

PortSmash Proof-of-Concept exploit

Aktiviteetit

COST Action (Ulkoinen yksikkö)

Siteeraa tätä