a case for protecting computer games with sgx
play

A Case for Protecting Computer Games With SGX Erick Bauman and - PowerPoint PPT Presentation

May 05, 2023 •26 likes •646 views

Background Overview Detailed Design Case Study Conclusion A Case for Protecting Computer Games With SGX Erick Bauman and Zhiqiang Lin System and Software Security (S 3 ) Lab The University of Texas at Dallas December 12 th , 2016 Background

  1. Background Overview Detailed Design Case Study Conclusion A Case for Protecting Computer Games With SGX Erick Bauman and Zhiqiang Lin System and Software Security (S 3 ) Lab The University of Texas at Dallas December 12 th , 2016

  2. Background Overview Detailed Design Case Study Conclusion Outline Background 1 Overview 2 3 Detailed Design Case Study 4 Conclusion 5

  3. Outline Background 1 Overview 2 Detailed Design 3 Case Study 4 Conclusion 5

  4. Background Overview Detailed Design Case Study Conclusion Computer Games Large industry, market value of tens of billions Popular games have millions of players

  5. Background Overview Detailed Design Case Study Conclusion Cheat Prevention Cheating in multiplayer games serious concern for developers Small percentage of players can ruin experience for majority

  6. Background Overview Detailed Design Case Study Conclusion Cheat Prevention A million-dollar industry Difficult to defend against Cannot trust client machines Server-side integrity checks often have high overhead

  7. Background Overview Detailed Design Case Study Conclusion DRM Easy data duplication makes sharing applications trivial Many companies have strong interests in copy protection Piracy often costs billions in lost sales

  8. Background Overview Detailed Design Case Study Conclusion DRM: preventing circumvention of protection is hard Usually requires a trusted component on user’s machine Trusted component is protected by complex obfuscation, often quickly reverse-engineered Secrets are often too easily extracted without a way to truly secure them

  9. Background Overview Detailed Design Case Study Conclusion Background

  10. Background Overview Detailed Design Case Study Conclusion Intel SGX SGX’s secure enclaves provide strong guarantees to protect applications Isolated execution environment Contents unreadable by machine owner Protection enforced by hardware

  11. Background Overview Detailed Design Case Study Conclusion Why Intel SGX Operating Systems Hardware

  12. Background Overview Detailed Design Case Study Conclusion Why Intel SGX Operating Systems Hardware

  13. Background Overview Detailed Design Case Study Conclusion Why Intel SGX Operating Systems Hardware

  14. Background Overview Detailed Design Case Study Conclusion Why Intel SGX Operating Systems Hardware

  15. Background Overview Detailed Design Case Study Conclusion Why Intel SGX Operating Systems Hardware

  16. Background Overview Detailed Design Case Study Conclusion Why Intel SGX Operating Systems Hardware

  17. Background Overview Detailed Design Case Study Conclusion Why Intel SGX Operating Systems Linux Kernel Virtualization Hardware

  18. Background Overview Detailed Design Case Study Conclusion Why Intel SGX Operating Systems Linux Kernel Virtualization Hardware

  19. Background Overview Detailed Design Case Study Conclusion Why Intel SGX Operating Systems Linux Kernel Virtualization Hardware

  20. Background Overview Detailed Design Case Study Conclusion Why Intel SGX Operating Systems Linux Kernel Virtualization Hardware

  21. Background Overview Detailed Design Case Study Conclusion Why Intel SGX Operating Systems Linux Kernel Virtualization Hardware SGX

  22. Background Overview Detailed Design Case Study Conclusion Why Intel SGX Operating Systems Virtualization Hardware SGX

  23. Background Overview Detailed Design Case Study Conclusion Why Intel SGX Operating Systems Virtualization Hardware SGX

  24. Background Overview Detailed Design Case Study Conclusion Key SGX Features of Interest

  25. Outline Background 1 Overview 2 Detailed Design 3 Case Study 4 Conclusion 5

  26. Background Overview Detailed Design Case Study Conclusion Scope and Assumptions Scope: Computer Games Multiplayer games for cheat prevention Single and multiplayer games for DRM

  27. Background Overview Detailed Design Case Study Conclusion Scope and Assumptions Scope: Computer Games Multiplayer games for cheat prevention Single and multiplayer games for DRM Assumptions and Threat Model An attacker may have full control over all software except for trusted enclaves Attacker may access all memory, but not the processor We assume SGX itself is secure

  28. Background Overview Detailed Design Case Study Conclusion Protection Model Integrity: Crucial for Cheat Prevention Data Integrity Code Integrity Prevent disallowed Prevent modifications to data modifications to crucial code, e.g. Protect code that does modify data validation code Provide limited interface Move necessary for modifying data code to enclave

  29. Background Overview Detailed Design Case Study Conclusion Protection Model Confidentiality: Crucial for DRM Code Confidentiality Data Confidentiality More challenging than Any data decrypted inside code integrity enclave remains hidden Enclave code can be If data must be shown to read before enclave is user, it may potentially be instantiated extracted from memory without secure I/O Code must be dynamically decrypted in If code that touches data enclave at runtime can reside entirely inside enclave, data can remain Can result in complete hidden black box for user

  30. Background Overview Detailed Design Case Study Conclusion Protection Model Examples Integrity Confidentiality Data Game State: Media Content: Score, lives, orientation, map sounds, textures inventory items 3D models player position configuration data Code Integrity Checks: Game Logic: Velocity Checks Algorithms Collision Detection Scripts

  31. Background Overview Detailed Design Case Study Conclusion Desired Properties for Protected Content Isolated Enclaves prohibit certain instructions, e.g. system calls Enclave code must be isolated from the application code Data sent across enclave boundary must be copied Presents a challenge to port existing applications to SGX!

  32. Background Overview Detailed Design Case Study Conclusion Desired Properties for Protected Content Isolated Enclaves prohibit certain instructions, e.g. system calls Enclave code must be isolated from the application code Data sent across enclave boundary must be copied Presents a challenge to port existing applications to SGX! Crucial Enclaves have a limited amount of memory available An enclave too large for EPC will hurt performance The larger the code in enclave, the greater the risk of vulnerability or side channel

  33. Outline Background 1 Overview 2 Detailed Design 3 Case Study 4 Conclusion 5

  34. Background Overview Detailed Design Case Study Conclusion Protecting Integrity Key Ideas Multiplayer games must have one or more game servers Server-side integrity checks may be expensive SGX allows a single, one-time check of enclave integrity After attestation, all signed or encrypted messages from the enclave can be trusted without further checks Code and data inside enclave can therefore be trusted

  35. Background Overview Detailed Design Case Study Conclusion Protecting Integrity User Platform Application Authentication Server Enclave Game Server

  36. Background Overview Detailed Design Case Study Conclusion Protecting Integrity User Platform Application Authentication 1 Server Enclave Game Server

  37. Background Overview Detailed Design Case Study Conclusion Protecting Integrity User Platform Application Authentication 1 Server Enclave 2 Game Server

  38. Background Overview Detailed Design Case Study Conclusion Protecting Integrity User Platform Application Authentication 1 Server Enclave 2 3 Game Server

  39. Background Overview Detailed Design Case Study Conclusion Protecting Integrity User Platform Application Authentication 1 Server Enclave 2 3 4 Game Server

  40. Background Overview Detailed Design Case Study Conclusion Protecting Integrity: Recap User Platform Application Authentication 1 Server Enclave 2 3 4 Game Server Detailed Steps Start Remote Attestation 1 Verify Enclave 2 Share Credentials 3 Enclave Communicates with Game Server 4

  41. Background Overview Detailed Design Case Study Conclusion Protecting Confidentiality Key Ideas Content can be protected by encryption All data decrypted inside enclave is secure Key to decrypt content can be withheld until proof of purchase is given Authentication server gives decryption key only after successful attestation and license key is given After initial license check, enclave can seal key to allow resource decryption without contacting server

  42. Background Overview Detailed Design Case Study Conclusion Protecting Confidentiality User Platform Application User Interface Enclave Authentication Encrypted Server Resources File Encrypted Systems Sealed key Resource Files

  43. Background Overview Detailed Design Case Study Conclusion Protecting Confidentiality User Platform Application User Interface 1 Enclave Authentication Encrypted Server Resources File Encrypted Systems Sealed key Resource Files

  44. Background Overview Detailed Design Case Study Conclusion Protecting Confidentiality User Platform Application User Interface 1 Enclave 2 Authentication Encrypted Server Resources File Encrypted Systems Sealed key Resource Files

Recommend

How to Use the 5 Senses Self-Checking Games The games can be used on a computer, tablet, or

How to Use the 5 Senses Self-Checking Games The games can be used on a computer, tablet, or

How to Use the 5 Senses Self-Checking Games The games can be used on a computer, tablet, or smartphone. They can also be shared with students via Google Classroom for distance learning! Heres how to get it set up for your child(ren): 1. Click

317 views • 10 slides
The Olympic Games 10 Medals disciplines: Protecting your Rights, Promoting your Interests 1.

The Olympic Games 10 Medals disciplines: Protecting your Rights, Promoting your Interests 1.

Richard Honeyford Performance Manager RYANI Sailing Performance Pathway and systems 29 th March 2012 The Olympic Games 10 Medals disciplines: Protecting your Rights, Promoting your Interests 1. Windsurfing RS:X Men 4. 2. Windsurfing RS:X Women

336 views • 20 slides
Learning Artificial Intelligence in Large-Scale Video Games A First Case Study with

Learning Artificial Intelligence in Large-Scale Video Games A First Case Study with

Learning Artificial Intelligence in Large-Scale Video Games A First Case Study with Hearthstone: Heroes of WarCraft Master Thesis Submitted for the Degree of MSc in Computer Science & Engineering David Taralla Prof. Damien Ernst

486 views • 25 slides
Multiplayer Computer Games Multiplayer Computer Games knowledge on the basic concepts of

Multiplayer Computer Games Multiplayer Computer Games knowledge on the basic concepts of

Course Syllabus Course Syllabus credits: 4 cp (2 cu) credits: 4 cp (2 cu) prerequisites: prerequisites: Algorithms for Computer Games Algorithms for Computer Games Multiplayer Computer Games Multiplayer Computer

89 views • 4 slides
Aspects of Networking in Introduction Multiplayer Computer Games Internet + wireless making

Aspects of Networking in Introduction Multiplayer Computer Games Internet + wireless making

Aspects of Networking in Introduction Multiplayer Computer Games Internet + wireless making multiplayer computer games (MCGs) more popular Commercial computer games increasingly J. Smed, T. Kaukoranta and H. Hakonen having mutiplayer

191 views • 6 slides
HCI Human-Computer Interfaces is a sub-discipline of CS Study, design, construction and

HCI Human-Computer Interfaces is a sub-discipline of CS Study, design, construction and

Human Computer Interaction (User Interfaces) for Games IMGD 4000 Topics Background HCI Principles HCI and Games 1 What do these things have in common? A Computer Mouse A Touch Screen A program on your Mac or Windows

543 views • 18 slides
Game Theory : Zero-Sum Games, The Minimax Theorem CSC304 - Nisarg Shah 1 Zero-Sum Games

Game Theory : Zero-Sum Games, The Minimax Theorem CSC304 - Nisarg Shah 1 Zero-Sum Games

CSC304 Lecture 6 Game Theory : Zero-Sum Games, The Minimax Theorem CSC304 - Nisarg Shah 1 Zero-Sum Games Special case of games Total reward to all players is constant in every outcome Without loss of generality, sum of rewards = 0

310 views • 27 slides
Protecting forests: the role of the EU and the case for mandatory due diligence Next steps in

Protecting forests: the role of the EU and the case for mandatory due diligence Next steps in

Protecting forests: the role of the EU and the case for mandatory due diligence Next steps in the EU and other jurisdictions on forest-risk commodities 10 October 2019 1 EU context long awaited Communication From 2008 to 2019

482 views • 9 slides
How hard are computer games? Graham Cormode, DIM ACS graham@dimacs.rutgers.edu 1 Introduction

How hard are computer games? Graham Cormode, DIM ACS graham@dimacs.rutgers.edu 1 Introduction

How hard are computer games? Graham Cormode, DIM ACS graham@dimacs.rutgers.edu 1 Introduction Computer scientists have been playing computer games for a long time Think of a game as a sequence of Levels, where each level has some

1.08k views • 45 slides
AI Storytelling in Games Yun-Gyung Cheong aimecca@skku.edu Department of Computer Engineering

AI Storytelling in Games Yun-Gyung Cheong aimecca@skku.edu Department of Computer Engineering

AI Storytelling in Games Yun-Gyung Cheong aimecca@skku.edu Department of Computer Engineering SKKU AI and Games The founder of DeepMind Demis Hassabis himself was a chess player and AI game programmer AI and Games: Deep Blue (1977) AI

903 views • 51 slides
Stretch in Bottleneck Games Costas Busch Rajgopal Kannan Division of Computer Science and Eng.,

Stretch in Bottleneck Games Costas Busch Rajgopal Kannan Division of Computer Science and Eng.,

Stretch in Bottleneck Games Costas Busch Rajgopal Kannan Division of Computer Science and Eng., School of EECS Louisiana State University 1 Outline of Talk Introduction General games Linear Games Conclusions 2 Network Routing Each

778 views • 38 slides
Cooperative Games Mihai Manea MIT Coalitional Games A coalitional (or cooperative) game is a

Cooperative Games Mihai Manea MIT Coalitional Games A coalitional (or cooperative) game is a

Cooperative Games Mihai Manea MIT Coalitional Games A coalitional (or cooperative) game is a model that focuses on the behavior of groups of players. The strategic interaction is not explicitly modeled as in the case of non-cooperative games.

491 views • 33 slides
Pricing Games in Networks va Tardos Cornell University Many Computer Science Games

Pricing Games in Networks va Tardos Cornell University Many Computer Science Games

Pricing Games in Networks va Tardos Cornell University Many Computer Science Games Routing: routers choose path for packets though the Internet Bandwidth Sharing: routers decide how to share limited bandwidth between many processes

368 views • 33 slides
Overview/Questions What are Computer Graphics? How do video games work? How are

Overview/Questions What are Computer Graphics? How do video games work? How are

CS101 Lecture 32 Advanced Topics: Computer Graphics & Computer Vision John Magee 6 August 2013 1 Overview/Questions What are Computer Graphics? How do video games work? How are computer animation movies made? What is

924 views • 16 slides
Protecting Divorced Womens Rights by the Application of Islamic Principle of Mataa : A Case

Protecting Divorced Womens Rights by the Application of Islamic Principle of Mataa : A Case

Protecting Divorced Womens Rights by the Application of Islamic Principle of Mataa : A Case Study of India, Pakistan and Bangladesh Ayesha Shahid Law School University of Hull Quranic verses 236, 240, 241 in Chapter II and verse

276 views • 15 slides
COMP558 Network Games Martin Gairing University of Liverpool, Computer Science Dept 2nd

COMP558 Network Games Martin Gairing University of Liverpool, Computer Science Dept 2nd

Preface COMP558 Network Games Martin Gairing University of Liverpool, Computer Science Dept 2nd Semester 2013/14 COMP558 Network Games 0.1 Load balancing games Topic 2: Load balancing games Notation Computing pure Nash equilibria

218 views • 20 slides
S S S S erious Games erious Games erious Games erious Games + Computer S + Computer S +

S S S S erious Games erious Games erious Games erious Games + Computer S + Computer S +

1 S erious Games + Computer S cience = S erious CS K.Becker & J.R.Parker S S S S erious Games erious Games erious Games erious Games + Computer S + Computer S + Computer S + Computer S cience cience cience cience = S = S

452 views • 14 slides
Introduction Aspects of Networking in Network growth, especially wireless, Multiplayer

Introduction Aspects of Networking in Network growth, especially wireless, Multiplayer

4/15/2014 Introduction Aspects of Networking in Network growth, especially wireless, Multiplayer Computer Games making multiplayer computer games (MCGs) more popular Commercial computer games increasingly J. Smed, T. Kaukoranta and H.

567 views • 9 slides
Theory of Computer Games Tsan-sheng Hsu tshsu@iis.sinica.edu.tw

Theory of Computer Games Tsan-sheng Hsu tshsu@iis.sinica.edu.tw

Theory of Computer Games Tsan-sheng Hsu tshsu@iis.sinica.edu.tw http://www.iis.sinica.edu.tw/~tshsu 1 Goal Course name: Theory of Computer Games Prerequisite: Computer Programming, and Data Structure and Algorithms. Goal: This course

748 views • 45 slides
Theory of Computer Games Tsan-sheng Hsu tshsu@iis.sinica.edu.tw

Theory of Computer Games Tsan-sheng Hsu tshsu@iis.sinica.edu.tw

Theory of Computer Games Tsan-sheng Hsu tshsu@iis.sinica.edu.tw http://www.iis.sinica.edu.tw/~tshsu 1 Goal Course name: Theory of Computer Games Prerequisite: Computer Programming, and Data Structure and Algorithms. Goal: This course

540 views • 40 slides
Scaling Computer Games To Epic Proportions Walker White Cornell University Joint work with Al

Scaling Computer Games To Epic Proportions Walker White Cornell University Joint work with Al

Scaling Computer Games To Epic Proportions Walker White Cornell University Joint work with Al Demers, Johannes Gehrke, Christoph Koch, and Rajamohan Rajagopolan Computer Games $7B in sales in 2005 Outperforming the movie industry

742 views • 60 slides
COMP558 Network Games Martin Gairing University of Liverpool, Computer Science Dept 2nd

COMP558 Network Games Martin Gairing University of Liverpool, Computer Science Dept 2nd

COMP558 Network Games Martin Gairing University of Liverpool, Computer Science Dept 2nd Semester 2013/14 COMP558 Network Games 0.1 Topic 4: Network Formation Games Ch.19 Local Connection Game Model Characterizing Solutions and

512 views • 23 slides
Computational Media Computer Science Research to Enable the Future of Games Expressive

Computational Media Computer Science Research to Enable the Future of Games Expressive

Computational Media Computer Science Research to Enable the Future of Games Expressive Intelligence Studio // Center for Games and Playable Media http://eis.ucsc.edu // http://games.soe.ucsc.edu Noah Wardrip-Fruin UC Santa Cruz Expressive

779 views • 62 slides
CS 886: Game-theoretic methods for computer science Extensive Form Games Kate Larson Computer

CS 886: Game-theoretic methods for computer science Extensive Form Games Kate Larson Computer

Perfect Information Games Imperfect Information Games CS 886: Game-theoretic methods for computer science Extensive Form Games Kate Larson Computer Science University of Waterloo Kate Larson CS 886 Perfect Information Games Imperfect

475 views • 34 slides

More recommend