attack against constant time
play

ATTACK AGAINST CONSTANT-TIME CRYPTO IMPLEMENTATIONS IN SGX Daniel - PowerPoint PPT Presentation

Dec 22, 2022 •284 likes •784 views

#RSAC SESSION ID: CRYP-T07 MEMJAM: A FALSE DEPENDENCY ATTACK AGAINST CONSTANT-TIME CRYPTO IMPLEMENTATIONS IN SGX Daniel Moghimi Ph.D. Student Worcester Polytechnic Institute @danielmgmi MemJam: A False Dependency Attack against

  1. #RSAC SESSION ID: CRYP-T07 MEMJAM: A FALSE DEPENDENCY ATTACK AGAINST CONSTANT-TIME CRYPTO IMPLEMENTATIONS IN SGX Daniel Moghimi Ph.D. Student Worcester Polytechnic Institute @danielmgmi

  2. MemJam: A False Dependency Attack against Constant-Time Crypto Implementations in SGX Ahmad “Daniel” Moghimi Thomas Eisenbarth Berk Sunar April 17, 2018 CT-RSA 2018 - San Francisco, CA

  3. Data Dependency • Data dependency: Instruction  Data of a preceding instruction add %ebx, %eax 1 sub %eax, %edx 2 xor %ecx, %ecx 3 add %eax, %edi 4 sub %ecx, %edi 5 3

  4. Data Dependency – Pipelined Execution • Data dependency: Instruction  Data of a preceding instruction add %ebx, %eax 1 sub %eax, %edx 2 xor %ecx, %ecx 3 add %eax, %edi 4 sub %ecx, %edi 5 Instruction Fetch IF Instruction Decode ID Execute EX Write Back WB 4

  5. Data Dependency – Pipelined Execution • Data dependency: Instruction  Data of a preceding instruction add %ebx, %eax 1 IF sub %eax, %edx 2 xor %ecx, %ecx 3 add %eax, %edi 4 sub %ecx, %edi 5 Instruction Fetch IF Instruction Decode ID Execute EX Write Back WB 5

  6. Data Dependency – Pipelined Execution • Data dependency: Instruction  Data of a preceding instruction add %ebx, %eax 1 IF ID sub %eax, %edx 2 IF xor %ecx, %ecx 3 add %eax, %edi 4 sub %ecx, %edi 5 Instruction Fetch IF Instruction Decode ID Execute EX Write Back WB 6

  7. Data Dependency – Pipelined Execution • Data dependency: Instruction  Data of a preceding instruction add %ebx, %eax 1 IF ID EX sub %eax, %edx 2 IF ID xor %ecx, %ecx IF 3 add %eax, %edi 4 sub %ecx, %edi 5 Instruction Fetch IF Instruction Decode ID Execute EX Write Back WB 7

  8. Data Dependency – Pipelined Execution • Data dependency: Instruction  Data of a preceding instruction add %ebx, %eax 1 IF ID EX WB sub %eax, %edx 2 IF ID EX xor %ecx, %ecx IF ID 3 IF add %eax, %edi 4 sub %ecx, %edi 5 Instruction Fetch IF Instruction Decode ID Execute EX Write Back WB 8

  9. Data Dependency – Pipelined Execution • Data dependency: Instruction  Data of a preceding instruction add %ebx, %eax 1 IF ID EX WB sub %eax, %edx 2 IF ID EX EX WB xor %ecx, %ecx IF ID 3 EX WB EX WB IF ID add %eax, %edi 4 EX WB IF ID sub %ecx, %edi 5 Instruction Fetch IF Instruction Decode ID Execute EX Write Back WB 9

  10. Data False Dependency • Pipeline stalls without true dependency. • Reasons: • Register Reuse • Limited Address Space add %ebx, %eax 1 xor %ecx, %ecx 2 sub %eax, %edx 3 mov $100, %edx 4 FD sub %edx, %ecx 5 10

  11. Data False Dependency – Register Renaming • Pipeline stalls without true dependency. • Reasons: • Register Reuse • Limited Address Space add %ebx, %eax add %ebx, %eax 1 1 xor %ecx, %ecx 2 xor %ecx, %ecx 2 Register sub %eax, %edx sub %eax, %edx 3 3 Renaming mov $100, %edx 4 mov $100, %bat 4 FD sub %edx, %ecx 5 sub %bat, %ecx 5 11

  12. Memory ry False Dependency – 4K Aliasing • Memory loads/stores are executed out of order and speculatively. • The dependency is verified after the execution! mov %eax, (%ebx) Execute Execute Store Load Store mov ( %ecx), %edx Load Dependent? Yes • 4K Aliasing: Addresses that are 4K apart are assumed dependent. • Re-execute the load and corresponding instructions due to false dependency. • Virtual-to-physical address translation  Memory disambiguation 12

  13. 4K Aliasing – Hyperthreading Core HT – Thread A HT – Thread B Load 0xFECD1 13

  14. 4K Aliasing – Hyperthreading Core HT – Thread A HT – Thread B Load 0xFECD1 Load 0xFECD2 Load 0xFECD3 Load 0xFECD4 Load 0xFECD5 Load 0xFECD6 Load 0xFECD7 Load 0xFECD8 14

  15. 4K Aliasing – Hyperthreading Core HT – Thread A HT – Thread B Load 0xFECD1 Load 0xFECD2 Execute & Time Load 0xFECD3 Load 0xFECD4 Load 0xFECD5 Load 0xFECD6 Load 0xFECD7 Load 0xFECD8 15

  16. 4K Aliasing – Hyperthreading Core HT – Thread A HT – Thread B Store 0x12ABCDEF Load 0xFECD1 Store 0x12ABCDEF Load 0xFECD2 Execute & Time Store 0x12ABCDEF Load 0xFECD3 Store 0x12ABCDEF Load 0xFECD4 Store 0x12ABCDEF Load 0xFECD5 Store 0x12ABCDEF Load 0xFECD6 Store 0x12ABCDEF Load 0xFECD7 Store 0x12ABCDEF Load 0xFECD8 Store 0x12ABCDEF Store 0x12ABCDEF 16

  17. 4K Aliasing – Hyperthreading Core HT – Thread A HT – Thread B Store 0x12ABC200 Load 0xFECD1 Store 0x12ABC200 Load 0xFECD2 Execute & Time Store 0x12ABC200 Load 0xFECD3 Store 0x12ABC200 Load 0xFECD4 Store 0x12ABC200 Load 0xFECD5 Store 0x12ABC200 Load 0xFECD6 Store 0x12ABC200 Load 0xFECD7 Store 0x12ABC200 Load 0xFECD8 Store 0x12ABC200 Store 0x12ABC200 17

  18. 4K Aliasing – Hyperthreading Core HT – Thread A HT – Thread B Store 0x12ABC Load 0xFECD1 Store 0x12ABC Load 0xFECD2 Execute & Time Store 0x12ABC Load 0xFECD3 Store 0x12ABC Load 0xFECD4 Store 0x12ABC Load 0xFECD5 Store 0x12ABC Load 0xFECD6 Store 0x12ABC Load 0xFECD7 Store 0x12ABC Load 0xFECD8 Store 0x12ABC Store 0x12ABC 18

  19. MemJam – In Intra Cache Lin ine Resolution Least 12 bits (Virtual Address = Physical Address) Rest of the bits (Virtual != Physical) 19

  20. MemJam – In Intra Cache Lin ine Resolution Least 12 bits (Virtual Address = Physical Address) Rest of the bits (Virtual != Physical) L1 Cache Attacks 20

  21. MemJam – In Intra Cache Lin ine Resolution Least 12 bits (Virtual Address = Physical Address) Rest of the bits (Virtual != Physical) L1 Cache Attacks L2/LLC Cache Attacks 21

  22. MemJam – In Intra Cache Lin ine Resolution Least 12 bits (Virtual Address = Physical Address) Rest of the bits (Virtual != Physical) L1 Cache Attacks L2/LLC Cache Attacks 2005 – 2006 – Percival – 2015 – Irazoqui Osvik – Cache – S $ A Cache 2014 – Yarom – Missing for Flush+Reload attacks Fun 22

  23. MemJam – In Intra Cache Lin ine Resolution Least 12 bits (Virtual Address = Physical Address) Rest of the bits (Virtual != Physical) L1 Cache Attacks L2/LLC Cache Attacks • Intra-cache line Leakage (4-byte granularity) • Higher time correlates  Memory accesses with the same bit 3 to 12 • 4 bits of intra-cache level leakage 23

  24. MemJam Attack CPU Core Core HT HT HT HT Encryption Service 24

  25. MemJam Attack CPU Core Core HT HT HT HT Encryption Service 25

  26. MemJam Attack CPU Core Core HT HT HT HT Encryption Service 26

  27. MemJam Attack CPU Core Core HT HT HT HT Execute load compute load load compute load compute load load Encryption Service 27

  28. MemJam Attack CPU Core Core HT HT HT HT Execute load compute load load compute load compute load load Encryption Service 28

  29. MemJam Attack CPU Core Core HT HT HT HT Execute load compute Execute Again load load compute load compute load load Encryption Service 29

  30. MemJam Attack CPU Core Core HT HT HT HT Execute load compute Execute Again load load compute load compute load load Encryption Service 30

  31. MemJam Attack CPU Core Core HT HT HT HT Execute load compute Execute Again load load compute load Higher time if compute there are more load number of 4K load Encryption conflicts Service 31

  32. Constant tim ime AES – Safe2Encry rypt_RIJ128 • Scatter-gather implementation of AES • 256 S-Box – 4 Cache Line • Cache independent access pattern • Implemented and distributed as part of Intel products • Intel SGX Linux Software Development Kit (SDK) • Intel IPP Cryptography Library 64 Bytes 4 Cache Lines A LINE 2 B LINE 2 C LINE 2 D LINE 2 S-Box Lookup 32

  33. Constant tim ime AES – Safe2Encry rypt_RIJ128 • Scatter-gather implementation of AES • 256 S-Box – 4 Cache Line • Cache independent access pattern • Implemented and distributed as part of Intel products • Intel SGX Linux Software Development Kit (SDK) • Intel IPP Cryptography Library 64 Bytes 4 Cache Lines A LINE 2 B LINE 2 C LINE 2 D LINE 2 A B C D S-Box Lookup Local Buffer 33

  34. Constant tim ime AES – Safe2Encry rypt_RIJ128 • Scatter-gather implementation of AES • 256 S-Box – 4 Cache Line • Cache independent access pattern • Implemented and distributed as part of Intel products • Intel SGX Linux Software Development Kit (SDK) • Intel IPP Cryptography Library 64 Bytes 4 Cache Lines A LINE 2 B LINE 2 C LINE 2 D LINE 2 A B C D B S-Box Lookup Local Buffer 34

  35. MemJam Attack on AES 64 Bytes LINE 2 LINE 2 4 Cache Lines LINE 2 LINE 2 35

  36. MemJam Attack on AES 64 Bytes LINE 2 LINE 2 4 Cache Lines LINE 2 LINE 2 36

  37. MemJam Attack on AES 64 Bytes LINE 2 LINE 2 4 Cache Lines LINE 2 LINE 2 37

  38. MemJam Attack on AES 64 Bytes LINE 2 4 Cache Lines 38

  39. MemJam Attack on AES 64 Bytes LINE 2 4 Cache Lines 39

  40. AES Key Recovery ry 40

  41. AES Key Recovery ry 41

  42. SM4 Blo lock cip ipher – cpSMS4_Cipher • Standard Cipher support by Intel • Chinese National Standard for Wireless LAN WAPI • S-Box + Unbalanced Feistel Structure • Protected by Cache State Normalization • Recursive attack  Full key recovery with 40K observations 42

  43. MemJaming In Intel SGX Secure Enclave CPU Core Core HT HT HT HT Execute load Intel SGX compute Execute Again Enclave load load compute load Higher time if compute there are more load number of 4K load Encryption conflicts Service 43

Recommend

One&Done: A Single-Decryption EM-Based Attack on OpenSSLs Constant-Time Blinded RSA Monjur

One&Done: A Single-Decryption EM-Based Attack on OpenSSLs Constant-Time Blinded RSA Monjur

One&Done: A Single-Decryption EM-Based Attack on OpenSSLs Constant-Time Blinded RSA Monjur Alam, Haider Adnan Khan, Moumita Dey, Nishith Sinha, Robert Callan, Alenka Zajic, and Milos Prvulovic 1 1 v Motivation Public key crypto is

363 views • 21 slides
+ - Can be constant or time varying +/- indicates polarity Current Source Can be

+ - Can be constant or time varying +/- indicates polarity Current Source Can be

Review of Circuit Analysis Common Symbols Independent Sources Battery Constant voltage DC voltage source Voltage Source + - Can be constant or time varying +/- indicates polarity Current Source Can be constant or time

388 views • 14 slides
1 of 30 Once Upon a Time... Constant diffusion: J = - D u u

1 of 30 Once Upon a Time... Constant diffusion: J = - D u u

1 of 30 Once Upon a Time... Constant diffusion: J = - D u u t = - J = D D u But is this truly realistic??? 2 of 30 Problems With Constant Diffusion Any initial

458 views • 32 slides
Generating k -independent variables in constant time Tobias Christiani, Rasmus Pagh IT

Generating k -independent variables in constant time Tobias Christiani, Rasmus Pagh IT

Generating k -independent variables in constant time Tobias Christiani, Rasmus Pagh IT University of Copenhagen Generating k -independent variables in constant time 1 Introduction Random seed 11010100 01101101 Generator Pseudorandom output

1k views • 85 slides
Constant-time programming in FaCT Sunjay Cauligi , UC San Diego Fraser Brown, Ranjit Jhala, Brian

Constant-time programming in FaCT Sunjay Cauligi , UC San Diego Fraser Brown, Ranjit Jhala, Brian

Constant-time programming in FaCT Sunjay Cauligi , UC San Diego Fraser Brown, Ranjit Jhala, Brian Johannesmeyer, John Renner, Gary Soeller, Deian Stefan, Riad Wahby Timing side channels Crypto Constant-time programming with FaCT Strange Loop

1.63k views • 114 slides
Constant-time programming in FaCT What is FaCT? Domain specific language for writing

Constant-time programming in FaCT What is FaCT? Domain specific language for writing

Constant-time programming in FaCT What is FaCT? Domain specific language for writing constant-time code Whats the difference between a DSL and a general- purpose language? How do you use FaCT? Write your program in C Write your

420 views • 38 slides
Constant-time This code uses 256 squarings, square-and-multiply plus 1 extra multiplication for

Constant-time This code uses 256 squarings, square-and-multiply plus 1 extra multiplication for

1 2 Constant-time This code uses 256 squarings, square-and-multiply plus 1 extra multiplication for each bit set in e . D. J. Bernstein Problem when e is secret: time University of Illinois at Chicago; leaks number of bits set in e . Ruhr

381 views • 36 slides
Graph Transformation in Constant Time Mike Dodds miked@cs.york.ac.uk University of York Graph

Graph Transformation in Constant Time Mike Dodds miked@cs.york.ac.uk University of York Graph

Graph Transformation in Constant Time Mike Dodds miked@cs.york.ac.uk University of York Graph Transformation in Constant Time p.1/16 Sales Pitch Graph transformation is hard : polynomial or NP-complete depending on your point of view.

296 views • 28 slides
Optimal Constant-Time Approximation Algorithms and (Unconditional) Inapproximability Results for

Optimal Constant-Time Approximation Algorithms and (Unconditional) Inapproximability Results for

Optimal Constant-Time Approximation Algorithms and (Unconditional) Inapproximability Results for Every Bounded-Degree CSP Yuichi Yoshida Kyoto Univ. & Preferred Infrastructure 2011 5 26 Polynomial-Time Approximation

633 views • 37 slides
Attack on Traffic Systems These attack examples have happened in the past. We will take an

Attack on Traffic Systems These attack examples have happened in the past. We will take an

From start to finish how a cyber attack would be performed on traffic system, we will go over first day >> exploitation of the device >> the real-world aftermath. Mission Secure, Inc. Attack on Traffic Systems These attack examples

556 views • 18 slides
s c a l e Marc Witteman Croatian Summer school 2017 Attack exploitation space: time vs distance

s c a l e Marc Witteman Croatian Summer school 2017 Attack exploitation space: time vs distance

When Hardware Attacks s c a l e Marc Witteman Croatian Summer school 2017 Attack exploitation space: time vs distance Remote key brute software protocol force relay attack side Fast Slow mitm channel Hardware attacks require:

688 views • 25 slides
Space-time models with dust and cosmological constant, that allow integrating the

Space-time models with dust and cosmological constant, that allow integrating the

Space-time models with dust and cosmological constant, that allow integrating the Hamilton-Jacobi test particle equation by separation of variables method. Konstantin E. Osetrin Tomsk State Pedagogical University Space-times models with dust

388 views • 27 slides
Time-delay cosmography: Tensions between the Hubble constant inferred from the early and late

Time-delay cosmography: Tensions between the Hubble constant inferred from the early and late

Time-delay cosmography: Tensions between the Hubble constant inferred from the early and late Universe Lon Koopmans (Kapteyn Astronomical Institute) Based on work by the H0LICOW, COSMOGRAIL, STRIDES and SHARP collaborations 1 Many slides

1.11k views • 85 slides
Fast Constant-Time GCD Computation and Modular Inversion Daniel J. Bernstein 1,2 Bo-Yin Yang 3 1

Fast Constant-Time GCD Computation and Modular Inversion Daniel J. Bernstein 1,2 Bo-Yin Yang 3 1

Fast Constant-Time GCD Computation and Modular Inversion Daniel J. Bernstein 1,2 Bo-Yin Yang 3 1 University of Illinois at Chicago 2 Ruhr Universt at Bochum 3 Academia Sinica Monday, August 26, 2019 Summary: Fast, Safe GCD and Inversions

431 views • 23 slides
A measurement of the scintillation decay time constant in liquid xenon with the XMASS-I detector

A measurement of the scintillation decay time constant in liquid xenon with the XMASS-I detector

A measurement of the scintillation decay time constant in liquid xenon with the XMASS-I detector K. Ichimura Kamioka observatory, ICRR, the University of Tokyo Kavli IPMU for the XMASS collaboration TAUP2019, Toyama Japan 1 Motivation :

466 views • 22 slides
Fixslicing: A New GIFT Representation Fast Constant-Time Implementations of GIFT and GIFT-COFB on

Fixslicing: A New GIFT Representation Fast Constant-Time Implementations of GIFT and GIFT-COFB on

Fixslicing: A New GIFT Representation Fast Constant-Time Implementations of GIFT and GIFT-COFB on ARM Cortex-M Alexandre Adomnicai 1,2 Zakaria Najm 1,2,3 Thomas Peyrin 1,2 1 Nanyang Technological University, Singapore 2 Temasek Laboratories,

457 views • 34 slides
Assentication: User De-Authentication and Lunch Time Attack Mitigation with Seated Posture

Assentication: User De-Authentication and Lunch Time Attack Mitigation with Seated Posture

5/25/2019 Assentication: User De-Authentication and Lunch Time Attack Mitigation with Seated Posture Biometric University of California, Irvine Tyler Kaczmarek , Ercan Ozturk, Gene Tsudik { tkaczmar , ercano, gtsudik}@uci.edu 1 Overview

588 views • 15 slides
Last time: Basic concepts Double spend attack Today: Block withholding attacks

Last time: Basic concepts Double spend attack Today: Block withholding attacks

T RUTH J USTICE A LGOS Cryptocurrencies II: Selfish Mining Teachers: Ariel Procaccia and Alex Psomas (this time) Last time: Basic concepts Double spend attack Today: Block withholding attacks (Selfish mining) Get a taste of

956 views • 41 slides
A practically constant-time MPI Broadcast Algorithm for large-scale InfiniBand Clusters with

A practically constant-time MPI Broadcast Algorithm for large-scale InfiniBand Clusters with

A practically constant-time MPI Broadcast Algorithm for large-scale InfiniBand Clusters with Multicast T. Hoefler, C. Siebert, W. Rehm Open Systems Lab Computer Architecture Group Indiana University Chemnitz University of Technology

744 views • 20 slides
Full-fl Full-edged Real-Time Indexing for Constant Size Alphabets Gregory Kucherov CNRS/LIGM

Full-fl Full-edged Real-Time Indexing for Constant Size Alphabets Gregory Kucherov CNRS/LIGM

Full-fl Full-edged Real-Time Indexing for Constant Size Alphabets Gregory Kucherov CNRS/LIGM Marne-la-Vall ee, France Yakov Nekrich University of Kansas, USA ICALP13, July 11, 2013 Context and history Suffix Tree Supporting real-time

604 views • 33 slides
CSE 610 Special Topics: System Security - Attack and Defense for Binaries Instructor: Dr. Ziming

CSE 610 Special Topics: System Security - Attack and Defense for Binaries Instructor: Dr. Ziming

CSE 610 Special Topics: System Security - Attack and Defense for Binaries Instructor: Dr. Ziming Zhao Location: Frnczk 408, North campus Time: Monday, 5:20 PM - 8:10 PM Todays Agenda 1. Cache side channel attack Speed Gap Between CPU and

535 views • 42 slides
The Only Constant is Change: Incorporating Time-Varying Bandwidth Reservations in Data Centers

The Only Constant is Change: Incorporating Time-Varying Bandwidth Reservations in Data Centers

The Only Constant is Change: Incorporating Time-Varying Bandwidth Reservations in Data Centers Di Xie, Ning Ding, Y. Charlie Hu, Ramana Kompella 1 Cloud Computing is Hot Private Cluster 2 Key Factors for Cloud Viability Cost

1.07k views • 56 slides
McBits: Objectives fast constant-time Set new speed records code-based cryptography for

McBits: Objectives fast constant-time Set new speed records code-based cryptography for

McBits: Objectives fast constant-time Set new speed records code-based cryptography for public-key cryptography. D. J. Bernstein University of Illinois at Chicago & Technische Universiteit Eindhoven Joint work with: Tung Chou

746 views • 73 slides
McBits: Objectives fast constant-time Set new speed records code-based cryptography for

McBits: Objectives fast constant-time Set new speed records code-based cryptography for

McBits: Objectives fast constant-time Set new speed records code-based cryptography for public-key cryptography. (to appear at CHES 2013) D. J. Bernstein University of Illinois at Chicago & Technische Universiteit Eindhoven Joint work

969 views • 94 slides

More recommend