cache access pattern attack on disaligned aes t tables
play

Cache-Access Pattern Attack on Disaligned AES T-Tables Raphael - PowerPoint PPT Presentation

Dec 25, 2022 •206 likes •433 views

Institute for Applied Information Processing and Communications (IAIK) Cache-Access Pattern Attack on Disaligned AES T-Tables Raphael Spreitzer and Thomas Plos Institute for Applied Information Processing and Communications (IAIK) Graz

  1. Institute for Applied Information Processing and Communications (IAIK) Cache-Access Pattern Attack on Disaligned AES T-Tables Raphael Spreitzer and Thomas Plos Institute for Applied Information Processing and Communications (IAIK) Graz University of Technology Inffeldgasse 16a, A-8010 Graz, Austria { raphael.spreitzer, thomas.plos } @iaik.tugraz.at Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 1

  2. Institute for Applied Information Processing and Communications (IAIK) Outline Introduction and motivation Preliminaries CPU caches Advanced Encryption Standard Aligned and disaligned T-tables Attack concept of the cache-access pattern attack Practical results on a Google Nexus S Conclusion Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 2

  3. Institute for Applied Information Processing and Communications (IAIK) Introduction Motivation Wide-spread usage of mobile devices Protection of private information Implementation attacks CPU caches are a potential side channel [Koc96, KSWH00] Cache attacks on mobile devices? Only testbeds so far, e.g., [BEPW10, GK11, WHS12] Our contribution Attack an Android-based Google Nexus S Attack is implemented purely in software Focus on disaligned AES T-tables Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 3

  4. Institute for Applied Information Processing and Communications (IAIK) CPU Caches Memory hierarchy Problems Memory accesses are not performed in constant time Cache is a shared resource − → manipulation Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 4

  5. Institute for Applied Information Processing and Communications (IAIK) Advanced Encryption Standard Block cipher, 128-bit state, 4 round transformations Software implementations employ T-tables Problems Key-dependent look-up indices T [ p i ⊕ k i ] T-table elements might be within CPU cache Main memory Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 5

  6. Institute for Applied Information Processing and Communications (IAIK) Aligned AES T-Tables Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 6

  7. Institute for Applied Information Processing and Communications (IAIK) Disaligned AES T-Tables Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 7

  8. Institute for Applied Information Processing and Communications (IAIK) ARM Cortex-A8 Processor Designed for mobile devices Also employs CPU caches Set-associative cache Random-replacement policy Cache-line size of 64 bytes Performance monitor registers ( Cycle Count Register ) Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 8

  9. Institute for Applied Information Processing and Communications (IAIK) Cache-Access Pattern Attack (1/3) Based on the work of Tromer et al. [TOS10] Online phase: step 1 Offline phases: steps 2-4 1) Gather cache-access patterns Assume knowledge of where T-table T resides Encrypt a plaintext p Evict a specific cache set s Measure the encryption time of p again Collect timing information for each key byte k i Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 9

  10. Institute for Applied Information Processing and Communications (IAIK) Cache-Access Pattern Attack (2/3) s i = p i ⊕ k i − → k i = s i ⊕ p i Plot for a specific key byte (key= 0x0C ) (a) Aligned T-table. (b) Disaligned T-table. Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 10

  11. Institute for Applied Information Processing and Communications (IAIK) Cache-Access Pattern Attack (2/3) s i = p i ⊕ k i − → k i = s i ⊕ p i Plot for a specific key byte (key= 0x0C ) (a) Aligned T-table. (b) Disaligned T-table. Disaligned T-tables leak more information Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 11

  12. Institute for Applied Information Processing and Communications (IAIK) Cache-Access Pattern Attack (3/3) 2) Compute possible cache-access patterns For all possible key bytes and disalignments, for a specific cache set Pattern − → possible key candidates 3) Pattern matching and extraction of key candidates Query with cache-access pattern 4) Brute-force key search Sometimes not even necessary Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 12

  13. Institute for Applied Information Processing and Communications (IAIK) Practical Results(1/3) Google Nexus S 2 21 AES encryptions (step 1) 40–80 seconds Steps 1-3 (excluding the final remaining key search) Might be reduced even further (few seconds) Some disalignments reveal the whole key immediately Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 13

  14. Institute for Applied Information Processing and Communications (IAIK) Practical Results (2/3) Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 14

  15. Institute for Applied Information Processing and Communications (IAIK) Practical Results (3/3) Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 15

  16. Institute for Applied Information Processing and Communications (IAIK) Conclusion Access-driven attack on disaligned AES T-tables First access-driven attack on ARM Cortex-A series Improvement: correct key byte is always within the largest block Attack implemented purely in software Cache attacks pose a serious threat Aligned T-tables reduce the amount of leaked key bits Declare T-tables as attribute (aligned(64)) Only 64 key bits can be recovered immediately Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 16

  17. Institute for Applied Information Processing and Communications (IAIK) Cache-Access Pattern Attack on Disaligned AES T-Tables Raphael Spreitzer and Thomas Plos Institute for Applied Information Processing and Communications (IAIK) Graz University of Technology Inffeldgasse 16a, A-8010 Graz, Austria { raphael.spreitzer, thomas.plos } @iaik.tugraz.at Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 17

  18. Institute for Applied Information Processing and Communications (IAIK) Bibliography [BEPW10] Andrey Bogdanov, Thomas Eisenbarth, Christof Paar, and Malte Wienecke. Differential Cache-Collision Timing Attacks on AES with Applications to Embedded CPUs. In Topics in Cryptology - CT-RSA 2010 , volume 5985 of LNCS , pages 235–251. Springer Berlin / Heidelberg, 2010. [GK11] Jean-Franc ¸ois Gallais and Ilya Kizhvatov. Error-Tolerance in Trace-Driven Cache Collision Attacks. In International Workshop on Constructive Side-Channel Analysis and Secure Design , COSADE 2011, pages 222–232, 2011. [Koc96] Paul C. Kocher. Timing Attacks on Implementations of Diffie-Hellman, RSA, DSS, and Other Systems. In Advances in Cryptology - CRYPTO 1996 , volume 1109 of LNCS , pages 104–113. Springer Berlin / Heidelberg, 1996. [KSWH00] John Kelsey, Bruce Schneier, David Wagner, and Chris Hall. Side Channel Cryptanalysis of Product Ciphers. Journal of Computer Security , 8(2–3):141–158, 2000. [TOS10] Eran Tromer, Dag Arne Osvik, and Adi Shamir. Efficient Cache Attacks on AES, and Countermeasures. Journal of Cryptology , 23(1):37–71, 2010. [WHS12] Michael Weiß, Benedikt Heinz, and Frederic Stumpf. A Cache Timing Attack on AES in Virtualization Environments. In Financial Cryptography and Data Security , volume 7397 of LNCS , pages 314–328. Springer Berlin Heidelberg, 2012. Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 18

  19. Institute for Applied Information Processing and Communications (IAIK) Backup Slide 1 Correct key byte is always within the largest block of the first set Let α be the number of look-up indices s i within the first cache set Assume the key k i = 0x0C 16 = 1100 2 ⌈ log 2 α ⌉ s i p i = s i ⊕ k i α 1 0 0000 0 1100 12 2 1 1 13 0001 1101 3 2 2 14 0010 1110 4 2 3 15 0011 1111 5 3 4 8 0100 1000 6 3 5 9 0101 1001 7 3 6 10 0110 1010 p i = s i ⊕ k i Upper 8 − ⌈ log 2 α ⌉ bits flip to the same state Lower ⌊ log 2 α ⌋ bits form the largest group of 2 ⌊ log 2 α ⌋ indices, with 0 always being part of this group Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 19

  20. Institute for Applied Information Processing and Communications (IAIK) Backup Slide 2 Correct key byte is within the largest block of the last set Let α be the number of look-up indices s i within the last cache set Assume the key k i = 0x0C 16 = 00001100 2 ⌈ log 2 α ⌉ s i p i = s i ⊕ k i k i = p i ⊕ 0xFF α 1 0 255 243 12 11111111 11110011 2 1 11111110 254 11110010 242 13 3 2 253 241 14 11111101 11110001 4 2 11111100 252 11110000 240 15 5 3 11111011 251 11110111 247 8 6 3 250 246 9 11111010 11110110 7 3 11111001 249 11110101 245 10 p i = s i ⊕ k i Upper 8 − ⌈ log 2 α ⌉ bits flip to the same state Lower ⌊ log 2 α ⌋ bits form the largest group of 2 ⌊ log 2 α ⌋ indices, with 0 always being part of this group XOR 0xFF since we attack the last look-up index Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 20

  21. Institute for Applied Information Processing and Communications (IAIK) Backup Slide 3 How to determine the location of the T-tables Assume knowledge of the number of cache sets Allocate a data structure (3 times the cache size) Encrypt random plaintext p Evict a specific cache set Measure encryption time of the same plaintext p Search for the longest sequence of cache sets where the performance decreases Raphael Spreitzer Paris, 2013 Cache-Access Pattern Attack 21

Recommend

DNS Cache Poisoning Attack Introduction The purpose of this presentation is to dissect the

DNS Cache Poisoning Attack Introduction The purpose of this presentation is to dissect the

Anatomy of a DNS Cache Poisoning Attack Introduction The purpose of this presentation is to dissect the Domain Name System (DNS) Cache Poisoning Cyber attack. We will cover: - Real-world examples of DNS cache poisoning - A defjnition of

607 views • 58 slides
NetCAT : Practical Cache Attacks from the Network Michael Kurth , Ben Gras, Dennis Andriesse,

NetCAT : Practical Cache Attacks from the Network Michael Kurth , Ben Gras, Dennis Andriesse,

NetCAT : Practical Cache Attacks from the Network Michael Kurth , Ben Gras, Dennis Andriesse, Cristiano Giuffrida, Herbert Bos, Kaveh Razavi Cache Attack from the Network Client Server Remote Cache Attack SSH 2 Network Cache Attack 3

794 views • 32 slides
Cache Performance Associativity Replacement Samira Khan Cache Performance March 28,

Cache Performance Associativity Replacement Samira Khan Cache Performance March 28,

3/28/17 Agenda Review from last lecture Cache access Cache Performance Associativity Replacement Samira Khan Cache Performance March 28, 2017 Direct-Mapped Cache: Placement and Access Cache Abstraction and Metrics 00 | 000

518 views • 16 slides
lecture 17 cache 1 - page table cache (TLB) Mon. March 14, 2016 some key ideas from last

lecture 17 cache 1 - page table cache (TLB) Mon. March 14, 2016 some key ideas from last

lecture 17 cache 1 - page table cache (TLB) Mon. March 14, 2016 some key ideas from last lecture page tables are used to translate a virtual (program) addess to a physical address. Page tables are in the kernel part of memory 31

466 views • 14 slides
Lecture 20: Cache Hierarchies, Virtual Memory Todays topics: Cache hierarchies

Lecture 20: Cache Hierarchies, Virtual Memory Todays topics: Cache hierarchies

Lecture 20: Cache Hierarchies, Virtual Memory Todays topics: Cache hierarchies Virtual memory Reminder: Assignment 8 will be posted soon (due Tue 11/21) 1 Example Access Pattern Byte address Assume that addresses are 8

456 views • 17 slides
DNS cache poisoning CZ.NIC Ondrej Filip / ondrej.filip@nic.cz Study by Emanuel Petr CZ.NIC

DNS cache poisoning CZ.NIC Ondrej Filip / ondrej.filip@nic.cz Study by Emanuel Petr CZ.NIC

DNS cache poisoning CZ.NIC Ondrej Filip / ondrej.filip@nic.cz Study by Emanuel Petr CZ.NIC labs 8 Mar 2010 ccNSO techday, Nairobi 1 Agenda DNS, DNS resolver Cache Poisoning theory Kaminsky attack Attack theory Attack

503 views • 28 slides
DNS Cache Poisoning Attack Relo loaded: Revolutions wit ith Sid ide Channels Keyu Man, Zhiyun

DNS Cache Poisoning Attack Relo loaded: Revolutions wit ith Sid ide Channels Keyu Man, Zhiyun

DNS Cache Poisoning Attack Relo loaded: Revolutions wit ith Sid ide Channels Keyu Man, Zhiyun Qian, Zhongjie Wang, Xiaofeng Zheng, Youjun Huang, Haixin Duan Contents Background DNS Cache Poisoning Part I: Infer

934 views • 23 slides
1 Blocking Example Reducing Conflict Misses by Blocking /* After */ for (jj = 0; jj < N; jj

1 Blocking Example Reducing Conflict Misses by Blocking /* After */ for (jj = 0; jj < N; jj

Reducing Misses by Compiler Optimizing Memory Layout or Access Pattern McFarling [1989] reduced caches misses by 75% Lecture 15: Application-level Cache on 8KB direct mapped cache, 4 byte blocks in software Instructions Optimizations

191 views • 3 slides
Cache 10/27/16 The Memory Hierarchy Smaller On 1 cycle to access Chip Faster Registers CPU

Cache 10/27/16 The Memory Hierarchy Smaller On 1 cycle to access Chip Faster Registers CPU

Cache 10/27/16 The Memory Hierarchy Smaller On 1 cycle to access Chip Faster Registers CPU Storage instrs Costlier can per byte directly Cache(s) ~10s of cycles to access access (SRAM) Main memory ~100 cycles to access

1.07k views • 64 slides
1 Classifying cache misses Cache Organization Classifying misses by causes (3Cs) Cache size,

1 Classifying cache misses Cache Organization Classifying misses by causes (3Cs) Cache size,

Cache Performance Metrics Cache miss rate: number of cache misses divided by number of accesses Lecture 14: Hardware Approaches for Cache Optimizations Cache hit time: the time between sending address and data returning from cache Cache

608 views • 4 slides
Cache misses for lookup, existing of random ints Cache misses for lookup, non-existing of random

Cache misses for lookup, existing of random ints Cache misses for lookup, non-existing of random

The hash tables Googles dense and sparse hash tables Use open addressing Quadratic probing SGI Is a chained hash table Referred to as gnu in graphs One-table and Two-table Doubly linked: Rather large compartments

645 views • 29 slides
Web Cache Consistency Web Cache Consistency Web Cache Consistency Web Cache Consistency

Web Cache Consistency Web Cache Consistency Web Cache Consistency Web Cache Consistency

Web Cache Consistency Web Cache Consistency Web Cache Consistency Web Cache Consistency Requirements of performance, availability, and disconnected operation require us to relax the goal of semantic transparency. - HTTP 1.1 specification

598 views • 13 slides
Cache-based attack on AES Mikal Fourrier Contribution of this paper Get the secret key from

Cache-based attack on AES Mikal Fourrier Contribution of this paper Get the secret key from

Cache-based attack on AES Mikal Fourrier Contribution of this paper Get the secret key from AES in 3s + 3min Very weak assumptions No known plaintext needed No special rights needed, only to be able to spawn and control threads

378 views • 16 slides
Cache Refill/Access Decoupling for Vector Machines Christopher Batten, Ronny Krashinsky, Steve

Cache Refill/Access Decoupling for Vector Machines Christopher Batten, Ronny Krashinsky, Steve

Cache Refill/Access Decoupling for Vector Machines , Christopher Batten, Ronny Krashinsky, Steven Gerding, and Krste Asanovic, 3 7th International Symposium on Microarchitecture, Portland, Oregon, December 2004 Cache Refill/Access Decoupling for

1.33k views • 77 slides
Caches Electronic Computers M Caches 1 Cache LOCALITY PRINCIPLE (SPATIAL AND TEMPORAL)

Caches Electronic Computers M Caches 1 Cache LOCALITY PRINCIPLE (SPATIAL AND TEMPORAL)

Caches Electronic Computers M Caches 1 Cache LOCALITY PRINCIPLE (SPATIAL AND TEMPORAL) WORKING SET CPU Cache Registers Cache I lev. Cache II lev. Cache III lev. Memory Disk Tape The cache is a memory with an access time some

572 views • 55 slides
Hash Tables 1 / 91 Hash Tables Administrivia Assignment 2 has been released. We will be

Hash Tables 1 / 91 Hash Tables Administrivia Assignment 2 has been released. We will be

Hash Tables Hash Tables 1 / 91 Hash Tables Administrivia Assignment 2 has been released. We will be having a couple of guest lectures later in the semester. 2 / 91 Recap Recap 3 / 91 Recap Access Methods Access methods are alternative

1.25k views • 91 slides
A Cache Poisoning Attack Targeting DNS Forwarding Devices Xiaofeng Zheng , Chaoyi Lu, Jian Peng,

A Cache Poisoning Attack Targeting DNS Forwarding Devices Xiaofeng Zheng , Chaoyi Lu, Jian Peng,

Poison Over Troubled Forwarders: A Cache Poisoning Attack Targeting DNS Forwarding Devices Xiaofeng Zheng , Chaoyi Lu, Jian Peng, Qiushi Yang, Dongjie Zhou, Baojun Liu, Keyu Man, Shuang Hao, Haixin Duan and Zhiyun Qian DNS Forwarder Devices

593 views • 20 slides
Meltdown & Spectre Attacks Overview An analogy CPU cache and use it as side channel

Meltdown & Spectre Attacks Overview An analogy CPU cache and use it as side channel

Meltdown & Spectre Attacks Overview An analogy CPU cache and use it as side channel Meltdown attack Spectre attack Microsoft Interview Question Stealing A Secret Secret: 7 Guard with Memory Eraser Restricted Room CPU

732 views • 30 slides
Cache Performance Samira Khan March 28, 2017 Agenda Review from last lecture Cache

Cache Performance Samira Khan March 28, 2017 Agenda Review from last lecture Cache

Cache Performance Samira Khan March 28, 2017 Agenda Review from last lecture Cache access Associativity Replacement Cache Performance Cache Abstraction and Metrics Address Tag Store Data Store (stores (is the address in

904 views • 61 slides
SWOT for Tax Six Steps to Help Plan Your Attack! (1 hour) To access audio, use the

SWOT for Tax Six Steps to Help Plan Your Attack! (1 hour) To access audio, use the

Presented by: Kelley Lear SWOT for Tax Six Steps to Help Plan Your Attack! (1 hour) To access audio, use the GoToMeeting Mic & Speakers feature when prompted OR Dial 484-589-1011 and enter Access Code #: 561-465-326# Audio PIN:

906 views • 26 slides
Cache Performance and Set Associative Cache Lecture 12 CDA 3103 06-30-2014 5.1 Introduction

Cache Performance and Set Associative Cache Lecture 12 CDA 3103 06-30-2014 5.1 Introduction

Cache Performance and Set Associative Cache Lecture 12 CDA 3103 06-30-2014 5.1 Introduction Principle of Locality Programs access a small proportion of their address space at any time Temporal locality Items accessed recently

1.03k views • 59 slides
Cache Refill/Access Decoupling for Vector Machines Christopher Batten, Ronny Krashinsky, Steve

Cache Refill/Access Decoupling for Vector Machines Christopher Batten, Ronny Krashinsky, Steve

Cache Refill/Access Decoupling for Vector Machines Christopher Batten, Ronny Krashinsky, Steve Gerding, Krste Asanovi Computer Science and Artificial Intelligence Laboratory Massachusetts Institute of Technology December 8, 2004 Cache

884 views • 76 slides
L09: Cache Name: ID: Question: Direct Mapping Cache Hit Rate Consider a 4-block empty Cache,

L09: Cache Name: ID: Question: Direct Mapping Cache Hit Rate Consider a 4-block empty Cache,

L09: Cache Name: ID: Question: Direct Mapping Cache Hit Rate Consider a 4-block empty Cache, and all blocks initially marked as not valid , Given the main memory word addresses 0 1 2 3 4 3 4 15, calculate Cache hit rate. Cache Index

654 views • 9 slides
CSE 610 Special Topics: System Security - Attack and Defense for Binaries Instructor: Dr. Ziming

CSE 610 Special Topics: System Security - Attack and Defense for Binaries Instructor: Dr. Ziming

CSE 610 Special Topics: System Security - Attack and Defense for Binaries Instructor: Dr. Ziming Zhao Location: Frnczk 408, North campus Time: Monday, 5:20 PM - 8:10 PM Todays Agenda 1. Cache side channel attack Speed Gap Between CPU and

535 views • 42 slides

More recommend