Controlled-Channel Attacks: Deterministic Side Channels for Untrusted Operating Systems

Citations Over TimeTop 1% of 2015 papers

Abstract

The presence of large numbers of security vulnerabilities in popular feature-rich commodity operating systems has inspired a long line of work on excluding these operating systems from the trusted computing base of applications, while retaining many of their benefits. Legacy applications continue to run on the untrusted operating system, while a small hyper visor or trusted hardware prevents the operating system from accessing the applications' memory. In this paper, we introduce controlled-channel attacks, a new type of side-channel attack that allows an untrusted operating system to extract large amounts of sensitive information from protected applications on systems like Overshadow, Ink Tag or Haven. We implement the attacks on Haven and Ink Tag and demonstrate their power by extracting complete text documents and outlines of JPEG images from widely deployed application libraries. Given these attacks, it is unclear if Over shadow's vision of protecting unmodified legacy applications from legacy operating systems running on off-the-shelf hardware is still tenable.

Related Papers

• → Hybrid side-channel/machine-learning attacks on PUFs: A new threat?(2014)30 cited
• → Efficient Solution for Misalignment of Signal in Side Channel Analysis(2007)16 cited
• → Empirical Analysis of Side-Channel Attack Resistance of HLS-designed AES Circuits(2023)4 cited
• → Consideration of the side-channel attack to SPECK implemented on Arduino Uno(2021)2 cited
• Research on side-channel attack methods of ECC(2013)