Determinating timing channels in compute clouds

Proceedings of the ACM Conference on Computer and Communications Security

Volumn , Issue , 2010, Pages 103-108

  Aviram, Amittai ^a   Hu, Sen ^a   Ford, Bryan ^a   Gummadi, Ramakrishna ^b  

^a YALE UNIVERSITY   (United States)

^b UNIVERSITY OF MASSACHUSETTS   (United States)

Author keywords

Cloud computing; Deterministic parallelism; Timing channels

Indexed keywords

BUSINESS MODELS; CLOUD COMPUTING; CLOUD PROVIDERS; COARSE-GRAINED; DETERMINISTIC EXECUTION; DETERMINISTIC PARALLELISM; FILE SYSTEMS; MASSIVE PARALLELISM; NEW APPROACHES; PARALLEL TASK; RESOURCE PARTITIONING; SECURITY CHALLENGES; SHARED MEMORIES; TIMING CHANNELS; TIMING INFORMATION;

ECOLOGY; SECURITY OF DATA;

COMPUTER SYSTEMS;

EID: 78650158728     PISSN: 15437221     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1866835.1866854     Document Type: Conference Paper

References (36)

1. O. Aciiçmez. Yet another microarchitectural attack: Exploiting I-cache. In CCAW, Nov. 2007.
2. O. Aciiçmez, Çetin Kaya Koç, and J.-P. Seifert. Predicting secret keys via branch prediction. In CT-RSA, Feb. 2007.
3. A. Aviram and B. Ford. Deterministic consistency: A programming model for shared memory parallelism, Feb. 2010. http://arxiv.org/abs/0912.0926.
4. A. Aviram, S.-C. Weng, S. Hu, and B. Ford. Determinator: OS support for efficient deterministic parallelism. In 9th OSDI, Oct. 2010. To appear. http://arxiv.org/abs/1005.3450.
5. T. Bergan, O. Anderson, J. Devietti, L. Ceze, and D. Grossman. CoreDet: A compiler and runtime system for deterministic multithreaded execution. In 15th ASPLOS, Mar. 2010.
6. E. D. Berger, T. Yang, T. Liu, and G. Novark. Grace: Safe multithreaded programming for C/C++. In OOPSLA, Oct. 2009.
7. B. N. Bershad et al. Extensibility, safety and performance in the SPIN operating system. In 15th SOSP, 1995.
8. R. L. Bocchino Jr. et al. Parallel programming must be deterministic by default. In 1st HotPar. Mar. 2009.
9. D. Brumley and D. Boneh. Remote timing attacks are practical. In 12th USENIX Security Symposium, Aug. 2003.
10. J. B. Carter, J. K. Bennett, and W. Zwaenepoel. Implementation and performance of munin. In 13th SOSP, Oct. 1991.
11. S. Chen, R. Wang, X. Wang, and K. Zhang. Side-channel leaks in web applications: a reality today, a challenge tomorrow. In IEEE Symposium on Security and Privacy, May 2010.
12. J. Devietti, B. Lucia, L. Ceze, and M. Oskin. DMP: Deterministic shared memory multiprocessing. In 14th ASPLOS, Mar. 2009.
13. G. W. Dunlap et al. ReVirt: Enabling intrusion analysis through virtual-machine logging and replay. In 5th OSDI, Dec. 2002.
14. G. W. Dunlap et al. Execution replay for multiprocessor virtual machines. In VEE, Mar. 2008.
15. S. A. Edwards, N. Vasudevan, and O. Tardieu. Programming shared memory multiprocessors with deterministic message-passing concurrency: Compiling SHIM to Pthreads. In DATE, Mar. 2008.
16. P. Efstathopoulos et al. Labels and event processes in the Asbestos operating system. In 20th SOSP, Oct. 2005.
17. B. Ford, M. Hibler, J. Lepreau, P. Tullmann, G. Back, and S. Clawson. Microkernels meet recursive virtual machines. In 2nd OSDI, pages 137-151, 1996.
18. G. Kahn. The semantics of a simple language for parallel programming. In Information Processing, pages 471-475. 1974.
19. R. A. Kemmerer. Shared resource matrix methodology: An approach to identifying storage and timing channels. TOCS, 1(3):256-277, Aug. 1983.
20. J. Kong, O. Aciiçmez, J.-P. Seifert, and H. Zhou. Deconstructing new cache designs for thwarting software cache-based side channel attacks. In 1st CSAW, Oct. 2008.
21. T. J. Leblanc and J. M. Mellor-Crummey. Debugging parallel programs with instant replay. IEEE Transactions on Computers, C-36(4):471-482, Apr. 1987.
22. E. Lee. The problem with threads. Computer, 39(5):33-42, May 2006.
23. L. Liu, E. Yu, and J. Mylopoulos. Analyzing security requirements as relationships among strategic actors. In SREIS'022nd Symposium on Requirements Engineering for Information Security, oct 2002.
24. S. Lu, S. Park, E. Seo, and Y. Zhou. Learning from mistakes - a comprehensive study on real world concurrency bug characteristics. In 13th ASPLOS, pages 329-339, Mar. 2008.
25. D. S. Parker, Jr. et al. Detection of mutual inconsistency in distributed systems. IEEE Transactions on Software Engineering, SE-9(3), May 1983.
26. S. Pearson. Taking account of privacy when designing cloud computing services. In ICSE-Cloud '09, pages 44-52, May 2009.
27. C. Percival. Cache missing for fun and profit. In BSDCan, May 2005.
28. N. R. Potlapally et al. Satisfiability-based framework for enabling side-channel attacks on cryptographic software. In DATE, Mar. 2006.
29. T. Ristenpart et al. Hey, you, get off of my cloud: Exploring information leakage in third-party compute clouds. In 16th CCS, pages 199-212. 2009.
30. N. Santos, K. P. Gummadi, and R. Rodrigues. Towards trusted cloud computing. In HotCloud, June 2009.
31. S. Soltesz, H. Pötzl, M. E. Fiuczynski, A. Bavier, and L. Peterson. Container-based operating system virtualization: A scalable, high-performance alternative to hypervisors. In EuroSys, Mar. 2007.
32. D. Song, D. Wagner, and X. Tian. Timing analysis of keystrokes and SSH timing attacks. In USENIX Security Symposium, 2001.
33. C. Vuillaume and K. Okeya. Flexible exponentiation with resistance to side channel attacks. In 4th ACNS, pages 268-283, June 2006. (Pubitemid 44152823)
34. Z. Wang and R. B. Lee. Covert and side channels due to processor architecture. In 22nd ACSAC, Dec. 2006.
35. J. C. Wray. An analysis of covert timing channels. In IEEE Symposium on Security and Privacy, May 1991.
36. N. Zeldovich, S. Boyd-Wickizer, E. Kohler, and D. Mazières. Making information flow explicit in HiStar. In 7th OSDI, Nov. 2006.