An exploration of L2 cache covert channels in virtualized environments

Proceedings of the ACM Conference on Computer and Communications Security

Volumn , Issue , 2011, Pages 29-39

  Xu, Yunjing ^a   Bailey, Michael ^a   Jahanian, Farnam ^a   Joshi, Kaustubh ^b   Hiltunen, Matti ^b   Schlichting, Richard ^b  

^a UNIVERSITY OF MICHIGAN   (United States)

^b AT AND T LABS RESEARCH   (United States)

Author keywords

Bit rate; Covert channel

Indexed keywords

AMAZON EC2; BIT RATES; CHANNEL BIT RATES; COVERT CHANNELS; DATA EXFILTRATION; L2 CACHE; NEW FORMS; PRIVATE KEY; SECURITY CHALLENGES; VIRTUAL MACHINES; VIRTUALIZED ENVIRONMENT;

CACHE MEMORY; COMPUTER SYSTEMS; VIRTUAL REALITY;

CLOUD COMPUTING;

EID: 80955157902     PISSN: 15437221     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2046660.2046670     Document Type: Conference Paper

References (35)

1. Trusted computing system evaluation. "the orange book". dod 5200.28-std, U.S. Department of Defense., Washington, 1985.
2. ABAD, C. Ip checksum covert channels and selected hash collision. Technical report, 2010.
3. AHSAN, K., AND KUNDUR, D. Practical data hiding in tcp/ip. In Proceedings of the 9th workshop on Multimedia & Security, (MM&Sec'02) (Dallas, TX, USA, September 2002).
4. AMAZON. Amazon elastic compute cloud (ec2). http://aws.amazon.com/ec2/.
5. ARMBRUST, M., Fox, A., GRIFFITH, R., JOSEPH, A. D., KATZ, R., KONWINSKI, A., LEE, G., PATTERSON, D., RABKIN, A., STOICA, I., AND ZAHARIA, M. A view of cloud computing. Commun. ACM 53 (April 2010), 50-58.
6. ASKAROV, A., ZHANG, D., AND MYERS, A. Predictive black-box mitigation of timing channels. In Proceedings of the 17th ACM Conference on Computer and Communications Security (CCS'10) (Chicago, IL, USA, October 2010).
7. BARHAM, P., DRAGOVIC, B., FRASER, K., HAND, S., HARRIS, T., Ho, A., NEUGEBAUER, R., PRATT, I., AND WARFIELD, A. Xen and the art of virtualization. In Proceedings of the 19th ACM Symposium on Operating Systems Principles (SOSP'03) (Bolton Landing, NY, October 2003).
8. BOWDENA, K., MACCALLUMA, I., AND PATIENCE, S. A magnetic tape database for a real-time medical information system. Computers in Biology and Medicine 5 (September 1975).
9. CABUK, S., BRODLEY, C. E., AND SHIELDS, C. Ip covert timing channels: Design and detection. In Proceedings of the 11th ACM Conference on Computer and Communications Security (CCS'04) (Washington, DC, USA, October 2004).
10. CECCHET, E., MARGUERITE, J., AND ZWAENEPOEL, W. Performance and scalability of ejb applications. In Proceedings of the 17th ACM SIC PLAN Conference on Object-oriented Programming, Systems, Languages, and Applications (OOPSLA '02) (Seattle, WA, USA, November 2002).
11. CHEN, Y., PAXSON, V., AND KATZ, R. H. What's new about cloud computing security? Tech. Rep. UCB/EECS-2010-5, EECS Department, University of California, Berkeley, Jan 2010.
12. CLOUDBOOK: THE CLOUD COMPUTING & SAAS INFORMATION RESOURCE. Governemnt Cloud Computing Platforms. http://www.cloudbook.net/directories/gov- clouds/government-cloud-computing.php, 2011.
13. COPPENS, B., VERBAUWHEDE, I., SUTTER, B. D., AND BOSSCHERE, K. D. Practical mitigations for timing-based side-channel attacks on modern ×86 processors. In Proceedings of the 30th IEEE Symposium on Security & Privacy (S&P'09) (Oakland, CA, USA, May 2009).
14. COPPERSMITH, D. Small solutions to polynomial equations, and low exponent rsa vulnerabilities. Journal of Cryptology 10 (1997), 233-260. 10.1007/s001459900030. (Pubitemid 127754574)
15. DEAN, J. Designs, lessons and advice from building large distributed systems. In Proceedings of the 3rd ACM SIGOPS International Workshop on Large Scale Distributed Systems and Middleware (LADIS'09) (Big Sky, MT, USA, October 2009). Keynote speech.
16. DIGITAL FORENSICS ASSOCIATION. The Leaking Vault Five Years of Data Breaches, July 2010.
17. EC2, A. Summary of the amazon ec2 and amazon rds service disruption in the us east region. http://aws.amazon.com/message/65648/.
18. GARTNER, INC. Gartner Says Worldwide Cloud Services Market to Surpass $68 Billion in 2010. http://www.gartner.com/it/page.jsp?id=1389313, June 2010.
19. GIANVECCHIO, S., AND WANG, H. Detecting covert timing channels: An entropy-based approach. In Proceedings of the 14th ACM Conference on Computer and Communications Security (CCS'07) (Alexandria, VA, USA, October 2007).
20. GIFFIN, J., GREENSTADT, R., LITWACK, P., AND TIBBETTS, R. Covert messaging through tcp timestamps. In Proceedings of the 2nd Workshop on Privacy Enhancing Technologies (PET'02) (San Francisco, CA, USA, April 2002).
21. HAMMOND, E. Matching ec2 availability zones across aws accounts. http://http://alestic.com/2009/07/\ec2-availability-zones.
22. INSTITUTE, I. S. RFC 793: Transmission control protocol, 1981. http://www.ietf.org/rfc/rfc793.txt.
23. JAEGER, T., AND SCHIFFMAN, J. Outlook: Cloudy with a chance of security challenges and improvements. IEEE Security and Privacy 8 (2010), 77-80.
24. KELLER, E., SZEFER, J., REXFORD, J., AND LEE, R. B. Nohype: Virtualized cloud infrastructure without the virtualization. In Proceedings of the 37th International Symposium on Computer Architecture (ISCA'10) (Saint-Malo, France, June 2010).
25. KOCHER, P. C. Timing attacks on implementations of difhe-hellman, rsa, dss, and other systems. In Proceedings of the 16th Annual International Cryptology Conference on Advances in Cryptology (CRYPTO'96) (London, UK, 1996).
26. LAMPSON, B. W. A note on the confinement problem. Commun. ACM 16 (October 1973), 613-615.
27. OKAMURA, K., AND OYAMA, Y. Load-based covert channels between xen virtual machines. In Proceedings of the 25th Symposium On Applied Computing (SAC'10) (Sierre, Switzerland, March 2010).
28. OW2. Rubis, http://rubis.ow2.org/.
29. PERCIVAL, C. Cache missing for fun and profit. In Proceedings of BSDCan 2005 (Ottawa, Canada, May 2005).
30. RACKSPACE. Rackspace cloud hosting, http://www.rackspacecloud.com/.
31. RlSTENPART, T., TROMER, E., SHACHAM, FL, AND SAVAGE, S. Hey, you, get off of my cloud! exploring information leakage in third-party compute clouds. In Proceedings of the 16th ACM Conference on Computer and Communications Security (CCS'09) (Chicago, IL, USA, November 2009).
32. TlRI, K. Side-channel attack pitfalls. In Proceedings of the 44th annual Design Automation Conference (New York, NY, USA, 2007), DAC '07, ACM, pp. 15-20.
33. WlKl. Magnetic stripe card, http://en.wikipedia.org/wiki/Magnetic-stripe- card.
34. XENSOURCE. Xen credit scheduler, http://wiki.xensource.com/xenwiki/ CreditScheduler.
35. ZHANG, Y., JUELS, A., OPREA, A., AND REITER, M. K. Homealone: Co-residency detection in the cloud via side-channel analysis. In Proceedings of the 2011 IEEE Symposium on Security and Privacy (S&P'll) (Oakland, CA, USA, May 2011).