Mitigating timing based information leakage in shared schedulers

Proceedings - IEEE INFOCOM

Volumn , Issue , 2012, Pages 1044-1052

  Kadloor, Sachin ^a,b   Kiyavash, Negar ^a,b   Venkitasubramaniam, Parv ^c  

^a University of Illinois at Urbana Champaign   (United States)

^b UNIVERSITY OF ILLINOIS AT URBANA CHAMPAIGN   (United States)

^c LEHIGH UNIVERSITY   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

ESTIMATION ERRORS; EVENT SCHEDULER; FORMAL FRAMEWORK; INFORMATION LEAKAGE; MINIMUM INFORMATION; PERFORMANCE METRICES; PRIVACY AND SECURITY; SCHEDULING POLICIES; SERVICE TIME; SHARED MEMORIES; SHARED RESOURCES; SIDE-CHANNEL; TIMING INFORMATION; TRAFFIC PATTERN; UPPER BOUND; USAGE PATTERNS;

SCHEDULING;

EID: 84861617955     PISSN: 0743166X     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/INFCOM.2012.6195460     Document Type: Conference Paper

References (25)

1. B. W. Lampson, "A note on the confinement problem," Commun. ACM, vol. 16, no. 10, pp. 613-615, 1973.
2. J. K. Millen, "Covert channel capacity," in IEEE Symposium on Security and Privacy, pp. 60-66, 1987.
3. J. C. Wray, "An analysis of covert timing channels," Security and Privacy, IEEE Symposium on, vol. 0, p. 2, 1991.
4. W. M. Hu, "Reducing timing channels with fuzzy time," in IEEE Symposium on Security and Privacy, pp. 8-20, IEEE, 1991.
5. W. ming Hu, "Lattice scheduling and covert channels," in IEEE Symposium on Security and Privacy, pp. 52-61, IEEE, 1992.
6. S. Kadloor, X. Gong, N. Kiyavash, T. Tezcan, and N. Borisov, "A low-cost side channel traffic analysis attack in packet networks," in IEEE ICC 2010 - Communication and Information System Security Symposium, (Cape Town, South Africa), 2010.
7. D. X. Song, D. Wagner, and X. Tian, "Timing analysis of keystrokes and SSH timing attacks," in USENIX Security Symposium, 2001.
8. K. Zhang and X. Wang, "Peeping Tom in the Neighborhood: Keystroke Eavesdropping on Multi-User Systems," in USENIX Security, 2009.
9. M. Liberatore and B. N. Levine, "Inferring the source of encrypted HTTP connections," in CCS '06: Proceedings of the 13th ACM conference on Computer and communications security, (New York, NY, USA), pp. 255-263, ACM Press, 2006.
10. G. Bissias, M. Liberatore, D. Jensen, and B. Levine, "Privacy vulnerabilities in encrypted HTTP streams," in Privacy Enhancing Technologies, pp. 1-11, 2006.
11. C. V. Wright, L. Ballard, S. E. Coull, F. Monrose, and G. M. Masson, "Spot me if you can: Uncovering spoken phrases in encrypted voip conversations," in SP '08: Proceedings of the 2008 IEEE Symposium on Security and Privacy, (Washington, DC, USA), pp. 35-49, IEEE Computer Society, 2008.
12. T. Ristenpart, E. Tromer, H. Shacham, and S. Savage, "Hey, you, get off of my cloud: exploring information leakage in third-party compute clouds," in Proceedings of the 16th ACM conference on Computer and communications security, CCS '09, (New York, NY, USA), pp. 199-212, ACM, 2009.
13. D. Brumley and D. Boneh, "Remote timing attacks are practical," Computer Networks, vol. 48, no. 5, pp. 701-716, 2005.
14. P. Kocher, "Timing attacks on implementations of Diffie-Hellman, RSA, DSS, and other systems," in Advances in CryptologyCRYPTO96, pp. 104-113, Springer, 1996.
15. J. Giles and B. Hajek, "An Information-Theoretic and Game-Theoretic Study of Timing Channels," IEEE Transactions on Information Theory, vol. 48, pp. 2455-2477, September 2002.
16. D. Chaum, "Blind signatures for untraceable payments," in Advances in Cryptology: Proceedings of Crypto, vol. 82, pp. 199-203, 1983.
17. J. Agat, "Transforming out timing leaks," in Proceedings of the 27th ACM SIGPLAN-SIGACT symposium on Principles of programming languages, pp. 40-53, ACM, 2000.
18. I. S. Moskowitz and A. R. Miller, "The channel capacity of a certain noisy timing channel," IEEE Trans. Inform. Theory, vol. 38, pp. 1339-1344, July 1992.
19. M. Zukerman, T. Neame, and R. Addie, "Internet traffic modeling and future technology implications," in INFOCOM 2003. Twenty-Second Annual Joint Conference of the IEEE Computer and Communications. IEEE Societies, vol. 1, pp. 587-596 vol.1, march-3 april 2003.
20. J. A. McFadden, "The entropy of a point process," SIAM Journal on Applied Mathematics, vol. 13, no. 4, pp. 988-994, 1965.
21. D. P. Bertsekas and J. N. Tsitsiklis, Introduction to Probability, 2nd Edition. Athena Scientific, 2002.
22. M. Feder and N. Merhav, "Relations between entropy and error probability," Information Theory, IEEE Transactions on, vol. 40, pp. 259-266, jan 1994.
23. R. Rom and M. Sidi, Multiple Access Protocols: Performance and Analysis. New York: Springer Verlag, 1990.
24. D. P. Bertsekas and R. G. Gallager, Data Networks. Englewood Cliffs, N.J.: Prentice-Hall, Inc., 1987.
25. R. G. Gallager, Poisson Processes, class notes, available online at http: //www.rle.mit.edu/ rgallager/documents/6.262ch2Dec10 000.pdf .