Whispers in the Hyper-space: High-speed covert channel attacks in the cloud

Proceedings of the 21st USENIX Security Symposium

Volumn , Issue , 2012, Pages 159-173

  Wu, Zhenyu ^a   Xu, Zhang ^a   Wang, Haining ^a  

^a The College of William and Mary   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

BANDWIDTH; DATA TRANSFER; SECURITY OF DATA; TRANSMISSIONS; VIRTUAL REALITY; WAVE TRANSMISSION;

COVERT CHANNELS; DESIGN AND IMPLEMENTS; HIGH BANDWIDTH; PHYSICAL SYSTEMS; POTENTIAL RISKS; RELIABLE DATA TRANSMISSION; SENSITIVE INFORMATIONS; VIRTUALIZED ENVIRONMENT;

SIDE CHANNEL ATTACK;

EID: 84945979212     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (31)

1. Amazon Web Services. Amazon EC2 dedicated instances. http://aws.amazon.com/dedicated-instances/.
2. S. Bugiel, S. Nürnberger, T. Pöppelmann, A.-R. Sadeghi, and T. Schneider. AmazonIA: when elasticity snaps back. In Proceedings of the 18th ACM conference on Computer and communications security (CCS’11), pages 389–400, 2011.
3. S. Cabuk, C. E. Brodley, and C. Shields. IP covert timing channels: design and detection. In Proceedings of the 11th ACM conference on Computer and communications security (CCS’04), pages 178–187, 2004.
4. C. Cowan, C. Pu, D. Maier, H. Hintony, J. Walpole, P. Bakke, S. Beattie, A. Grier, P. Wagle, and Q. Zhang. StackGuard: automatic adaptive detection and prevention of buffer-overflow attacks. In Proceedings of the 7th conference on USENIX Security Symposium, pages 63–78, 1998.
5. Department of Defense. TCSEC: Trusted computer system evaluation criteria. Technical Report 5200.28-STD, U.S. Department of Defense, 1985.
6. J. W. Gray III. On introducing noise into the bus-contention channel. In Proceedings of the 1993 IEEE Symposium on Security and Privacy (S&P’93), pages 90–98, 1993.
7. J. W. Gray III. Countermeasures and tradeoffs for a class of covert timing channels. Technical report, Hong Kong University of Science and Technology, 1994.
8. W. Hu. Reducing timing charmers with fuzzy time. In Proceedings of the 1991 IEEE Symposium on Security and Privacy (S&P’91), pages 8–20, 1991.
9. W. Hu. Lattice scheduling and covert channels. In Proceedings of the IEEE Symposium on Security and Privacy (S&P’92), pages 52–61, 1992.
10. Intel. The Intel 64 and IA-32 architectures software developer’s manual. http://www.intel.com/products/processor/manuals/.
11. J. Kong, O. Aciicmez, J.-P. Seifert, and H. Zhou. Hardware-software integrated approaches to defend against software cache-based side channel attacks. In Proceedings of the IEEE 15th International Symposium on High Performance Computer Architecture (HPCA’09), pages 393–404, 2009.
12. B. W. Lampson. A note on the confinement problem. Communications of the ACM, 16:613–615, 1973.
13. F. G. G. Meade. A guide to understanding covert channel analysis of trusted systems. Manual NCSC-TG-030, U.S. National Computer Security Center, 1993.
14. D. G. Murray, S. H, and M. A. Fetterman. Satori: Enlightened page sharing. In Proceedings of the USENIX Annual Technical Conference (ATC’09), pages 1–14, 2009.
15. G. L. Orgill, G. W. Romney, M. G. Bailey, and P. M. Orgill. The urgency for effective user privacy-education to counter social engineering attacks on secure computer systems. In Proceedings of the 5th conference on Information technology education (CITC5’04), pages 177–181, 2004.
16. C. Percival. Cache missing for fun and profit. In Proceedings of the BSDCan 2005, 2005.
17. I. S. Reed and G. Solomon. Polynomial codes over certain finite fields. Journal of the Society for Industrial and Applied Mathematics, 8(2):300–304, 1960.
18. T. Ristenpart, E. Tromer, H. Shacham, and S. Savage. Hey, you, get off of my cloud: exploring information leakage in third-party compute clouds. In Proceedings of the 16th ACM conference on Computer and communications security (CCS’09), pages 199–212, 2009.
19. C. H. Rowland. Covert channels in the TCP/IP protocol suite. First Monday, 2, 1997.
20. G. Shah and M. Blaze. Covert channels through external interference. In Proceedings of the 3rd USENIX conference on Offensive technologies (WOOT’09), pages 1–7, 2009.
21. G. Shah, A. Molina, and M. Blaze. Keyboards and covert channels. In Proceedings of the 15th conference on USENIX Security Symposium, pages 59–75, 2006.
22. K. Suzaki, K. Iijima, T. Yagi, and C. Artho. Software side channel attack on memory deduplication. page Poster, 2011.
23. T. V. Vleck. Timing channels. Poster session, IEEE TCSP conference, 1990.
24. Z. Wang and R. B. Lee. Covert and side channels due to processor architecture. In Proceedings of the 22nd Annual Computer Security Applications Conference (ACSAC’06), pages 473–482, 2006.
25. Z. Wang and R. B. Lee. A novel cache architecture with enhanced performance and security. In Proceedings of the 41st annual IEEE/ACM International Symposium on Microarchitecture (MICRO’41), pages 83–93, 2008.
26. J. Wei, X. Zhang, G. Ammons, V. Bala, and P. Ning. Managing security of virtual machine images in a cloud environment. In Proceedings of the 2009 ACM workshop on Cloud computing security (CCSW’09), pages 91–96, 2009.
27. I. S. Winkler and B. Dealy. Information security technology?...don’t rely on it: a case study in social engineering. In Proceedings of the 5th conference on USENIX UNIX Security Symposium, pages 1–5, 1995.
28. J. Winkler and J. Munn. Standards and architecture for token-ring local area networks. In Proceedings of 1986 ACM Fall joint computer conference (ACM’86), pages 479–488, 1986.
29. XenSource. Xen credit scheduler. http://wiki.xensource.com/xenwiki/CreditScheduler.
30. Y. Xu, M. Bailey, F. Jahanian, K. Joshi, M. Hiltunen, and R. Schlichting. An exploration of L2 cache covert channels in virtualized environments. In Proceedings of the 3rd ACM workshop on Cloud computing security workshop (CCSW’11), pages 29–40, 2011.
31. Y. Zhang, A. Juels, A. Oprea, and M. K. Reiter. Homealone: Co-residency detection in the cloud via side-channel analysis. In Proceedings of the 2011 IEEE Symposium on Security and Privacy (S&P’11), pages 313–328, 2011.