Lucky microseconds: A timing attack on Amazon’s s2n implementation of TLS

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 9665, Issue , 2016, Pages 622-643

  Albrecht, Martin R ^a   Paterson, Kenneth G ^a  

^a UNIVERSITY OF LONDON   (United Kingdom)

Author keywords

CBC mode encryption; Lucky 13; Plaintext recovery; S2n; Timing attack; TLS

Indexed keywords

CODES (SYMBOLS); SEEBECK EFFECT; THALLIUM; TIMING CIRCUITS;

ATTACK VECTOR; CBC-MODE ENCRYPTION; LUCKY 13; PENETRATION TEST; PLAINTEXT; SECURITY EVALUATION; STANDARD CODES; TLS PROTOCOLS;

SIDE CHANNEL ATTACK;

EID: 84978976378     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-662-49890-3_24     Document Type: Conference Paper

References (19)

1. Almeida, J.B., Barbosa, M., Barthe, G., Dupressoir, F.: Verifiable sidechannel security of cryptographic implementations: constant-time MEECBC. IACR Cryptology ePrint Archive, 2015:1241 (2015)
2. AlFardan, N.J., Bernstein, D.J., Paterson, K.G., Poettering, B., Schuldt, J.C.N.: On the security of RC4 in TLS. In: King, S.T. (ed.) Proceedings of the 22nd USENIX Security Symposium, Washington D.C., USA, pp. 305–320. USENIX, August 2013
3. Apecechea, G.I., Inci, M.S., Eisenbarth, T., Sunar, B.: Lucky 13 strikes back. In: Bao, F., Miller, S., Zhou, J., Ahn, G.-J. (eds.) Proceedings of the 10th ACM Symposium on Information, Computer and Communications Security, ASIA CCS 2015, Singapore, April 14–17, pp. 85–96. ACM (2015)
4. AlFardan, N., Paterson, K.G.: Plaintext-recovery attacks against datagram TLS. In: Network and Distributed System Security Symposium (NDSS 2012) (2012)
5. AlFardan, N., Paterson, K.G.: Lucky thirteen: breaking the TLS and DTLS record protocols. In: Sommer, R. (ed.) Proceedings of the 2013 IEEE Symposium on Security and Privacy (S& P 2013), San Diego, CA, USA, pp. 526–540. IEEE Press, May 2013
6. Canvel, B., Hiltgen, A.P., Vaudenay, S., Vuagnoux, M.: Password interception in a SSL/TLS channel. In: Boneh, D. (ed.) CRYPTO 2003. LNCS, vol. 2729, pp. 583–599. Springer, Heidelberg (2003)
7. Coron, J.-S., Kizhvatov, I.: Analysis and improvement of the random delay countermeasure of CHES 2009. In: Mangard, S., Standaert, F.-X. (eds.) CHES 2010. LNCS, vol. 6225, pp. 95–109. Springer, Heidelberg (2010)
8. Garman, C., Paterson, K.G., Van der Merwe, T.: Attacks only get better: Password recovery attacks against RC4 in TLS. In: Jung, J., Holz, T. (eds.) 24th USENIX Security Symposium, USENIX Security 15, Washington, D.C., USA, August 12–14, pp. 113–128. USENIX Association (2015)
9. Krawczyk, H., Bellare, M., Canetti, R.: HMAC: Keyed-Hashing for Message Authentication. RFC 2104 (Informational), February 1997
10. Amazon Web Services Labs. s2n: an implementation of the TLS/SSL protocols (2015). https://github.com/awslabs/s2n
11. Langley, A.: Lucky thirteen attack on TLS CBC, February 2013. https://www.imperialviolet.org/2013/02/04/luckythirteen.html
12. Mavrogiannopoulos, N.: Time is money (in CBC ciphersuites), February 2013. http://nmav.gnutls.org/2013/02/ time-is-money-for-cbc-ciphersuites.html
13. Möller, B., Duong, T., Kotowicz, K.: This POODLE bites: Exploiting the SSL 3.0 fallback, September 2014
14. Moeller, B.: Security of CBC ciphersuites in SSL/TLS: Problems and countermeasures. Unpublished manuscript, May 2004. http://www.openssl.org/∼bodo/tls-cbc.txt
15. Paterson, K.G., Ristenpart, T., Shrimpton, T.: Tag size Does matter: attacks and proofs for the TLS record protocol. In: Wang, X., Lee, D.H. (eds.) ASIACRYPT 2011. LNCS, vol. 7073, pp. 372–389. Springer, Heidelberg (2011)
16. Schmidt, S.: Introducing s2n, a new open source TLS implementation, June 2015. https://blogs.aws.amazon.com/security/post/TxCKZM94ST1S6Y/ Introducing-s2n-a-New-Open-Source-TLS-Implementation
17. Vaudenay, S.: Security flaws induced by CBC padding - applications to SSL, IPSEC, WTLS. In: Knudsen, L.R. (ed.) EUROCRYPT 2002. LNCS, vol. 2332, pp. 534–546. Springer, Heidelberg (2002)
18. Valsorda, F., Fitzpatrick, B.: crypto/tls: implement countermeasures against CBC padding oracles, December 2015. https://go-review.googlesource.com/#/c/18130/
19. Varadarajan, V., Zhang, Y., Ristenpart, T., Swift, M.M.: A placement vulnerability study in multi-tenant public clouds. In: Jung, J., Holz, T. (eds.) 24th USENIX Security Symposium, USENIX Security 15, Washington, D.C., USA, August 12–14, pp. 913–928. USENIX Association (2015)