Preventing Cache-Based Side-Channel Attacks in a Cloud Environment

Godfrey M.M.; Zulkernine M.

首页> 外文期刊>Cloud Computing, IEEE Transactions on >Preventing Cache-Based Side-Channel Attacks in a Cloud Environment

【24h】

Preventing Cache-Based Side-Channel Attacks in a Cloud Environment

机译：在云环境中防止基于缓存的侧通道攻击

获取原文

获取原文并翻译 | 示例

开具论文收录证明 >>

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

Cloud computing is a unique technique for outsourcing and aggregating computational hardware needs. By abstracting the underlying machines cloud computing is able to share resources among multiple mutually distrusting clients. While there are numerous practical benefits to this system, this kind of resource sharing enables new forms of information leakage such as hardware side-channels. In this paper, we investigate the usage of CPU-cache based side-channels in the cloud and how they compare to traditional side-channel attacks. We go on to demonstrate that new techniques are necessary to mitigate these sorts of attacks in a cloud environment, and specify the requirements for such solutions. Finally, we design and implement two new cache-based side-channel mitigation techniques, implementing them in a state-of-the-art cloud system, and testing them against traditional cloud technology.

机译：云计算是一种用于外包和汇总计算硬件需求的独特技术。通过抽象底层计算机，云计算能够在多个互不信任的客户端之间共享资源。尽管此系统有许多实际好处，但这种资源共享可实现新形式的信息泄漏，例如硬件辅助信道。在本文中，我们研究了云中基于CPU缓存的辅助通道的使用以及它们与传统的辅助通道攻击的比较。我们继续证明，必须有新技术来缓解云环境中的此类攻击，并指定此类解决方案的要求。最后，我们设计并实现了两种新的基于缓存的边信道缓解技术，将它们在最新的云系统中实施，并针对传统云技术进行了测试。

著录项

来源
《Cloud Computing, IEEE Transactions on》 |2014年第4期|395-408|共14页
作者
Godfrey M.M.; Zulkernine M.;
展开▼
作者单位

School of Computing, Queen???s University, Kingston, ON, Canada;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Cache storage; Cloud computing; Computer security; Context modeling; Memory management; Switches; Virtual machine monitors; CPU cache; Cloud computing; parallel side-channel; performance; security; sequential side-channel; side-channel;

机译：缓存存储;云计算;计算机安全性;上下文建模;内存管理;交换机;虚拟机监视器;CPU缓存;云计算;并行并行通道;性能;安全性;顺序并行通道;并行通道;

相似文献

外文文献
中文文献
专利

1. Winter is here! A decade of cache-based side-channel attacks, detection & mitigation for RSA [J] . Mushtaq Maria, Mukhtar Muhammad Asim, Lapotre Vianney, Information Systems . 2020,第Sepa期

机译：冬天来了！基于缓存的侧频攻击，检测和缓解RSA的十年
2. FLUSH plus PREFETCH: A countermeasure against access-driven cache-based side-channel attacks [J] . Mukhtar M. Asim, Mushtaq Maria, Bhatti M. Khurram, Journal of systems architecture . 2020,第1期

机译：Flush Plus预取：基于访问的访问缓存的侧频攻击的对策
3. MemWander: Memory Dynamic Remapping via Hypervisor Against Cache-Based Side-Channel Attacks [J] . Yang Chao, Guo Yunfei, Hu Hongchao Quality Control, Transactions . 2019,第期

机译：MemWander：通过虚拟机监控程序对基于缓存的边通道攻击的内存动态重新映射
4. A Novel Approach to Prevent Cache-Based Side-Channel Attack in the Cloud [C] . Muhammed Sadique UK, Divya James Global Colloquium on Recent Advancements and Effectual Researches in Engineering, Science and Technology . 2017

机译：一种预防云中缓存的侧信道攻击的新方法
5. On the Prevention of Cache-Based Side-Channel Attacks in a Cloud Environment. [D] . Godfrey, Michael. 2013

机译：云环境中基于缓存的侧通道攻击的预防。
6. A Compact and Low Power RO PUF with High Resilience to the EM Side-Channel Attack and the SVM Modelling Attack of Wireless Sensor Networks [O] . Yuan Cao, Xiaojin Zhao, Wenbin Ye, 2018

机译：紧凑低功耗的RO PUF对无线传感器网络的EM边通道攻击和SVM建模攻击具有很高的恢复能力
7. A Novel Approach to Prevent Cache-based Side-Channel Attack in the Cloud [O] . Sadique U.K. Muhammed, James Divya 2016

机译：防止云中基于缓存的侧通道攻击的新方法

Preventing Cache-Based Side-Channel Attacks in a Cloud Environment

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅