A high-resolution side-channel attack on last-level cache

Mehmet Kayaalp; Nael Abu-Ghazaleh; Dmitry Ponomarev; Aamer Jaleel

doi:10.1145/2897937.2897962

A high-resolution side-channel attack on last-level cache

Mehmet Kayaalp
, Nael Abu-Ghazaleh
, Dmitry Ponomarev
, Aamer Jaleel

School of Computing

Binghamton University

IBM
University of California at Riverside
NVIDIA

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

110 Scopus citations

Abstract

Recently demonstrated side-channel attacks on shared Last Level Caches (LLCs) work under a number of constraints on both the system and the victim behavior that limit their applicability. This paper demonstrates on a real system a new high-resolution LLC side channel attack that relaxes some of these assumptions. Specifically, we introduce and exploit new techniques to achieve high-resolution tracking of the victim accesses to enable attacks on ciphers where critical events have a small cache footprint. We compare the quality of the side-channel in our attack to that obtained using Flush+ Reload attacks, which are significantly more precise but work only when the sensitive data is shared between the attacker and the victim. We show that our attack frequently obtains an equal quality channel, which we also confirmed by reconstructing the victim cryptographic key.

Original language	English
Title of host publication	Proceedings of the 53rd Annual Design Automation Conference, DAC 2016
Publisher	Institute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)	9781450342360
DOIs	https://doi.org/10.1145/2897937.2897962
State	Published - Jun 5 2016
Event	53rd Annual ACM IEEE Design Automation Conference, DAC 2016 - Austin, United States Duration: Jun 5 2016 → Jun 9 2016

Publication series

Name	Proceedings - Design Automation Conference
Volume	05-09-June-2016

Conference

Conference	53rd Annual ACM IEEE Design Automation Conference, DAC 2016
Country/Territory	United States
City	Austin
Period	06/5/16 → 06/9/16

Access to Document

10.1145/2897937.2897962

Cite this

Kayaalp, M., Abu-Ghazaleh, N., Ponomarev, D., & Jaleel, A. (2016). A high-resolution side-channel attack on last-level cache. In Proceedings of the 53rd Annual Design Automation Conference, DAC 2016 Article a72 (Proceedings - Design Automation Conference; Vol. 05-09-June-2016). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1145/2897937.2897962

@inproceedings{15752ba4853d47d2b4cd958ba0ed95ed,

title = "A high-resolution side-channel attack on last-level cache",

abstract = "Recently demonstrated side-channel attacks on shared Last Level Caches (LLCs) work under a number of constraints on both the system and the victim behavior that limit their applicability. This paper demonstrates on a real system a new high-resolution LLC side channel attack that relaxes some of these assumptions. Specifically, we introduce and exploit new techniques to achieve high-resolution tracking of the victim accesses to enable attacks on ciphers where critical events have a small cache footprint. We compare the quality of the side-channel in our attack to that obtained using Flush+ Reload attacks, which are significantly more precise but work only when the sensitive data is shared between the attacker and the victim. We show that our attack frequently obtains an equal quality channel, which we also confirmed by reconstructing the victim cryptographic key.",

author = "Mehmet Kayaalp and Nael Abu-Ghazaleh and Dmitry Ponomarev and Aamer Jaleel",

note = "Publisher Copyright: {\textcopyright} 2016 ACM.; 53rd Annual ACM IEEE Design Automation Conference, DAC 2016 ; Conference date: 05-06-2016 Through 09-06-2016",

year = "2016",

month = jun,

day = "5",

doi = "10.1145/2897937.2897962",

language = "English",

series = "Proceedings - Design Automation Conference",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

booktitle = "Proceedings of the 53rd Annual Design Automation Conference, DAC 2016",

}

Kayaalp, M, Abu-Ghazaleh, N, Ponomarev, D & Jaleel, A 2016, A high-resolution side-channel attack on last-level cache. in Proceedings of the 53rd Annual Design Automation Conference, DAC 2016., a72, Proceedings - Design Automation Conference, vol. 05-09-June-2016, Institute of Electrical and Electronics Engineers Inc., 53rd Annual ACM IEEE Design Automation Conference, DAC 2016, Austin, United States, 06/5/16. https://doi.org/10.1145/2897937.2897962

A high-resolution side-channel attack on last-level cache. / Kayaalp, Mehmet; Abu-Ghazaleh, Nael; Ponomarev, Dmitry et al.
Proceedings of the 53rd Annual Design Automation Conference, DAC 2016. Institute of Electrical and Electronics Engineers Inc., 2016. a72 (Proceedings - Design Automation Conference; Vol. 05-09-June-2016).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - A high-resolution side-channel attack on last-level cache

AU - Kayaalp, Mehmet

AU - Abu-Ghazaleh, Nael

AU - Ponomarev, Dmitry

AU - Jaleel, Aamer

PY - 2016/6/5

Y1 - 2016/6/5

N2 - Recently demonstrated side-channel attacks on shared Last Level Caches (LLCs) work under a number of constraints on both the system and the victim behavior that limit their applicability. This paper demonstrates on a real system a new high-resolution LLC side channel attack that relaxes some of these assumptions. Specifically, we introduce and exploit new techniques to achieve high-resolution tracking of the victim accesses to enable attacks on ciphers where critical events have a small cache footprint. We compare the quality of the side-channel in our attack to that obtained using Flush+ Reload attacks, which are significantly more precise but work only when the sensitive data is shared between the attacker and the victim. We show that our attack frequently obtains an equal quality channel, which we also confirmed by reconstructing the victim cryptographic key.

AB - Recently demonstrated side-channel attacks on shared Last Level Caches (LLCs) work under a number of constraints on both the system and the victim behavior that limit their applicability. This paper demonstrates on a real system a new high-resolution LLC side channel attack that relaxes some of these assumptions. Specifically, we introduce and exploit new techniques to achieve high-resolution tracking of the victim accesses to enable attacks on ciphers where critical events have a small cache footprint. We compare the quality of the side-channel in our attack to that obtained using Flush+ Reload attacks, which are significantly more precise but work only when the sensitive data is shared between the attacker and the victim. We show that our attack frequently obtains an equal quality channel, which we also confirmed by reconstructing the victim cryptographic key.

UR - https://www.scopus.com/pages/publications/84977090978

U2 - 10.1145/2897937.2897962

DO - 10.1145/2897937.2897962

M3 - Conference contribution

T3 - Proceedings - Design Automation Conference

BT - Proceedings of the 53rd Annual Design Automation Conference, DAC 2016

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 53rd Annual ACM IEEE Design Automation Conference, DAC 2016

Y2 - 5 June 2016 through 9 June 2016

ER -

A high-resolution side-channel attack on last-level cache

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this