SC-K9: A Self-synchronizing Framework to Counter Micro-architectural Side Channels

2022 27th Asia and South Pacific Design Automation Conference (ASP-DAC) Pub Date : 2022-01-17 DOI:10.1109/asp-dac52403.2022.9712572

Hongyu Fang, M. Doroslovački, Guru Venkataramani

{"title":"SC-K9: A Self-synchronizing Framework to Counter Micro-architectural Side Channels","authors":"Hongyu Fang, M. Doroslovački, Guru Venkataramani","doi":"10.1109/asp-dac52403.2022.9712572","DOIUrl":null,"url":null,"abstract":"Side channels within the processor mi-croarchitecture are notorious for their ability to leak information without leaving any physical traces for forensic examination. Most prior detection frame-works typically choose to continuously sample a select subset of hardware events without attempting to understand the mechanics behind the side channel activity. In this work, we propose SC-K9, a novel framework that synchronizes its sampling frequency with that of the adversary, thereby improving the detection accuracy even when the frequency of attack operations vary with specific implementations. We then deploy a hardware-based deception strategy to trick the adversary and annul its observations from the side channel activities. We illustrate our design and demonstrate its effectiveness in identifying some of the potent side channels exposed by recent speculative execution attacks. Our experimental results show that SC-K9 can effectively spot adversaries at different operational modes, and incurs very low rate of false alarms among the benign workloads.","PeriodicalId":239260,"journal":{"name":"2022 27th Asia and South Pacific Design Automation Conference (ASP-DAC)","volume":"25 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-01-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 27th Asia and South Pacific Design Automation Conference (ASP-DAC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/asp-dac52403.2022.9712572","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

Side channels within the processor mi-croarchitecture are notorious for their ability to leak information without leaving any physical traces for forensic examination. Most prior detection frame-works typically choose to continuously sample a select subset of hardware events without attempting to understand the mechanics behind the side channel activity. In this work, we propose SC-K9, a novel framework that synchronizes its sampling frequency with that of the adversary, thereby improving the detection accuracy even when the frequency of attack operations vary with specific implementations. We then deploy a hardware-based deception strategy to trick the adversary and annul its observations from the side channel activities. We illustrate our design and demonstrate its effectiveness in identifying some of the potent side channels exposed by recent speculative execution attacks. Our experimental results show that SC-K9 can effectively spot adversaries at different operational modes, and incurs very low rate of false alarms among the benign workloads.

查看原文本刊更多论文

SC-K9:一个对抗微架构侧通道的自同步框架

处理器微体系结构中的侧通道因其泄漏信息而不留下任何物理痕迹以供法医检查的能力而臭名昭著。大多数先前的检测框架通常选择连续采样硬件事件的选定子集，而不试图理解侧通道活动背后的机制。在这项工作中，我们提出了SC-K9，这是一种新颖的框架，可以将其采样频率与对手的采样频率同步，从而提高检测精度，即使攻击操作的频率随特定实现而变化。然后，我们部署基于硬件的欺骗策略来欺骗对手并取消其对侧信道活动的观察。我们举例说明了我们的设计，并证明了其在识别最近投机性执行攻击暴露的一些有效侧通道方面的有效性。实验结果表明，SC-K9可以在不同的工作模式下有效地发现攻击者，并且在良性工作负载下产生非常低的误报率。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2022 27th Asia and South Pacific Design Automation Conference (ASP-DAC)

自引率

0.00%

发文量