research-article

TimeWarp: rethinking timekeeping and performance monitoring mechanisms to mitigate side-channel attacks

Authors:

Simha SethumadhavanAuthors Info & Claims

ACM SIGARCH Computer Architecture News, Volume 40, Issue 3

Pages 118 - 129

https://doi.org/10.1145/2366231.2337173

Published: 09 June 2012 Publication History

Abstract

Over the past two decades, several microarchitectural side channels have been exploited to create sophisticated security attacks. Solutions to this problem have mainly focused on fixing the source of leaks either by limiting the flow of information through the side channel by modifying hardware, or by refactoring vulnerable software to protect sensitive data from leaking. These solutions are reactive and not preventative: while the modifications may protect against a single attack, they do nothing to prevent future side channel attacks that exploit other microarchitectural side channels or exploit the same side channel in a novel way.

In this paper we present a general mitigation strategy that focuses on the infrastructure used to measure side channel leaks rather than the source of leaks, and thus applies to all known and unknown microarchitectural side channel leaks. Our approach is to limit the fidelity of fine grain timekeeping and performance counters, making it difficult for an attacker to distinguish between different microarchitectural events, thus thwarting attacks. We demonstrate the strength of our proposed security modifications, and validate that our changes do not break existing software. Our proposed changes require minor -- or in some cases, no -- hardware modifications and do not result in any substantial performance degradation, yet offer the most comprehensive protection against microarchitectural side channels to date.

References

[1]

Possible rdtsc bug - intel®software network. WWW page, 2009. http://software.intel.com/en-us/forums/showthread.php?t=65593.

[2]

O. Aciiçmez. Yet another microarchitectural attack: Exploiting i-cache. In 14th ACM Conference on Computer and Communications Security (ACM CCS'07) Computer Security Architecture Workshop, 2007.

Digital Library

[3]

O. Aciiçmez, C. K. Koc, and J.-P. Seifert. On the power of simple branch prediction analysis. Cryptology ePrint Archive, Report 2006/351, 2006.

[4]

D. J. Bernstein. Cache-timing attacks on aes. Technical report, 2004. URL: http://cr.yp.to/papers.html/#cachetiming.

[5]

J. Demme and S. Sethumadhavan. Rapid identification of architectural bottlenecks via precise event counting. SIGARCH Comput. Archit. News, 39:353--364, June 2011.

Digital Library

[6]

J. L. Greathouse, Z. Ma, M. I. Frank, R. Peri, and T. Austin. Demand-driven software race detection using hardware performance counters. SIGARCH Comput. Archit. News, 39:165--176, June 2011.

Digital Library

[7]

D. Gullasch, E. Bangerter, and S. Krenn. Cache games -- bringing access based cache attacks on aes to practice. In 2011 IEEE Symposium on Security and Privacy (SP), pages 490--505, May 2011.

Digital Library

[8]

D. Jayasinghe, J. Fernando, R. Herath, and R. Ragel. Remote cache timing attack on advanced encryption standard and countermeasures. In Information and Automation for Sustainability (ICIAFs), 2010 5th International Conference on, pages 177--182, dec. 2010.

[9]

S. L. Min and J.-D. Choi. An efficient cache-based access anomaly detection scheme. SIGPLAN Not., 26:235--244, April 1991.

Digital Library

[10]

A. Muzahid, D. Suárez, S. Qi, and J. Torrellas. Sigrace: signature-based data race detection. SIGARCH Comput. Archit. News, 37:337--348, June 2009.

Digital Library

[11]

M. Neve and J.-P. Seifert. Advances on access-driven cache attacks on aes. In Proceedings of the 13th international conference on Selected areas in cryptography, SAC'06, pages 147--162, Berlin, Heidelberg, 2007. Springer-Verlag.

Digital Library

[12]

D. A. Osvik, A. Shamir, and E. Tromer. Cache attacks and countermeasures: the case of aes. In Topics in Cryptology - CT-RSA 2006, The Cryptographers Track at the RSA Conference 2006, pages 1--20. Springer-Verlag, 2005.

Digital Library

[13]

D. Page. Partitioned cache architecture as a side-channel defence mechanism. Cryptology ePrint Archive, Report 2005/280, 2005.

[14]

C. Percival. Cache missing for fun and profit. In Proc. of BSDCan 2005, 2005.

[15]

M. Prvulovic and J. Torrellas. Reenact: using thread-level speculation mechanisms to debug data races in multithreaded codes. In Proceedings of the 30th annual international symposium on Computer architecture, ISCA '03, pages 110--121, New York, NY, USA, 2003. ACM.

Digital Library

[16]

T. Ristenpart, E. Tromer, H. Shacham, and S. Savage. Hey, you, get off of my cloud: exploring information leakage in third-party compute clouds. In Proceedings of the 16th ACM conference on Computer and communications security, CCS '09, pages 199--212, New York, NY, USA, 2009. ACM.

Digital Library

[17]

B. C. Vattikonda, S. Das, and H. Shacham. Eliminating fine grained timers in xen. In Proceedings of the 3rd ACM workshop on Cloud computing security workshop, CCSW '11, pages 41--46, New York, NY, USA, 2011. ACM.

Digital Library

[18]

Z. Wang and R. Lee. A novel cache architecture with enhanced performance and security. In Microarchitecture, 2008. MICRO-41. 2008 41st IEEE/ACM International Symposium on, pages 83--93, nov. 2008.

Digital Library

[19]

Z. Wang and R. B. Lee. New cache designs for thwarting software cache-based side channel attacks. SIGARCH Comput. Archit. News, 35:494--505, June 2007.

Digital Library

Cited By

Hao SHe JLi WLi TYang GFang WChen W(2025)CSCAD: An Adaptive LightGBM Algorithm to Detect Cache Side-Channel AttacksIEEE Transactions on Dependable and Secure Computing10.1109/TDSC.2024.341537622:1(695-709)Online publication date: 1-Jan-2025
https://dl.acm.org/doi/10.1109/TDSC.2024.3415376
Rauscher FGruss DLuo BLiao XXu JKirda ELie D(2024)Cross-Core Interrupt Detection: Exploiting User and Virtualized IPIsProceedings of the 2024 on ACM SIGSAC Conference on Computer and Communications Security10.1145/3658644.3690242(94-108)Online publication date: 2-Dec-2024
https://dl.acm.org/doi/10.1145/3658644.3690242
Wang MJia SZheng FMa YLin JMeng LMa Z(2024)TF-Timer: Mitigating Cache Side-Channel Attacks in Cloud through a Targeted Fuzzy Timer2024 IEEE Wireless Communications and Networking Conference (WCNC)10.1109/WCNC57260.2024.10571330(1-6)Online publication date: 21-Apr-2024
https://doi.org/10.1109/WCNC57260.2024.10571330
Show More Cited By

TimeWarp: rethinking timekeeping and performance monitoring mechanisms to mitigate side-channel attacks
1. Security and privacy
  1. Systems security

Recommendations

TimeWarp: rethinking timekeeping and performance monitoring mechanisms to mitigate side-channel attacks
ISCA '12: Proceedings of the 39th Annual International Symposium on Computer Architecture

Over the past two decades, several microarchitectural side channels have been exploited to create sophisticated security attacks. Solutions to this problem have mainly focused on fixing the source of leaks either by limiting the flow of information ...
Unraveling timewarp: what all the fuzz is about?
HASP '13: Proceedings of the 2nd International Workshop on Hardware and Architectural Support for Security and Privacy

Timing attacks are a threat to networked computing systems especially the emerging cloud computing infrastructures. The precision timestamp counters present in modern microprocessors is a popularly used side channel source for timing information. These ...
D-ward: source-end defense against distributed denial-of-service attacks

Comments

Information & Contributors

Information

Published In

cover image ACM SIGARCH Computer Architecture News

ACM SIGARCH Computer Architecture News Volume 40, Issue 3

ISCA '12

June 2012

559 pages

ISSN:0163-5964

DOI:10.1145/2366231

Issue’s Table of Contents

ISCA '12: Proceedings of the 39th Annual International Symposium on Computer Architecture
June 2012
584 pages
ISBN:9781450316422
General Chair:
Shih-Lien Lu
Intel
,
Program Chair:
Josep Torrellas
University of Illinois

Copyright © 2012 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 09 June 2012

Published in SIGARCH Volume 40, Issue 3

Check for updates

Qualifiers

Research-article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

142
Total Citations
View Citations
802
Total Downloads

Downloads (Last 12 months)34
Downloads (Last 6 weeks)3

Reflects downloads up to 08 Feb 2025

Other Metrics

View Author Metrics

Citations

Cited By

Hao SHe JLi WLi TYang GFang WChen W(2025)CSCAD: An Adaptive LightGBM Algorithm to Detect Cache Side-Channel AttacksIEEE Transactions on Dependable and Secure Computing10.1109/TDSC.2024.341537622:1(695-709)Online publication date: 1-Jan-2025
https://dl.acm.org/doi/10.1109/TDSC.2024.3415376
Rauscher FGruss DLuo BLiao XXu JKirda ELie D(2024)Cross-Core Interrupt Detection: Exploiting User and Virtualized IPIsProceedings of the 2024 on ACM SIGSAC Conference on Computer and Communications Security10.1145/3658644.3690242(94-108)Online publication date: 2-Dec-2024
https://dl.acm.org/doi/10.1145/3658644.3690242
Wang MJia SZheng FMa YLin JMeng LMa Z(2024)TF-Timer: Mitigating Cache Side-Channel Attacks in Cloud through a Targeted Fuzzy Timer2024 IEEE Wireless Communications and Networking Conference (WCNC)10.1109/WCNC57260.2024.10571330(1-6)Online publication date: 21-Apr-2024
https://doi.org/10.1109/WCNC57260.2024.10571330
Miao YZhang YWu DZhang DTan GZhang RKandemir M(2024)Veiled Pathways: Investigating Covert and Side Channels Within GPU Uncore2024 57th IEEE/ACM International Symposium on Microarchitecture (MICRO)10.1109/MICRO61859.2024.00088(1169-1183)Online publication date: 2-Nov-2024
https://doi.org/10.1109/MICRO61859.2024.00088
Wang MMeng LZheng FLin JJia SMa YFan H(2024)TLTracer: Dynamically Detecting Cache Side Channel Attacks with a Timing Loop TracerICC 2024 - IEEE International Conference on Communications10.1109/ICC51166.2024.10622283(109-114)Online publication date: 9-Jun-2024
https://doi.org/10.1109/ICC51166.2024.10622283
Gonzalez-Gomez JNassar HBauer LHenkel J(2024)LightFAt: Mitigating Control-Flow Explosion via Lightweight PMU-Based Control-Flow Attestation2024 IEEE International Symposium on Hardware Oriented Security and Trust (HOST)10.1109/HOST55342.2024.10545348(222-226)Online publication date: 6-May-2024
https://doi.org/10.1109/HOST55342.2024.10545348
Hao SHe JLi WLi TYang GFang WChen W(2024)CSCAD: An adaptive LightGBM algorithm to detect cache side-channel attacksFuture Generation Computer Systems10.1016/j.future.2024.07.018Online publication date: Jul-2024
https://doi.org/10.1016/j.future.2024.07.018
Priya BRao PParameswari D(2024)Shielding secrets: developing an enigmatic defense system with deep learning against side channel attacksDiscover Sustainability10.1007/s43621-024-00455-45:1Online publication date: 10-Sep-2024
https://doi.org/10.1007/s43621-024-00455-4
Zhang RKim TWeber DSchwarz MCalandrino JTroncoso C(2023)(M)WAIT for itProceedings of the 32nd USENIX Conference on Security Symposium10.5555/3620237.3620644(7267-7284)Online publication date: 9-Aug-2023
https://dl.acm.org/doi/10.5555/3620237.3620644
Kurnia FVenkataramani A(2023)Oblivious PaxosProceedings of the 2023 ACM Symposium on Cloud Computing10.1145/3620678.3624647(65-80)Online publication date: 30-Oct-2023
https://dl.acm.org/doi/10.1145/3620678.3624647
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Figures

Tables

Media

View Issue’s Table of Contents