Back to Search
Start Over
More Secure Collaborative APIs Resistant to Flush+Reload and Flush+Flush Attacks on ARMv8-A
- Source :
- APSEC
- Publication Year :
- 2019
- Publisher :
- IEEE, 2019.
-
Abstract
- With the popularity of smart devices such as mobile phones and tablets, the security problem of the widely used ARMv8-A processor has received more and more attention. Flush+Reload and Flush+Flush cache attacks have become two of the most important security threats due to their low noise and high resolution. In order to resist Flush+Reload and Flush+Flush attacks, researchers proposed many defense methods. However, these existing methods have various shortcomings. The runtime defense methods using hardware performance counters cannot detect attacks fast enough, effectively detect Flush+Flush or avoid a high false positive rate. Static code analysis schemes are powerless for obfuscation techniques. The approaches of permanently reducing the resolution can only be utilized on browser products and cannot be applied in the system. In this paper, we design two more secure collaborative APIs—flush operation API and high resolution time API—which can resist Flush+Reload and Flush+Flush attacks. When the flush operation API is called, the high resolution time API temporarily reduces its resolution and automatically restores. Moreover, the flush operation API also has the ability to detect and handle suspected Flush+Reload and Flush+Flush attacks. The attack and performance comparison experiments prove that the two APIs we designed are safer and the performance losses are acceptable.
- Subjects :
- Hardware_MEMORYSTRUCTURES
business.industry
Computer science
High resolution
Static program analysis
0102 computer and information sciences
02 engineering and technology
ComputerSystemsOrganization_PROCESSORARCHITECTURES
01 natural sciences
Low noise
Obfuscation (software)
010201 computation theory & mathematics
Embedded system
SAFER
Performance comparison
0202 electrical engineering, electronic engineering, information engineering
020201 artificial intelligence & image processing
Cache
business
Hardware_REGISTER-TRANSFER-LEVELIMPLEMENTATION
Subjects
Details
- Database :
- OpenAIRE
- Journal :
- 2019 26th Asia-Pacific Software Engineering Conference (APSEC)
- Accession number :
- edsair.doi...........69d08ca870c0fde82e0b56d8211fbbde
- Full Text :
- https://doi.org/10.1109/apsec48747.2019.00062