Search CORE

14,454 research outputs found

Time Protection: the Missing OS Abstraction

Author: Acıiçmez Onur
Acıiçmez Onur
Bomberger Alan C.
Boyd-Wickizer Silas
Bulck Jo Van
Doychev Goran
Ford Bryan
Gras Ben
Hughes-Hallet Deborah
İnci Mehmet Sinan
Kim Taesoo
Kocher Paul
Lipp Moritz
Liu Fangfei
Lynch William L.
Noll Stefan
Percival Colin
van Schaik Stephan
Wu Zhenyu
Yarom Yuval
Yarom Yuval
Yarom Yuval
Zellweger Gerd
Publication venue
Publication date: 15/10/2018
Field of study

Timing channels enable data leakage that threatens the security of computer systems, from cloud platforms to smartphones and browsers executing untrusted third-party code. Preventing unauthorised information flow is a core duty of the operating system, however, present OSes are unable to prevent timing channels. We argue that OSes must provide time protection in addition to the established memory protection. We examine the requirements of time protection, present a design and its implementation in the seL4 microkernel, and evaluate its efficacy as well as performance overhead on Arm and x86 processors

arXiv.org e-Print Archive

Crossref

University of Birmingham Research Portal

Unified Description for Network Information Hiding Methods

Author: Mazurczyk Wojciech
Wendzel Steffen
Zander Sebastian
Publication venue
Publication date: 01/01/2016
Field of study

Until now hiding methods in network steganography have been described in arbitrary ways, making them difficult to compare. For instance, some publications describe classical channel characteristics, such as robustness and bandwidth, while others describe the embedding of hidden information. We introduce the first unified description of hiding methods in network steganography. Our description method is based on a comprehensive analysis of the existing publications in the domain. When our description method is applied by the research community, future publications will be easier to categorize, compare and extend. Our method can also serve as a basis to evaluate the novelty of hiding methods proposed in the future.Comment: 24 pages, 7 figures, 1 table; currently under revie

arXiv.org e-Print Archive

ZENODO

Fraunhofer-ePrints

Research Repository

ARPHA OAI-PMH Endpoint

ARPHA Preprints

A Novel Side-Channel in Real-Time Schedulers

Author: Bobba Rakesh B.
Chen Chien-Ying
Kiyavash Negar
Mohan Sibin
Pellizzoni Rodolfo
Publication venue: 'Institute of Electrical and Electronics Engineers (IEEE)'
Publication date: 09/05/2019
Field of study

We demonstrate the presence of a novel scheduler side-channel in preemptive, fixed-priority real-time systems (RTS); examples of such systems can be found in automotive systems, avionic systems, power plants and industrial control systems among others. This side-channel can leak important timing information such as the future arrival times of real-time tasks.This information can then be used to launch devastating attacks, two of which are demonstrated here (on real hardware platforms). Note that it is not easy to capture this timing information due to runtime variations in the schedules, the presence of multiple other tasks in the system and the typical constraints (e.g., deadlines) in the design of RTS. Our ScheduLeak algorithms demonstrate how to effectively exploit this side-channel. A complete implementation is presented on real operating systems (in Real-time Linux and FreeRTOS). Timing information leaked by ScheduLeak can significantly aid other, more advanced, attacks in better accomplishing their goals

arXiv.org e-Print Archive

Crossref