| Title | FlushTime: Towards Mitigating Flush-based Cache Attacks via Collaborating Flush Instructions and Timers on ARMv8-A |
| Author | |
| Corresponding Author | Zhang, Fengwei |
| DOI | |
| Publication Years | 2023
|
| Conference Name | 18th ACM ASIA Conference on Computer and Communications Security (ASIA CCS)
|
| Source Title | |
| Conference Date | JUL 10-14, 2023
|
| Conference Place | null,Melbourne,AUSTRALIA
|
| Publication Place | 1601 Broadway, 10th Floor, NEW YORK, NY, UNITED STATES
|
| Publisher | |
| Abstract | ["ARMv8-A processors generally utilize optimization techniques such as multi-layer cache, out-of-order execution and branch prediction to improve performance. These optimization techniques are inevitably threatened by cache-related attacks including Flush+Reload, Flush+Flush, Meltdown, Spectre, and their variants. These attacks can break the isolation boundaries between different processes or even between user and kernel spaces. Researchers proposed many defense schemes to resist these cache-related attacks. However, they either need to modify the hardware architecture, have incomplete coverage, or introduce significant performance overhead.","In this paper, we propose FlushTime, a more secure collaborative framework of cache flush instructions and generic timer on ARMv8-A. Based on the instruction/register trap mechanism of ARMv8-A, FlushTime traps cache flush instructions and generic timer from user space into kernel space, and makes them cooperate with each other in kernel space. When a flush instruction is called, the generic timer resolution will be reduced for several time slices. This collaborative mechanism can greatly mitigate the threat of all flush-based cache-related attacks. Since normal applications rarely need to obtain high resolution timestamps immediately after calling a flush instruction, FlushTime does not affect the normal operation of the system. Security and performance evaluations show that FlushTime can resist all flush-based cache-related attacks while introducing an extremely low performance overhead."] |
| Keywords | |
| SUSTech Authorship | First
; Corresponding
|
| Language | English
|
| URL | [Source Record] |
| Indexed By | |
| Funding Project | National Natural Science Foundation of China[62002151]
; Shenzhen Science and Technology Program[SGDX20201103095408029]
|
| WOS Research Area | Computer Science
; Mathematics
; Telecommunications
|
| WOS Subject | Computer Science, Artificial Intelligence
; Mathematics, Applied
; Telecommunications
|
| WOS Accession No | WOS:001053857900016
|
| Data Source | Web of Science
|
| Citation statistics |
Cited Times [WOS]:0
|
| Document Type | Conference paper |
| Identifier | http://kc.sustech.edu.cn/handle/2SGJ60CL/559256 |
| Department | Southern University of Science and Technology 工学院_计算机科学与工程系 |
| Affiliation | 1.Southern Univ Sci & Technol, Res Inst Trustworthy Autonomous Syst, Shenzhen, Peoples R China 2.Southern Univ Sci & Technol, Dept Comp Sci & Engn, Shenzhen, Peoples R China |
| First Author Affilication | Southern University of Science and Technology; Department of Computer Science and Engineering |
| Corresponding Author Affilication | Southern University of Science and Technology; Department of Computer Science and Engineering |
| First Author's First Affilication | Southern University of Science and Technology |
| Recommended Citation GB/T 7714 |
Ge, Jingquan,Zhang, Fengwei. FlushTime: Towards Mitigating Flush-based Cache Attacks via Collaborating Flush Instructions and Timers on ARMv8-A[C]. 1601 Broadway, 10th Floor, NEW YORK, NY, UNITED STATES:ASSOC COMPUTING MACHINERY,2023.
|
| Files in This Item: | There are no files associated with this item. | |||||
Items in the repository are protected by copyright, with all rights reserved, unless otherwise indicated.
Edit Comment