Timing leaks and coarse-grained clocks

Panagiotis Vasilikos; Hanne Riis Nielson; Flemming Nielson; Boris Kopf

doi:10.1109/CSF.2019.00010

Timing leaks and coarse-grained clocks

Panagiotis Vasilikos, Hanne Riis Nielson, Flemming Nielson, Boris Kopf

Department of Applied Mathematics and Computer Science

Microsoft USA

Research output: Chapter in Book/Report/Conference proceeding › Article in proceedings › Research › peer-review

63 Downloads (Orbit)

Abstract

Timing-based side-channel attacks have matured from an academic exercise to a powerful attack vector in the hand of real-world adversaries. A widely deployed countermeausure against such attacks is to reduce the accuracy of the clocks that are available to adversaries. While a number of high-profile attacks show that this mitigation can be side-stepped, there has not been a principled analysis of the degree of security it provides until now. In this paper, we perform the first information-flow analysis with respect to adversaries with coarse-grained clocks. To this end, we define an adversary model that is parametric in the granularity of the clock and connect it with a system model based on timed automata. We present algorithms for translating such a system to an information-theoretic channel, which enables us to analyze the leakage using standard techniques from quantitative information-flow analysis. We use our techniques to derive insights about the effect of reducing clock resolution on security. In particular, (1) we show that a coarse-grained clock might leak more than a fine-grained one, (2) we give a sufficient condition for when increasing the grain of the clock we achieve better security, and (3) we show that the attack techniques used in the literature form a strict hierarchy in terms of the information an adversary can extract using them. Finally, we illustrate the expressiveness of our development on a case study of a system that uses RSA signatures.

Original language	English
Title of host publication	Proceedings of 2019 IEEE 32^nd Computer Security Foundations Symposium
Publisher	IEEE Computer Society Press
Publication date	1 Jun 2019
Pages	32-47
Article number	8823781
ISBN (Electronic)	9781728114064
DOIs	https://doi.org/10.1109/CSF.2019.00010
Publication status	Published - 1 Jun 2019
Event	2019 IEEE 32nd Computer Security Foundations Symposium - Hoboken, United States Duration: 25 Jun 2019 → 28 Jun 2019 Conference number: 32 https://ieeexplore.ieee.org/xpl/conhome/8804915/proceeding

Conference

Conference	2019 IEEE 32nd Computer Security Foundations Symposium
Number	32
Country/Territory	United States
City	Hoboken
Period	25/06/2019 → 28/06/2019
Sponsor	IEEE
Internet address	https://ieeexplore.ieee.org/xpl/conhome/8804915/proceeding

Series	Proceedings - IEEE Computer Security Foundations Symposium
Volume	2019-June
ISSN	1940-1434

Keywords

Quantitative information flow
Timed automata
Timing channels

Access to Document

10.1109/CSF.2019.00010

FulltextAccepted author manuscript, 419 KB

OpenUrl availability

Full text

Cite this

@inproceedings{c4c9dd611f7d49babd77159c094efd75,

title = "Timing leaks and coarse-grained clocks",

abstract = "Timing-based side-channel attacks have matured from an academic exercise to a powerful attack vector in the hand of real-world adversaries. A widely deployed countermeausure against such attacks is to reduce the accuracy of the clocks that are available to adversaries. While a number of high-profile attacks show that this mitigation can be side-stepped, there has not been a principled analysis of the degree of security it provides until now. In this paper, we perform the first information-flow analysis with respect to adversaries with coarse-grained clocks. To this end, we define an adversary model that is parametric in the granularity of the clock and connect it with a system model based on timed automata. We present algorithms for translating such a system to an information-theoretic channel, which enables us to analyze the leakage using standard techniques from quantitative information-flow analysis. We use our techniques to derive insights about the effect of reducing clock resolution on security. In particular, (1) we show that a coarse-grained clock might leak more than a fine-grained one, (2) we give a sufficient condition for when increasing the grain of the clock we achieve better security, and (3) we show that the attack techniques used in the literature form a strict hierarchy in terms of the information an adversary can extract using them. Finally, we illustrate the expressiveness of our development on a case study of a system that uses RSA signatures.",

keywords = "Quantitative information flow, Timed automata, Timing channels",

author = "Panagiotis Vasilikos and Nielson, {Hanne Riis} and Flemming Nielson and Boris Kopf",

year = "2019",

month = jun,

day = "1",

doi = "10.1109/CSF.2019.00010",

language = "English",

series = "Proceedings - IEEE Computer Security Foundations Symposium",

publisher = "IEEE Computer Society Press",

pages = "32--47",

booktitle = "Proceedings of 2019 IEEE 32nd Computer Security Foundations Symposium",

note = "2019 IEEE 32nd Computer Security Foundations Symposium, CSF 2019 ; Conference date: 25-06-2019 Through 28-06-2019",

url = "https://ieeexplore.ieee.org/xpl/conhome/8804915/proceeding",

}

Vasilikos, P, Nielson, HR, Nielson, F & Kopf, B 2019, Timing leaks and coarse-grained clocks. in Proceedings of 2019 IEEE 32^nd Computer Security Foundations Symposium., 8823781, IEEE Computer Society Press, Proceedings - IEEE Computer Security Foundations Symposium, vol. 2019-June, pp. 32-47, 2019 IEEE 32nd Computer Security Foundations Symposium, Hoboken, New Jersey, United States, 25/06/2019. https://doi.org/10.1109/CSF.2019.00010

Timing leaks and coarse-grained clocks. / Vasilikos, Panagiotis; Nielson, Hanne Riis; Nielson, Flemming et al.
Proceedings of 2019 IEEE 32^nd Computer Security Foundations Symposium. IEEE Computer Society Press, 2019. p. 32-47 8823781 (Proceedings - IEEE Computer Security Foundations Symposium, Vol. 2019-June).

Research output: Chapter in Book/Report/Conference proceeding › Article in proceedings › Research › peer-review

TY - GEN

T1 - Timing leaks and coarse-grained clocks

AU - Vasilikos, Panagiotis

AU - Nielson, Hanne Riis

AU - Nielson, Flemming

AU - Kopf, Boris

N1 - Conference code: 32

PY - 2019/6/1

Y1 - 2019/6/1

N2 - Timing-based side-channel attacks have matured from an academic exercise to a powerful attack vector in the hand of real-world adversaries. A widely deployed countermeausure against such attacks is to reduce the accuracy of the clocks that are available to adversaries. While a number of high-profile attacks show that this mitigation can be side-stepped, there has not been a principled analysis of the degree of security it provides until now. In this paper, we perform the first information-flow analysis with respect to adversaries with coarse-grained clocks. To this end, we define an adversary model that is parametric in the granularity of the clock and connect it with a system model based on timed automata. We present algorithms for translating such a system to an information-theoretic channel, which enables us to analyze the leakage using standard techniques from quantitative information-flow analysis. We use our techniques to derive insights about the effect of reducing clock resolution on security. In particular, (1) we show that a coarse-grained clock might leak more than a fine-grained one, (2) we give a sufficient condition for when increasing the grain of the clock we achieve better security, and (3) we show that the attack techniques used in the literature form a strict hierarchy in terms of the information an adversary can extract using them. Finally, we illustrate the expressiveness of our development on a case study of a system that uses RSA signatures.

AB - Timing-based side-channel attacks have matured from an academic exercise to a powerful attack vector in the hand of real-world adversaries. A widely deployed countermeausure against such attacks is to reduce the accuracy of the clocks that are available to adversaries. While a number of high-profile attacks show that this mitigation can be side-stepped, there has not been a principled analysis of the degree of security it provides until now. In this paper, we perform the first information-flow analysis with respect to adversaries with coarse-grained clocks. To this end, we define an adversary model that is parametric in the granularity of the clock and connect it with a system model based on timed automata. We present algorithms for translating such a system to an information-theoretic channel, which enables us to analyze the leakage using standard techniques from quantitative information-flow analysis. We use our techniques to derive insights about the effect of reducing clock resolution on security. In particular, (1) we show that a coarse-grained clock might leak more than a fine-grained one, (2) we give a sufficient condition for when increasing the grain of the clock we achieve better security, and (3) we show that the attack techniques used in the literature form a strict hierarchy in terms of the information an adversary can extract using them. Finally, we illustrate the expressiveness of our development on a case study of a system that uses RSA signatures.

KW - Quantitative information flow

KW - Timed automata

KW - Timing channels

U2 - 10.1109/CSF.2019.00010

DO - 10.1109/CSF.2019.00010

M3 - Article in proceedings

AN - SCOPUS:85072617176

T3 - Proceedings - IEEE Computer Security Foundations Symposium

SP - 32

EP - 47

BT - Proceedings of 2019 IEEE 32nd Computer Security Foundations Symposium

PB - IEEE Computer Society Press

T2 - 2019 IEEE 32nd Computer Security Foundations Symposium

Y2 - 25 June 2019 through 28 June 2019

ER -

Timing leaks and coarse-grained clocks

Abstract

Conference

Keywords

Access to Document

OpenUrl availability

Fingerprint

Cite this