nach oben

International Journal of Information Security

Erschienen in:

22.12.2016 | Regular Contribution

Development of dynamic protection against timing channels

verfasst von: Shahrzad Kananizadeh, Kirill Kononenko

Erschienen in: International Journal of Information Security | Ausgabe 6/2017

Einloggen

Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.

search-config

KI-gestützte Suche

Aus

Abstract

Information systems face many threats, such as covert channels, which declassify hidden information by, e.g., analyzing the program execution time. Such threats exist at various stages of the execution of instructions. Even if software developers are able to neutralize these threats in source code, new attack vectors can arise in compiler-generated machine code from these representations. Existing approaches for preventing vulnerabilities have numerous restrictions related to both their functionality and the range of threats that can be found and removed. This study presents a technique for removing threats and generating safer code using dynamic compilation in an execution environment by combining information from program analysis of the malicious code and re-compiling such code to run securely. The proposed approach stores summary information in the form of rules that can be shared among analyses. The annotations enable us to conduct the analyses to mitigate threats. Developers can update the analyses and control the volume of resources that are allocated to perform these analyses by changing the precision. The authors’ experiments show that the binary code created by applying the suggested method is of high quality.

Vorheriger Artikel An efficient homomorphic MAC-based scheme against data and tag pollution attacks in network coding-enabled wireless networks

Nächster Artikel On the efficiency of user identification: a system-based approach

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Cowan, C., Wagle, F., Pu, C., Beattie, S., Walpole, J.: Buffer overflows: attacks and defenses for the vulnerability of the decade. In: DARPA Information Survivability Conference and Exposition, 2000. DISCEX ’00. Proceedings, vol. 2, pp. 119–129 (2000)

Homoliak, I., Ovsonka, D., Koranda, K., Hanacek, P.: Characteristics of buffer overflow attacks tunneled in http traffic. In 2014 International Carnahan Conference on Security Technology (ICCST), pp. 1–6 (2014)

Liu, J.J., Wang, Y.J.: Study on computer network intrusion effect evaluation. In: 2013 Third International Conference on Instrumentation, Measurement, Computer, Communication and Control (IMCCC), pp. 349–353 (2013)

Khadka, R., Batlajery, B.V., Saeidi, A.M., Jansen, S., Hage, J.: How do professionals perceive legacy systems and software modernization? In: Proceedings of the 36th International Conference on Software Engineering, Ser. ICSE 2014, pp. 36–47. ACM, New York (2014). doi:10.1145/2568225.2568318

Wang, S., Lo, D.: Version history, similar report, and structure: putting them together for improved bug localization. In: Proceedings of the 22nd International Conference on Program Comprehension, Ser. ICPC 2014, pp. 53–63. ACM, New York (2014). doi:10.1145/2597008.2597148

Chen, T.-H., Nagappan, M., Shihab, E., Hassan, A.E.: An empirical study of dormant bugs. In: Proceedings of the 11th Working Conference on Mining Software Repositories, Ser. MSR 2014, pp. 82–91. ACM, New York (2014). doi:10.1145/2597073.2597108

Camilo, F., Meneely, A., Nagappan, M.: Do bugs foreshadow vulnerabilities? A study of the chromium project. In: Proceedings of the 2015 IEEE/ACM 12th Working Conference on Mining Software Repositories, Ser. MSR ’15. pp. 269–279. IEEE Computer Society, Washington (2015). doi:10.1109/MSR.2015.32

Zuo, Z.: Efficient statistical debugging via hierarchical instrumentation. In: Proceedings of the 2014 International Symposium on Software Testing and Analysis, Ser. ISSTA 2014, pp. 457–460. ACM, New York (2014). doi:10.1145/2610384.2631833

Cleemput, J.V., Coppens, B., DeSutter, B.: Compiler mitigations for time attacks on modern x86 processors. ACM Trans. Archit. Code Optim. 8(4), 23:1–23:20 (2012). doi:10.1145/2086696.2086702 CrossRef

10.

Gorantla, S., Kadloor, S., Kiyavash, N., Coleman, T., Moskowitz, I., Kang, M.: Characterizing the efficacy of the nrl network pump in mitigating covert timing channels. IEEE Trans. Inf. Forensics Secur. 7(1), 64–75 (2012)CrossRef

11.

Zhang, D., Askarov, A., Myers, A.C.: Language-based control and mitigation of timing channels. SIGPLAN Not. 47(6), 99–110 (2012). doi:10.1145/2345156.2254078 CrossRef

12.

Shene, C.-K.: A comparative study of linked list sorting algorithms. 3C ON-LINE 3(2), 4–9 (1996). doi:10.1145/225890.225893 CrossRef

13.

Makki, B., Beygi, L., Eriksson, T.: Channel capacity bounds in the presence of quantized channel state information. EURASIP J. Wirel. Commun. Netw. (2010). doi:10.1155/2010/495014

14.

Shirokov, M.E.: Conditions for coincidence of the classical capacity and entanglement-assisted capacity of a quantum channel. Probl. Inf. Transm. 48(2), 85–101 (2012). doi:10.1134/S0032946012020019 MathSciNetCrossRefMATH

15.

Gianvecchio, S., Wang, H.: An entropy-based approach to detecting covert timing channels. IEEE Trans. Dependable Secur. Comput. 8(6), 785–797 (2011). doi:10.1109/TDSC.2010.46 CrossRef

16.

Kononenko, K.: A unified approach to identifying and healing vulnerabilities in x86 machine code. In: Proceedings of the 18th Annual International Conference on Mobile Computing and Networking, Ser. Mobicom ’12, pp. 397–398. ACM, New York (2012). doi:10.1145/2348543.2348593

17.

Kononenko, K.: Demo: dynamic neutralization of data leakages. In: Proceedings of the 2015 Workshop on Wireless of the Students, by the Students,&; for the Students, Ser. S3 ’15. pp. 21–21. ACM, New York (2015). doi:10.1145/2801694.2802141

18.

Kononenko, K.: An approach to error correction in program code using dynamic optimization in a virtual execution environment. J. Supercomput. 72(3), 845–873 (2016). doi:10.1007/s11227-015-1616-4 CrossRef

19.

Das, S.K., Kant, K., Zhang, N.: Handbook on Securing Cyber-Physical Critical Infrastructure. Morgan Kaufmann Publishers Inc., San Francisco (2012)

20.

Stepanov, E., Serebryany, K.: Memorysanitizer: fast detector of uninitialized memory use in C++. In: Proceedings of the 13th Annual IEEE/ACM International Symposium on Code Generation and Optimization, Ser. CGO ’15, pp. 46–55. IEEE Computer Society, Washington (2015). http://dl.acm.org/citation.cfm?id=2738600.2738607

21.

Perkins, J.H., Kim, S., Larsen, S., Amarasinghe, S., Bachrach, J., Carbin, M., Pacheco, C., Sherwood, F., Sidiroglou, S., Sullivan, G., Wong, W.-F., Zibin, Y., Ernst, M.D., Rinard, M.: Automatically patching errors in deployed software. In: Proceedings of the ACM SIGOPS 22nd Symposium on Operating Systems Principles, Ser. SOSP ’09, pp. 87–102. ACM, New York (2009). doi:10.1145/1629575.1629585

22.

Evans, N.S., Benameur, A., Elder, M.C.: Large-scale evaluation of a vulnerability analysis framework. In: Proceedings of the 7th USENIX Conference on Cyber Security Experimentation and Test, Ser. CSET’14, pp. 3–3. USENIX Association, Berkeley (2014). http://dl.acm.org/citation.cfm?id=2671214.2671217

23.

Ferreira, K.B., Riesen, R., Bridges, P., Arnold, D., Brightwell, R.: Accelerating incremental checkpointing for extreme-scale computing. Future Gener. Comput. Syst. 30, 66–77 (2014). doi:10.1016/j.future.2013.04.017 CrossRef

24.

Smith, E.K., Barr, E.T., LeGoues, C., Brun, Y.: Is the cure worse than the disease? Overfitting in automated program repair. In: Proceedings of the 2015 10th Joint Meeting on Foundations of Software Engineering, Ser. ESEC/FSE 2015, pp. 532–543. ACM, New York (2015). doi:10.1145/2786805.2786825

25.

Monperrus, M.: A critical review of “automatic patch generation learned from human-written patches”: Essay on the problem statement and the evaluation of automatic software repair. In: Proceedings of the 36th International Conference on Software Engineering, Ser. ICSE 2014. pp. 234–242. ACM, New York (2014). doi:10.1145/2568225.2568324

26.

Raggo, M.T., Hosmer, C.: Data Hiding: Exposing Concealed Data in Multimedia, Operating Systems, Mobile Devices and Network Protocols, 1st edn. Syngress Publishing, Boston (2013)

27.

Wang, C., Ju, S.: The dilemma of covert channels searching. In: Proceedings of the 8th International Conference on Information Security and Cryptology, Ser. ICISC’05, pp. 169–174. Springer, Berlin (2006). doi:10.1007/11734727_15

28.

Pandey, M., Sarda, S.: LLVM Cookbook. Packt Publishing, Birmingham (2015)

29.

Dick, J.R., Kent, K.B., Libby, J.C.: A quantitative analysis of the.net common language runtime. J. Syst. Archit. 54(7), 679–696 (2008). doi:10.1016/j.sysarc.2007.11.004 CrossRef

30.

Kononenko, K.: Libjit linear scan: a model for fast and efficient compilation. Int. Rev. Model. Simul. 3(5), 1035–1044 (2010)

31.

Kononenko, K.: Fast compilation in o(n). In: Proceedings of the 2010 International Conference on Theoretical and Mathematical Foundations of Computer Science, Ser. TMFCS ’10, pp. 51–56 (2010)

32.

Aviram, A., Weng, S.-C., Hu, S., Ford, B.: Efficient system-enforced deterministic parallelism. Commun. ACM 55(5), 111–119 (2012). doi:10.1145/2160718.2160742 CrossRef

33.

Nuzman, D., Eres, R., Dyshel, S., Zalmanovici, M., Castanos, J.: Jit technology with C/C++: Feedback-directed dynamic recompilation for statically compiled languages. ACM Trans. Archit. Code Optim. 10(4), 59:1–59:25 (2013). doi:10.1145/2541228.2555315

34.

Brandauer, S., Clarke, D., Wrigstad, T.: Disjointness domains for fine-grained aliasing. SIGPLAN Not. 50(10), 898–916 (2015). doi:10.1145/2858965.2814280 CrossRef

35.

Lee, W., Hong, H., Yi, K., Cheon, J.H.: Static analysis with set-closure in secrecy. In: Static analysis. 22nd International Symposium, SAS 2015, Saint-Malo, France, September 9–11, 2015, Proceedings. pp. 18–35. Springer, Berlin (2015). doi:10.1007/978-3-662-48288-9_2

36.

Köpf, B., Smith, G.: Vulnerability bounds and leakage resilience of blinded cryptography under timing attacks. In: Proceedings of the 2010 23rd IEEE Computer Security Foundations Symposium, Ser. CSF ’10, pp. 44–56. IEEE Computer Society, Washington (2010). doi:10.1109/CSF.2010.11

37.

Giles, J., Hajek, B.: An information-theoretic and game-theoretic study of timing channels. IEEE Trans. Inf. Theory 48, 2455–2477 (2002)MathSciNetCrossRefMATH

38.

Wray, J.: An analysis of covert timing channels. In: 1991 IEEE Computer Society Symposium on Research in Security and Privacy, 1991. Proceedings, pp. 2–7 (1991)

39.

Li, P., Gao, D., Reiter, M.: Mitigating access-driven timing channels in clouds using stopwatch. In: 2013 43rd Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), pp. 1–12 (2013)

40.

Zhang, D., Askarov, A., Myers, A.C.: Predictive mitigation of timing channels in interactive systems. In: Proceedings of the 18th ACM Conference on Computer and Communications Security, Ser. CCS ’11, pp. 563–574. ACM, New York (2011). doi:10.1145/2046707.2046772

41.

Davies, T., Karlsson, C., Liu, H., Ding, C., Chen, Z.: High performance linpack benchmark: a fault tolerant implementation without checkpointing. In: Proceedings of the International Conference on Supercomputing, Ser. ICS ’11, pp. 162–171. ACM, New York (2011). doi:10.1145/1995896.1995923

42.

Coppens, B., Verbauwhede, I., Bosschere, K.D., Sutter, B.D.: Practical mitigations for timing-based side-channel attacks on modern x86 processors. In: 2012 IEEE Symposium on Security and Privacy, pp. 45–60 (2009)

Titel: Development of dynamic protection against timing channels
verfasst von: Shahrzad Kananizadeh
Kirill Kononenko
Publikationsdatum: 22.12.2016
Verlag: Springer Berlin Heidelberg
Erschienen in: International Journal of Information Security / Ausgabe 6/2017
Print ISSN: 1615-5262
Elektronische ISSN: 1615-5270
DOI: https://doi.org/10.1007/s10207-016-0356-7

Springer Professional

Abstract

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Technik"

Springer Professional "Wirtschaft+Technik"

Springer Professional "Wirtschaft"

Weitere Artikel der Ausgabe 6/2017

rPIR: ramp secret sharing-based communication-efficient private information retrieval

An efficient homomorphic MAC-based scheme against data and tag pollution attacks in network coding-enabled wireless networks

Periodicity in software vulnerability discovery, patching and exploitation

Secure computation of hidden Markov models and secure floating-point arithmetic in the malicious model

On the efficiency of user identification: a system-based approach