Controlled-Channel Attacks: Deterministic Side Channels for Untrusted Operating Systems
来源:互联网 发布:linux date 北京时间 编辑:程序博客网 时间:2024/06/09 15:23
本PPT是对发表在Security&Privacy 2015 上的一篇文章的研读和解析,该论文介绍了一种针对InkTag,Haven两类主流shielding system提出的一种确定性控制侧信道攻击。Inktag和Haven主要针对不可信的云主机,云OS,利用可信硬件(hypervisor和Intel SGX)为云端敏感应用和隐私数据提供隔离保障。该攻击基于操作系统敌手对敏感应用的页错误中断的劫持,从页错误序列中推导敏感应用的内存访问模式从而窥探隐私。该攻击在两类shielding system上成功从三类敏感应用(Free Type, Hunspell, Libjpeg)导出了大量文本和图片数据,并破解了Windows 8.1 ASLR保护机制。
本文成果验证了针对不可信操作系统对上层敏感应用进行保护的困难性,在系统敌手拥有足够控制权的时候,InkTag,Haven的强隔离保护也可能失效。
0 0
- Controlled-Channel Attacks: Deterministic Side Channels for Untrusted Operating Systems
- Serial Programming Guide for POSIX Operating Systems
- Serial Programming Guide for POSIX Operating Systems
- Serial Programming Guide for POSIX Operating Systems
- Serial Programming Guide for POSIX Operating Systems
- Serial Programming Guide for POSIX Operating Systems
- Serial Programming Guide for POSIX Operating Systems
- Serial Programming Guide for POSIX Operating Systems
- Serial Programming Guide for POSIX Operating Systems
- Serial Programming Guide for POSIX Operating Systems
- Serial Programming Guide for POSIX Operating Systems
- Serial Programming Guide for POSIX Operating Systems
- Operating Systems
- Operating Systems
- Serial Programming Guide for POSIX Operating Systems(1)
- Serial Programming Guide for POSIX Operating Systems(2)
- Serial Programming Guide for POSIX Operating Systems(3)
- Serial Programming Guide for POSIX Operating Systems(4)
- iOS开发:关于automaticallyAdjustsScrollViewInsets的使用和注意事项
- python 中 字符串的应用
- HDU
- at 17:00 Shutdown -s -t 60
- 深入理解拉格朗日乘子法(Lagrange Multiplier) 和KKT条件
- Controlled-Channel Attacks: Deterministic Side Channels for Untrusted Operating Systems
- PHP实现http与https转化
- springmvc返回路径错误的问题
- ESB和SOAP的概念
- iOS中的RunLoop
- android ffmpeg neno优化
- 黑匣子
- Dubbo+Zookeeper+Spring整合应用篇-Dubbo基于Zookeeper实现分布式服务
- Autofuc None of the constructors found with 'Autofac.Core.Activators.Reflection.DefaultConstructor