Write a Blog >>
PLDI 2017
Sun 18 - Fri 23 June 2017 Barcelona, Spain
co-located with PLDI, ECOOP, Curry On, DEBS, LCTES and ISMM
PLDI, ECOOP, Curry On, DEBS, LCTES and ISMM (series) / PLDI 2017 (series) / PLDI Research Papers /

Rigorous Analysis of Software Countermeasures against Cache Attacks

Goran Doychev, Boris Köpf
PLDI 2017 PLDI Research Papers
Tue 20 Jun 2017 12:05 - 12:30 at Aula Master - Static Analysis and Security Chair(s): Mayur Naik

CPU caches introduce variations into the execution time of programs that can be exploited by adversaries to recover private information about users or cryptographic keys.

Establishing the security of countermeasures against this threat often requires intricate reasoning about the interactions of program code, memory layout, and hardware architecture and has so far only been done for restricted cases.

In this paper we devise novel techniques that provide support for bit-level and arithmetic reasoning about memory accesses in the presence of dynamic memory allocation. These techniques enable us to perform the first rigorous analysis of widely deployed software countermeasures against cache attacks on modular exponentiation, based on executable code.

small-avatar
Goran Doychev
IMDEA Software Institute
Boris Köpf
Boris Köpf
IMDEA Software Institute, Spain
Spain

Tue 20 Jun

pldi-2017-papers
10:50 - 12:30: PLDI Research Papers - Static Analysis and Security at Aula Master
Chair(s): Mayur NaikGeorgia Tech
pldi-2017-papers10:50 - 11:15
Talk
Timos AntonopoulosYale University, Paul GazzilloYale University, Michael HicksUniversity of Maryland, College Park, Eric KoskinenYale University, Tachio TerauchiJAIST, Shiyi WeiUniversity of Maryland, College Park
Media Attached
pldi-2017-papers11:15 - 11:40
Talk
Qinheping HuUniversity of Wisconsin-Madison, Loris D'AntoniUniversity of Wisconsin–Madison
Media Attached
pldi-2017-papers11:40 - 12:05
Talk
Peter OhmannUniversity of Wisconsin - Madison, Alexander L. BrooksUniversity of Wisconsin, Madison, Loris D'AntoniUniversity of Wisconsin–Madison, Ben LiblitUniversity of Wisconsin–Madison
Pre-print Media Attached
pldi-2017-papers12:05 - 12:30
Talk
Goran DoychevIMDEA Software Institute, Boris KöpfIMDEA Software Institute, Spain
Media Attached