loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Authors: Abdullah Albalawi ; Vassilios G. Vassilakis and Radu Calinescu

Affiliation: Department of Computer Science, University of York, U.K.

Keyword(s): Side-channel Attacks, Cache Attacks, Prime+Probe, Flush+Reload, Flush+Flush.

Abstract: We introduce a side-channel attack detection and protection method that combines dynamic and static analysis. The dynamic analysis uses Linux Perf to obtain readings from 13 hardware performance counters related to the shared cache. Based on these readings, the virtual machine (VM) behaviour is then classified into suspicious or benign using logistic regression classification. As a second step, the static analysis extracts the executable files from the disk image or the RAM image of the suspicious VM. It then checks whether these files contain operating codes for side-channel attacks. Based on this, the threat level of these files is determined using the SoftMax classification algorithm; we have four threat levels in total. After that, VMs that pose a threat to the shared environment are excluded. As a hypervisor, we employed KVM (Kernel-based Virtual Machine), and as guest operating systems, we utilized Linux Ubuntu 18.04.5 LTS (64bits). We then conducted experiments on several host machines, namely Ubuntu 18.04.5 LTS, Debian 10, and CentOS 8, with various processor models. The accuracy of detecting suspicious behaviour and classifying the threat level was recorded as 96%– 99% with between 0.6%–25% CPU overheads for dynamic and static analysis. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.135.202.168

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Albalawi, A. ; Vassilakis, V. and Calinescu, R. (2022). Protecting Shared Virtualized Environments against Cache Side-channel Attacks. In Proceedings of the 8th International Conference on Information Systems Security and Privacy - ICISSP; ISBN 978-989-758-553-1; ISSN 2184-4356, SciTePress, pages 507-514. DOI: 10.5220/0010897800003120

@conference{icissp22,
author={Abdullah Albalawi and Vassilios G. Vassilakis and Radu Calinescu},
title={Protecting Shared Virtualized Environments against Cache Side-channel Attacks},
booktitle={Proceedings of the 8th International Conference on Information Systems Security and Privacy - ICISSP},
year={2022},
pages={507-514},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010897800003120},
isbn={978-989-758-553-1},
issn={2184-4356},
}

TY - CONF

JO - Proceedings of the 8th International Conference on Information Systems Security and Privacy - ICISSP
TI - Protecting Shared Virtualized Environments against Cache Side-channel Attacks
SN - 978-989-758-553-1
IS - 2184-4356
AU - Albalawi, A.
AU - Vassilakis, V.
AU - Calinescu, R.
PY - 2022
SP - 507
EP - 514
DO - 10.5220/0010897800003120
PB - SciTePress