Cache-Collision Timing Attacks Against AES

Jul 30, 2012

570 likes | 706 Vues

Side Channel Cryptanalysis. Definition: Any attack on a cryptosystem using information leaked given off as a byproduct of the physical implementation of the cryptosystem, rather than a theoretical weakness.Exploitable side-channels:Power usageCache accessesNoiseHeatTime. . . Brief History

Share Presentation

Embed Code

Link

roana

Télécharger la présentation

Cache-Collision Timing Attacks Against AES

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

1. Cache-Collision Timing Attacks Against AES Joseph Bonneau Stanford University jbonneau@stanford.edu

SSH Timing Attacks

"Using encryption on the Internet is the equivalent of arranging an armored car to deliver credit-card information from someone living in a cardboard box to someone living on a park bench" - Gene Spafford , CERIAS @ Purdue SSH Timing Attacks Elliot Metsger emetsger@jhu.edu

1.06k views • 72 slides

Internet Cache Pollution Attacks and Countermeasures

Internet Cache Pollution Attacks and Countermeasures. Yan Gao , Leiwen Deng, Aleksandar Kuzmanovic, and Yan Chen. Electrical Engineering and Computer Science Department Northwestern University . Outline. Motivation Pollution Attacks Evaluation of Pollution Effects

542 views • 22 slides

Timing Attacks to RSA

Timing Attacks to RSA. Presented by Zhanxiang. Agenda. Background of Timing Attack Case study: David Brumley and Dan Boneh, “ Remote Timing Attacks are Practical ” (UC Berkeley). What is Timing Attack?.

980 views • 26 slides

Protection Against Bomb Attacks

Protection Against Bomb Attacks. Building Security Measures. You should ensure that a thorough survey is made of each building, the nature of its construction and the surrounding area. Surrounding Area. Covering open basement area with wire mesh and/or illuminating it .

284 views • 20 slides

AES Side Channel Attacks

AES Side Channel Attacks. Biru Cui Sam Skalicky. Outline. AES algorithm Side channel attacks Side channel attack against AES Cache-collision timing attack against AES Countermeasures. AES Algorithm. Key Expansion Initial Round Add Round Key – bitwise xor Rounds Sub Bytes - Sbox

895 views • 37 slides

Attacks Against Tor

Attacks Against Tor. Low-Resource Routing. Note. Those experiments has been taken in 08/2006 Based on TOR version 0.1.1.23 with 420 nodes Now TOR version is 3.5.3 with 5553 nodes. The advantage became a backdoor.

371 views • 20 slides

Timing attacks on MAC verification

Online Cryptography Course Dan Boneh. Collision resistance. Timing attacks on MAC verification. Warning: verification timing attacks [L’09]. Example: Keyczar crypto library (Python) [simplified] def Verify (key, msg , sig_bytes ):

273 views • 7 slides

Timing-Predictability of Cache Replacement Policies

Timing-Predictability of Cache Replacement Policies. Jan Reineke - Daniel Grund Christoph Berg - Reinhard Wilhelm AVACS Virtual Seminar, January 12th 2007. TexPoint fonts used in EMF. Read the TexPoint manual before you delete this box.: A A A A. distribution. time.

492 views • 33 slides

SSH Keystroke Timing Attacks

SSH Keystroke Timing Attacks. Mike Hogye Thad Hughes Josh Sarfaty Joe Wolf. SSH. The S ecure SH ell protocol was created by Tatu Ylönen and others to provide encrypted data transfers between remote machines. Mmmm…SSH. SSH Weaknesses. SSH can leak information about passwords

362 views • 19 slides

Timing Analysis of Keystrokes and Timing Attacks on SSH

Timing Analysis of Keystrokes and Timing Attacks on SSH. D. Song, D. Wagner, and X. Tian 10th USENIX Security Symposium, 2001 Presented by: Rui Peng. Outline. Secure Shell (SSH) weaknesses Analysis of user keystroke patterns Attack using inter-keystroke timing Performance evaluation

408 views • 18 slides

Remote Timing Attacks are Practical

Remote Timing Attacks are Practical. David Brumley dbrumley@stanford.edu Dan Boneh dabo@crypto.stanford.edu [Modified by Somesh Jha]. Various Types of Attacks. Cryptanalysis Look at carefully chosen plaintext/ciphertexts Differential and linear cryptanalysis Side channel attacks

531 views • 34 slides

Exploiting Cache-Timing in AES: Attacks and Countermeasures

Exploiting Cache-Timing in AES: Attacks and Countermeasures. Ivo Pooters i.pooters@student.tue.nl March 17, 2008. Seminar Information Security Technology. Outline. Introduction About Cache AES Primer Cache-timing attacks Countermeasures Conclusion.

382 views • 23 slides

Remote Timing Attacks

Remote Timing Attacks. -Rashmi Kukanur. Agenda. Timing Attacks Case Study : David Brumley Dan Boneh Defenses. What is Timing Attack. Timing Attack : Extract secrets (private keys) in a security system by measuring the amount of time required to perform private key operations.

387 views • 18 slides

Cache-Collision Timing Attacks Against AES

Cache-Collision Timing Attacks Against AES. Joseph Bonneau Stanford University jbonneau@stanford.edu. Ilya Mironov Microsoft Research mironov@microsoft.com. Side Channel Cryptanalysis.

861 views • 56 slides

Timing Attacks

CS 380S. Timing Attacks. Vitaly Shmatikov. Reading. Kocher. “Timing Attacks on Implementations of Diffie-Hellman, RSA, DSS, and Other Systems” (CRYPTO 1996). Brumley and Boneh. “Remote Timing Attacks Are Practical” (Best Paper Award, USENIX Security 2003). Attacking Cryptographic Schemes.

656 views • 28 slides

Energy-Security Tradeoff in a Secure Cache Architecture Against Buffer Overflow Attacks

Energy-Security Tradeoff in a Secure Cache Architecture Against Buffer Overflow Attacks. Koji Inoue Department of Informatics, Kyushu Universiy Japan Science and Technology Agency. Trusted Program. Malicious Program. Branch Prediction. Selective Activation. Pipelining. SuperScalar.

451 views • 35 slides

Cache Attacks and Countermeasures: the Case of AES

Cache Attacks and Countermeasures: the Case of AES. Dag Arne Osvik, Adi Shamir and Eran Tromer. Presented by Ophir Arbiv ophirarb@post.tau.ac.il. [1] Cache Attacks and Countermeasures: the Case of AES (Extended Version),2005, Dag Arne Osvik, Adi Shamir and Eran Tromer.

476 views • 28 slides

Tor and Timing Attacks

Tor and Timing Attacks. An attack within the accepted attacker model. Onion Routing 2 A real system for users Only true antecedent was ZKS’s Freedom Network A variety of system enhancements PFS, congestion control, directory servers, etc. Onion Routing. Initiator-chosen paths

329 views • 16 slides

Selective DFT Attacks against E0

Selective DFT Attacks against E0. Jingjing WANG, Kefei CHEN. Outline. Brief introduction to DFT, DFT Attack, E0 Selective DFT Filter for Nonlinear Filter Generator Our Attack against E0 And combiner with memory in general. What is DFT?. DFT = discrete Fourier transform

285 views • 16 slides

Remote Timing Attacks are Practical

Remote Timing Attacks are Practical. An Overview by - Rahul Deshpande. What are Timing Attacks. Extracting secrets by observing time to respond to various queries E.g.. Kocher designed a timing attack to expose secret keys used for RSA. Timing Attacks.

372 views • 34 slides

More Related