Cross-VM side channels and their use to extract private keys

Zhang, Yinqian; Juels, Ari; Reiter, Michael K.; Ristenpart, Thomas

doi:10.1145/2382196.2382230

articleOct 15, 2012Closed access

Cross-VM side channels and their use to extract private keys

YZYinqian Zhang AJAri Juels MKMichael K. Reiter TRThomas Ristenpart

University of North Carolina at Chapel Hill · University of Wisconsin–Madison

Indexed incrossref

Abstract

This paper details the construction of an access-driven side-channel attack by which a malicious virtual machine (VM) extracts fine-grained information from a victim VM running on the same physical computer. This attack is the first such attack demonstrated on a symmetric multiprocessing system virtualized using a modern VMM (Xen). Such systems are very common today, ranging from desktops that use virtualization to sandbox application or OS compromises, to clouds that co-locate the workloads of mutually distrustful customers. Constructing such a side-channel requires overcoming challenges including core migration, numerous sources of channel noise, and the difficulty of preempting the victim with sufficient…

Citation impact

783

total citations

FWCI: 106.11
Percentile: 100%
References: 47

Citations per year

Authors

4

Topics & keywords

Topics

Keywords

Computer science
Side channel attack
Sandbox (software development)
Virtualization
Computer security
Operating system
Hypervisor
ElGamal encryption

UN Sustainable Development Goals

Peace, Justice and strong institutions

No related works found for this paper.

Funding

NS
National Science Foundation