Cache-timing attacks still threaten IoT devices

Sofiane Takarabt; Alexander Schaub; Adrien Facon; Sylvain Guilley; Laurent Sauvage; Youssef Souissi; Yves Mathieu

doi:10.1007/978-3-030-16458-4_2

Cache-timing attacks still threaten IoT devices

Sofiane Takarabt
, Alexander Schaub
, Adrien Facon
, Sylvain Guilley
, Laurent Sauvage
, Youssef Souissi
, Yves Mathieu

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Deployed widely and embedding sensitive data, The security of IoT devices depend on the reliability of cryptographic libraries to protect user information. However when implemented on real systems, cryptographic algorithms are vulnerable to side-channel attacks based on their execution behavior, which can be revealed by measurements of physical quantities such as timing or power consumption. Some countermeasures can be implemented in order to prevent those attacks. However those countermeasures are generally designed at high level description, and when implemented, some residual leakage may persist. In this article we propose a methodology to assess the robustness of the MbedTLS library against timing and cache-timing attacks. This comprehensive study of side-channel security allows us to identify the most frequent weaknesses in software cryptographic code and how those might be fixed. This methodology checks the whole source code, from the top level routines to low level primitives, that are used for the final application. We retrieve hundreds of lines of code that leak sensitive information.

Original language	English
Title of host publication	Codes, Cryptology and Information Security - 3rd International Conference, C2SI 2019, Proceeding
Editors	Sylvain Guilley, Claude Carlet, El Mamoun Souidi, Abderrahmane Nitaj
Publisher	Springer Verlag
Pages	13-30
Number of pages	18
ISBN (Print)	9783030164577
DOIs	https://doi.org/10.1007/978-3-030-16458-4_2
Publication status	Published - 1 Jan 2019
Externally published	Yes
Event	3rd International Conference on Codes, Cryptology and Information Security, C2SI 2019 - Rabat, Morocco Duration: 22 Apr 2019 → 24 Apr 2019

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	11445 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	3rd International Conference on Codes, Cryptology and Information Security, C2SI 2019
Country/Territory	Morocco
City	Rabat
Period	22/04/19 → 24/04/19

Access to Document

10.1007/978-3-030-16458-4_2

Cite this

Takarabt, S., Schaub, A., Facon, A., Guilley, S., Sauvage, L., Souissi, Y., & Mathieu, Y. (2019). Cache-timing attacks still threaten IoT devices. In S. Guilley, C. Carlet, E. M. Souidi, & A. Nitaj (Eds.), Codes, Cryptology and Information Security - 3rd International Conference, C2SI 2019, Proceeding (pp. 13-30). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 11445 LNCS). Springer Verlag. https://doi.org/10.1007/978-3-030-16458-4_2

Takarabt, Sofiane ; Schaub, Alexander ; Facon, Adrien et al. / Cache-timing attacks still threaten IoT devices. Codes, Cryptology and Information Security - 3rd International Conference, C2SI 2019, Proceeding. editor / Sylvain Guilley ; Claude Carlet ; El Mamoun Souidi ; Abderrahmane Nitaj. Springer Verlag, 2019. pp. 13-30 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{3489d9f6cc374292803bd0821c131425,

title = "Cache-timing attacks still threaten IoT devices",

abstract = "Deployed widely and embedding sensitive data, The security of IoT devices depend on the reliability of cryptographic libraries to protect user information. However when implemented on real systems, cryptographic algorithms are vulnerable to side-channel attacks based on their execution behavior, which can be revealed by measurements of physical quantities such as timing or power consumption. Some countermeasures can be implemented in order to prevent those attacks. However those countermeasures are generally designed at high level description, and when implemented, some residual leakage may persist. In this article we propose a methodology to assess the robustness of the MbedTLS library against timing and cache-timing attacks. This comprehensive study of side-channel security allows us to identify the most frequent weaknesses in software cryptographic code and how those might be fixed. This methodology checks the whole source code, from the top level routines to low level primitives, that are used for the final application. We retrieve hundreds of lines of code that leak sensitive information.",

author = "Sofiane Takarabt and Alexander Schaub and Adrien Facon and Sylvain Guilley and Laurent Sauvage and Youssef Souissi and Yves Mathieu",

note = "Publisher Copyright: {\textcopyright} Springer Nature Switzerland AG 2019.; 3rd International Conference on Codes, Cryptology and Information Security, C2SI 2019 ; Conference date: 22-04-2019 Through 24-04-2019",

year = "2019",

month = jan,

day = "1",

doi = "10.1007/978-3-030-16458-4\_2",

language = "English",

isbn = "9783030164577",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "13--30",

editor = "Sylvain Guilley and Claude Carlet and Souidi, \{El Mamoun\} and Abderrahmane Nitaj",

booktitle = "Codes, Cryptology and Information Security - 3rd International Conference, C2SI 2019, Proceeding",

}

Takarabt, S, Schaub, A, Facon, A, Guilley, S, Sauvage, L, Souissi, Y & Mathieu, Y 2019, Cache-timing attacks still threaten IoT devices. in S Guilley, C Carlet, EM Souidi & A Nitaj (eds), Codes, Cryptology and Information Security - 3rd International Conference, C2SI 2019, Proceeding. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 11445 LNCS, Springer Verlag, pp. 13-30, 3rd International Conference on Codes, Cryptology and Information Security, C2SI 2019, Rabat, Morocco, 22/04/19. https://doi.org/10.1007/978-3-030-16458-4_2

Cache-timing attacks still threaten IoT devices. / Takarabt, Sofiane; Schaub, Alexander; Facon, Adrien et al.
Codes, Cryptology and Information Security - 3rd International Conference, C2SI 2019, Proceeding. ed. / Sylvain Guilley; Claude Carlet; El Mamoun Souidi; Abderrahmane Nitaj. Springer Verlag, 2019. p. 13-30 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 11445 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Cache-timing attacks still threaten IoT devices

AU - Takarabt, Sofiane

AU - Schaub, Alexander

AU - Facon, Adrien

AU - Guilley, Sylvain

AU - Sauvage, Laurent

AU - Souissi, Youssef

AU - Mathieu, Yves

N1 - Publisher Copyright: © Springer Nature Switzerland AG 2019.

PY - 2019/1/1

Y1 - 2019/1/1

N2 - Deployed widely and embedding sensitive data, The security of IoT devices depend on the reliability of cryptographic libraries to protect user information. However when implemented on real systems, cryptographic algorithms are vulnerable to side-channel attacks based on their execution behavior, which can be revealed by measurements of physical quantities such as timing or power consumption. Some countermeasures can be implemented in order to prevent those attacks. However those countermeasures are generally designed at high level description, and when implemented, some residual leakage may persist. In this article we propose a methodology to assess the robustness of the MbedTLS library against timing and cache-timing attacks. This comprehensive study of side-channel security allows us to identify the most frequent weaknesses in software cryptographic code and how those might be fixed. This methodology checks the whole source code, from the top level routines to low level primitives, that are used for the final application. We retrieve hundreds of lines of code that leak sensitive information.

AB - Deployed widely and embedding sensitive data, The security of IoT devices depend on the reliability of cryptographic libraries to protect user information. However when implemented on real systems, cryptographic algorithms are vulnerable to side-channel attacks based on their execution behavior, which can be revealed by measurements of physical quantities such as timing or power consumption. Some countermeasures can be implemented in order to prevent those attacks. However those countermeasures are generally designed at high level description, and when implemented, some residual leakage may persist. In this article we propose a methodology to assess the robustness of the MbedTLS library against timing and cache-timing attacks. This comprehensive study of side-channel security allows us to identify the most frequent weaknesses in software cryptographic code and how those might be fixed. This methodology checks the whole source code, from the top level routines to low level primitives, that are used for the final application. We retrieve hundreds of lines of code that leak sensitive information.

U2 - 10.1007/978-3-030-16458-4_2

DO - 10.1007/978-3-030-16458-4_2

M3 - Conference contribution

AN - SCOPUS:85065505494

SN - 9783030164577

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 13

EP - 30

BT - Codes, Cryptology and Information Security - 3rd International Conference, C2SI 2019, Proceeding

A2 - Guilley, Sylvain

A2 - Carlet, Claude

A2 - Souidi, El Mamoun

A2 - Nitaj, Abderrahmane

PB - Springer Verlag

T2 - 3rd International Conference on Codes, Cryptology and Information Security, C2SI 2019

Y2 - 22 April 2019 through 24 April 2019

ER -

Takarabt S, Schaub A, Facon A, Guilley S, Sauvage L, Souissi Y et al. Cache-timing attacks still threaten IoT devices. In Guilley S, Carlet C, Souidi EM, Nitaj A, editors, Codes, Cryptology and Information Security - 3rd International Conference, C2SI 2019, Proceeding. Springer Verlag. 2019. p. 13-30. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-030-16458-4_2

Cache-timing attacks still threaten IoT devices

Abstract

Publication series

Conference

Access to Document

Fingerprint

Cite this